Currently we test our backup in a desaster mode. One scenario is the loss of encryption-key.json with which we encrypted a host backup with proxmox-backup-client:
proxmox-backup-client key import-with-master-key encryption-key.json --encrypted-keyfile rsa-encrypted.key --master-keyfile ./master-private.pem
encryption-key.json has no password
master-private.pem has a password
We successfully extract the rsa-encrypted.key from the snapshot and we can decrypt this file with the master-private.pem. We also can then use the encryption-key.json but need to always provide the password which we have for master-private.pem.
How can we recover and use the encryption-key.json without the password of master-private.pem?
proxmox-backup-client key import-with-master-key encryption-key.json --encrypted-keyfile rsa-encrypted.key --master-keyfile ./master-private.pem
encryption-key.json has no password
master-private.pem has a password
We successfully extract the rsa-encrypted.key from the snapshot and we can decrypt this file with the master-private.pem. We also can then use the encryption-key.json but need to always provide the password which we have for master-private.pem.
How can we recover and use the encryption-key.json without the password of master-private.pem?