Is there any way to restore single file form PBS with encrypted disk ?

S

SebC

New Member
Jun 13, 2022
3
0
1
Dear All,

I use PBS since version 1.0 to 2.1 with happiness, and thnaks for your works !

Now, i'd like to use it for my virtuals machines with encrypted disk (I use VMs with disks encrypted with LUKS), in this configuraiton i can restor the entire VM but not a single file from PVE WebGUI or from PBS WebGUI ; I know my data is encrypted and PBS doesn't know my encryption key, but there is any way to mount my PBS backup or restore file with my encryption key ? I haven't find solution for this.

Thanks and best regards.
 
the nicely-integrated ways won't work (for lack of encryption key), but you can use the client to map the (encrypted) image file on any Linux host capable of running proxmox-backup-client, and then use cryptsetup to decrypt and access the plain content (including mounting + restoring individual files).
 
Hello Fabian,
Thanks for your quick Answer, but I doesn't see anywhere a possibility to map PBS image backup (make by backup from PVE) with PBS client.
Have you a documentation or quick how to for make this ?
Thanks again and best regards.
Seb
 
Code: 
man proxmox-backup-client
[...]
  proxmox-backup-client map <snapshot> <archive-name> [OPTIONS]

       Map a drive image from a VM backup to a local loopback device. Use 'unmap' to undo.  WARNING: Only  do  this
       with trusted backups!

       <snapshot>
              <string> Group/Snapshot path.

       <archive-name>
              <string> Backup archive name.

       Optional parameters:

       --keyfile <string>
              Path to encryption key.

       --ns <string>
              Namespace.

       --repository <string>
              Repository URL.

       --verbose <boolean> (default=false)
              Verbose output and stay in foreground.

plenty of threads here on the forum as well ;)
 
Hi Fabian,

Thanks for this man page, I have successfully tested map, luksopen, mount.

This is not "simple" like "clic button" form PVE but fully functional ; there is any plan to add this function directly in PVE "clic button" ?

Best regards.
 
we've discussed adding something like "map PBS snapshot into VM" on the PVE side (to allow a custom manual file-restore, also using windows VMs for example), but no concrete plans yet.
 
You must log in or register to reply here.
Top Bottom
Back