Create an encrypted dataset
yThe last step required for the TrueNAS / integration is to create at least one encrypted dataset, which enables TrueNAS to start using KMIP.
Datasets exist inside storage Pools, so if a storage Pool does not already exist, you need to create one. Refer to the following article on the TrueNAS Documentation Hub for setting up a storage Pool:
You can encrypt new datasets within an existing unencrypted storage pool without having to encrypt the entire pool. To encrypt a single dataset, complete the following steps:
Go to Storage > Pools, select the three vertical dots on the far right side of the menu for an existing dataset, and select Add Dataset.
In the Encryption Options area, unselect the Inherit checkbox and select the Encryption checkbox.
Choose which type of authentication to use: a Key or a Passphrase. Then select [ SUBMIT ].
If you chose Key as the type of authentication for the new dataset, the ZFS key is created on the and retrieved by TrueNAS as needed. If you chose the Passphrase option, the passphrase is created KMIP if TCG OPAL capable disks are attached to the NAS being used.