Note: This process is only for our Ubuntu VM Appliance.
Encrypted data volume
Upload and run the attached script (encrypt-lvm-volume.sh) via your ftp tool to encrypt the data volume. This will encrypt using AES cipher and a default password “password”.
After you run the encrypt-lvm-volume.sh script you can verify that the volume was successfully encrypted by running:
sudo crypsetup status encrypted-db
|
If successful, you should see :
/dev/mapper/encrypted-db is active and is in use.
type: LUKS1
cipher: aes-xts-plain64
....
|
To change the encryption password, run:
sudo cryptsetup luksChangeKey /dev/mapper/visiblethread-vtdata
|
From now on when the system boots up, an IT admin must have access to the VM terminal to provide the password to decrypt the disk :