Description

Learn how to use Network-Bound Disk Encryption on Oracle Linux

Lab Overview

Provides an Oracle Linux system (ol-server) provisioned with the following:

• An oracle user account with sudo privileges

Note: When using the free lab environment, see Oracle Linux Lab Basics for connection and other usage instructions.

Lab Objectives

Upon completion of this Lab you will be able to:

• Install and configure a Tang server for Network-Bound Disk Encryption
• Configure block storage to automount at boot and use LUKS to encrypt the filesystem
• Install and configure Clevis to bind a Tang server to a LUKS key slot to automatically decrypt storage

Intended Audience

This lab is intended for:

• Oracle Linux administrators intending to use NBDE to help secure storage on Oracle Cloud Infrastructure

Changelog

Jun 3, 2021 - Initial draft
Feb 10, 2022 - Updated for new Oracle Linux Training standards
Jul 7, 2022 - Updated hostname reference