Encrypt Block Devices With LUKS
Oracle Linux uses LUKs to perform block device encryption. By default, the option to encrypt a disk with LUKs is disabled at installation. If the encryption option at installation is enabled, the system prompts for a passphrase every time you boot or mount the device. The passphrase is an encryption key that decrypts the partition or volume and makes the file system accessible.
Post installation, Cockpit administrators can use the web console to change the encryption passphrase or to format a disk partition or logical volume with or without LUKs encryption. For more information, see these topics: