Closed kropotin closed 3 years ago
kropotin
commented
3 years ago Yes!. The part is encrypted using a password and keyfile. In the bootloader configuration, the authentication type is set - password and bootauth keyfile. The keyfile is located on a USB flash drive that is connected. When entering the password, the password is invalid (although the password is correct). If the keyfile is embedded into the bootloader, everything works. But I want to take the key to an external drive.
kropotin
commented
3 years ago And further. In the EFI mode, the options of the boot method (active partition, first partition with appropriate password, specified partition and etc) do not seem to work. Loading in any case occurs from the efi-part according to the Windows boot manager. Choose what can be booted only via config of bcd. But I would like to boot the OS directly depending on the authentication result. Parts: 1 - EFI 2 - unencrypted part with OS Windows. 3 - encrypted part with OS Windows. I can’t do anything without using the OS list configured in the bсd to start the OS I need (the default one is always loaded - unencrypted. Or vice versa, but then we get to recovery when trying to boot from an unencrypted partition.
kropotin
commented
3 years ago Yes!. The part is encrypted using a password and keyfile. In the bootloader configuration, the authentication type is set - password and bootauth keyfile. The keyfile is located on a USB flash drive that is connected. When entering the password, the password is invalid (although the password is correct). If the keyfile is embedded into the bootloader, everything works. But I want to take the key to an external drive.
Understood.
do you mean during boot?