Unlock Encrypted Devices Using Tang Server Key
Using the Storage page in the web console, Cockpit administrators can automatically unlock an encrypted storage device using a key from a Tang server. For more information, see the following topics on how to create and confirm the implementation of a Tang Key on an encrypted device.
Note:
The steps in this section are part of a wider task of implementing Policy-Based Decryption (PBD) by configuring Network-Bound Disk Encryption (NBDE) that features Tang and Clevis server and client components. For more information about implementing Policy-Based Decryption (PBD), see Oracle Linux: Enabling Network-Bound Disk Encryption. For a tutorial in installing and configuring a Tang server, see Use Network Bound Disk Encryption on Oracle Linux 8.