Implementing Full Disk Encryption on Arch Linux with TPM2 Integration
Learn how to set up full disk encryption on Arch Linux using TPM2 for enhanced security without relying on passwords. This guide covers systemd-cryptenroll and TPM PCR registry configurations.
sudopluto
6.8K views • Aug 3, 2023
About this video
links:
https://wiki.archlinux.org/title/Trusted_Platform_Module#systemd-cryptenroll
https://uapi-group.org/specifications/specs/linux_tpm_pcr_registry/
https://wiki.archlinux.org/title/Dm-crypt/System_configuration#Trusted_Platform_Module_and_FIDO2_keys
https://github.com/sudopluto/video-notes/blob/main/arch-tpm2-diskunlock/consolelog.txt
so i hate entering 2 passwords on every boot, but i like having my full disk encryption. so i am going to guide you through setting up systemd to use your tpm to unlock your encrypted root partition on boot, all without a password!
https://wiki.archlinux.org/title/Trusted_Platform_Module#systemd-cryptenroll
https://uapi-group.org/specifications/specs/linux_tpm_pcr_registry/
https://wiki.archlinux.org/title/Dm-crypt/System_configuration#Trusted_Platform_Module_and_FIDO2_keys
https://github.com/sudopluto/video-notes/blob/main/arch-tpm2-diskunlock/consolelog.txt
so i hate entering 2 passwords on every boot, but i like having my full disk encryption. so i am going to guide you through setting up systemd to use your tpm to unlock your encrypted root partition on boot, all without a password!
Video Information
Views
6.8K
Likes
76
Duration
10:30
Published
Aug 3, 2023
User Reviews
4.3
(1)