Closed iptvcld closed 4 years ago
Do you have at least one array disk encrypted?
That's not what I asked you. Please read the section on encrypted disks here.
My array is not encrypted.
It has to be or Unraid will not know the password/passphrase.
Thanks; i was just watching spaceinvaders video on how to do this as a workaround by adding the drive into cache and then formatting and move it back. But not sure if this is practical as on system reboots i will always have to repeat. I am just looking for a way to encrypt one of my Unassigned drives.
Once it's formatted, UD can mount it without you having an encrypted array, The encrypted array requirement is only for formatting the disk, not mounting it with UD. Just set the disk password in UD settings for that disk.
Oh thats not bad at all!! Thank you; i will try this out now.
You can now format a UD disk withoout having an encrypted array.
Really? That's amazing! I performed the "trick" yestursday to add the UD drive as a cache and then format it as xfs encrypted and did I ever mess that up! Ended up clearing my cache pool and had to restore the cache array from backup! Thanks for the excellent work!
That's why I did it. I saw too much hacking to make it work and the risk involved. Sorry you lost your pool. You'll see it is much easier and cleaner now with the update to UD.
You rock! Excellent work as always..
Did you try it?
I am going to wipe the encrypted disk I made yesterday and try this now that I know the option is there. Will let you know shortly.
Just tried it now and works great..
Question: When the server reboots, since the password is stored will i be prompted to re-enter the password again? If this auto-mounts with no password ask, this can be an issue if the server gets stolen; i would not want this drive to mount without asking for a password.
The password is stored encrypted on the flash in UD settings. It will mount without asking for a passowrd in Unraid. If the disk is stolen, the password will be needed to mount the disk. If the server is stolen, I think you have bigger problems.
If it's that much of a concern, you will need to set up the array as encrypted and use the same password as the array. Unraid will then handle it as you desire.
So what i am thinking is if we mod that file on each array startup and that way when the server boots (the drive will need that pass line again) and i would need to go to UI settings to key in that password again.
You can't edit the UD cfg file. That is only a copy of the cfg in /tmp/ that is the active configuration. So your edit would not work to change the password.
As a compromise:
The disk will stay mounted, but the next reboot would require the password be entered again.
Ah, that works!!
i see xfs encrypted as an option to format Unassigned Drive