[Feature request] Add LUKS to installer

M

mrmanuel

New Member
Jul 3, 2024
29
13
3
Hi,

I did not found any feature request to add LUKS to the installer, so I opened one. It should be one oft the most requested features and help to save a lot of time and complexity, when already during the installation process a LUKS volume could be created and then on top of it the selected filesystem.

It should not be that hard to add it.

Optional would be to unlock the crypted partitions automatically via TPM, but that would only be a nice to have and is not the focus of this feature request.

1739124437299.png

1739124367610.png
 
@mrman Thanks for your write up on this, great work! I have a PVE install with Raidz1 (3x nvme) and would like to convert to encrypted with LUKS. Any idea what roughly would change in the steps? I’m happy to give it a go in a VM first and write up the instructions to add to yours
 
mrmanuel said:
While we wait for this feature to be adopted, I have created a step-by-step guide on how to use LUKS with the current possibilities. You can find the guide on GitHub, where it can be easily maintained and updated: HOW TO - Encrypt complete Proxmox node with LUKS
Click to expand...
First thing to change is the title ... the product is called Proxmox VE, not Proxmox. That's the companies name.
 
  • Like
Reactions: mrmanuel
@gardeningevenings you're welcome. Thanks for the feedback. I updated the manual, since I already tried with different commands so that it should also work with RAIDZ-x. Just do not unmount the disk from the ZFS pool, but replace it after. You will already find the updated commands in the manual. Let me know, if it works!

@LnxBil thanks for pointing me to that typo. I will correct it everywhere possible.
 
  • Like
Reactions: Weehooey-HSS and gardeningevenings
You must log in or register to reply here.
Top Bottom