Difference between revisions of "Ubuntu 22.04 LVM encryption using LUKS"
From Notes_Wiki
| Line 23: | Line 23: | ||
<pre> | <pre> | ||
# sudo cryptsetup open <lvm-path> data_crypt | # sudo cryptsetup open <lvm-path> data_crypt | ||
</pre> | |||
=== Create Filesystem === | |||
Format the mapped encrypted volume with the ext4 filesystem: | |||
<pre> | |||
# sudo mkfs.ext4 /dev/mapper/data_crypt | |||
</pre> | |||
=== Configure crypttab === | |||
* Find the UUID of the encrypted device: | |||
<pre> | |||
# sudo blkid <lvm-path> | |||
</pre> | |||
* Edit `/etc/crypttab` and add an entry like the following: | |||
<pre> | |||
# sudo nano /etc/crypttab | |||
</pre> | |||
Example content: | |||
<pre> | |||
data_crypt UUID=82e544db-2c86-46ad-86cd-081e61d9d48c none luks | |||
</pre> | </pre> | ||
Revision as of 07:27, 22 July 2025
Home > Ubuntu > Ubuntu 22.04 > Ubuntu 22.04 LVM encryption using LUKS
To configure encryption on an empty LVM logical volume in Ubuntu 22.04 (Also works on Ubuntu 24.04) after OS installation, follow these steps:
Encrypting and Mounting a Logical Volume with LUKS
- If the logical volume is already mounted, unmount it:
# sudo umount <mount-point>
Format the Volume with LUKS Encryption
Use `cryptsetup` to encrypt the logical volume:
# sudo cryptsetup luksFormat <lvm-path>
Open the Encrypted Volume
Open the LUKS volume and map it to a device name (e.g., `data_crypt`):
# sudo cryptsetup open <lvm-path> data_crypt
Create Filesystem
Format the mapped encrypted volume with the ext4 filesystem:
# sudo mkfs.ext4 /dev/mapper/data_crypt
Configure crypttab
- Find the UUID of the encrypted device:
# sudo blkid <lvm-path>
- Edit `/etc/crypttab` and add an entry like the following:
# sudo nano /etc/crypttab
Example content:
data_crypt UUID=82e544db-2c86-46ad-86cd-081e61d9d48c none luks
