Monday, 26 February 2018

windows 7 - Is it possible to decrypt multiple truecrypt drives at FDE boot?


I have a Windows 7 Machine with the OS disk using TrueCrypt full disk encryption. I've got an additional 4 other drives plugged into the same machine for storage (Via SATA storage) that I would like to encrypt as well.


I would like to be able to encrypt all the drives using the same password I use at boot time and when it is entered at the boot stage, to have it decrypt all the drives at the same time (therefore not requiring me to separately mount the drives every time I reboot the machine).


If anyone knows how to do this or if it is indeed possible, that would be much appreciated.


Edit: If it matters 2x Drives are identical Segate drives and 2x Drives are identical WD drives These drives are all plugged direct into the motherboard via SATA II not external USB.



Answer



I doubt this will work for you as I'm sure your drives are different makes and models- but if they were identical you could get the 4 external drives to auto-mount using the same password as each other. I don't believe you can have the FDE password unlock your external drives, so the best case scenario would be to enter the password twice (FDE, and once again for all the external drives).


We had the same problem a few months ago and solved it completely by accident.


One of our external backup drives failed, so we replaced them all with the same model (WD Elements 1TB).


As soon as we started using the same model drive, we stopped getting prompted for the second drive- it authenticates using the password from the first (until TrueCrypt or the server restarts). Now, when I update the server and do a reboot at the weekend, I can remote in, and enter the TrueCrypt password for whichever backup drive happens to be connected. Then, when the staff switch the backup drives over later on, the password prompt does not appear again with other drives (as it used to do).


There is no loss of security, just a big improvement in convenience and reliability of our backup system now- all it seems to need is identical model external drives.


I am reasonably confident that this is the best solution to your problem. I wrestled with this for hours when we first started using TrueCrypt on multiple drives, and initially admitted defeat. The fact it does what we want now is due to the fact the drives are identical, rather than some setting I could use in the application to produce the desired behaviour.


No one in the office could believe that the solution didn't lie in the TrueCrypt configuration settings!


enter image description here


No comments:

Post a Comment

Where does Skype save my contact's avatars in Linux?

I'm using Skype on Linux. Where can I find images cached by skype of my contact's avatars? Answer I wanted to get those Skype avat...