Encrypting TUXEDO OS in a Dual Boot Scenario

ATTENTION: To use our store you have to activate JavaScript and deactivate script blockers!
Thank you for your understanding!

Encrypting TUXEDO OS in a Dual Boot Scenario

How to Encrypt TUXEDO OS in Dual Boot – Find Out in This Article

Guided Encryption of TUXEDO OS

Recently, we explained in an article how to encrypt TUXEDO OS during installation using the Calamares installer with LUKS2. If you choose encryption at the beginning of the installation, we will guide you through the individual steps.

However, due to technical reasons, this guided method is not suitable for encrypting two operating systems on a single storage device, as the guided encryption occupies the entire storage medium. To encrypt multiple distributions on one device, you will need to configure it manually. It doesn’t matter whether the other system is Windows or another Linux distribution. However, if it is Windows, you must install and encrypt it first if needed.

In this article, we present two possible ways to encrypt two operating systems. Whether you choose X11 or Wayland as your session type in Linux is entirely up to you.

Encrypting Two Distributions on the Same Storage Medium

To encrypt two operating systems or distributions on the same storage medium, start the TUXEDO OS installer and do not select the Encrypted Installation option. Instead, choose Standard Installation. Make sure that the live image is started in UEFI mode, otherwise the window with the encryption option will not appear.

Here, confirm or select your desired language. In the next step, you will reach the partitioning section, where you need to choose Manual Partitioning.

In the next window, you will see the available storage size at the top and various options at the bottom. Here, the option New Partition Table at the bottom left is of interest.

Click New Partition Table at the bottom left and, in the following window, select GUID Partition Table (GPT) for a UEFI-based installation. The Master Boot Record (MBR) option is for the outdated Legacy BIOS.

In the next window, click Free Space at the top and then Create at the bottom to open the partition creation menu.

__Warning__: The following steps will erase all data on the storage medium.

Partitioning the Storage Medium

In the following steps, you will split your storage medium into multiple partitions. You need at least three partitions for an encrypted installation:

/boot

Remains unencrypted and must be at least 2 GB in size. This partition contains everything needed for system boot, including the kernel.

/boot/efi

Also remains unencrypted. This is the mount point for the EFI System Partition (ESP) on UEFI systems. The file system must be either FAT32 or FAT16, where FAT32 is preferred.

The root partition, where the system will be installed. This partition will be encrypted.

Additionally, you can create partitions for Home, Swap, or other sections of the Filesystem Hierarchy Standard (FHS). However, in this article, we will stick to the standard setup.

In the partition creation menu, first create the boot partition. Set Size to 2048 MIB, select Ext4 as the File System. The mount point is /boot, a flag is necessary for /boot.

Clicking OK confirms the setup, and the new partition will appear, showing the remaining free space below. Next, create the /boot/efi partition, which only needs to be created once and can be used for additional distributions. 300 MB is sufficient for its size. Select FAT32 as the file system and don’t forget to check the bootable flag.

Using the same method, create the root partition. Keep the default Ext4 file system or select another one such as XFS or Btrfs if needed. Below the file system selection, check Encrypt, enter a secure password and repeat it. Use / as the Mount Point. No flags need to be set for the root partition.

__Warning__: Store this password securely. If you lose it, you will not be able to decrypt your device, and your data will be inaccessible!

This completes the partitioning setup for an encrypted TUXEDO OS installation. If you want additional partitions, create them using the same method.

Once all the desired partitions for TUXEDO OS are set up, proceed with the installation. Before finalizing, you will see a summary of the steps to be performed. If everything looks correct, start the installation process.

After a few minutes, the installation will be complete, and the system will first ask for your encryption password. Then, the boot process starts, during which you will have to enter your user password before reaching the desktop environment.

Dual Boot with Another Distribution

To install an additional distribution for a dual-boot system, launch the installer of the respective distribution from the live medium. If using Calamares, follow the same process as for the first installation, but do not create /boot/efi again. Also, skip creating a new partition table, as this would erase the existing partitioning.

Other installers may have their own encryption setup instructions. A detailed guide for Ubuntu can be found here. If the installer does not offer encryption options, you can set it up manually following this guide.

Encrypting Two Distributions on two Single Storage Media

Another way to encrypt two operating systems is, to installe them encrypted each on their own SSD/NVMe drive. For TUXEDO OS you can then use the guided apprach mentioned in the beginning. For the other OS you have to use whatever encryption method they use. On one hand this approach simplifies the partitioning, on the other hand it can make it harder to switch from one OS to the other.

To do so without configuration, you can go into the BIOS/UEFI and choose, which OS to boot. If you want more comfort, you will have to configure a bootloader such as GRUB to offer both OS to choose at startup.

Service & Support

Welcome to TUXEDO Support - how can we help you?

Linux at TUXEDO

Are you wondering if Linux is right for you? Our team will be happy to answer your questions and explain details about the free operating system at TUXEDO.
Let the advantages and services convince you!

Hardware

Notebook, PC, both - and which model? Our technical service team also provides advice on selection, equipment and puts together suitable offers for your technical requirements.

Questions and Answers

Frequently asked questions and the corresponding answers can be found here. If you cannot find a solution to your problem here, it is also worth taking a look at the instructions section.

Find out more

Instructions and Tips

Most situations can be solved quickly and easily by yourself. This saves you time and you can use your device directly again. We provide you with instructions, first steps and short tips for all TUXEDO models.

Find out more

System Recovery

Even in the case of a case, you don't have to rely on us: Your device can be reset to the factory settings - completely automatically! Everything is included with your order and you can get started right away.

Find out more

Technical Service

Our competent technicians are also happy to help with service requests. You have different possibilities to contact us. We are personally there for you Monday to Friday from 9 am to 1 pm and from 2 pm to 5 pm. But also outside these times, you can contact our team with your request by e-mail.
An extra function is available in your customer account for repair requests (RMA).

Contact

We are personally there for you Monday to Friday from 9 am to 1 pm and from 2 pm to 5 pm (German time). But also outside these times you can contact our team with your request by e-mail. Please include your customer number, the model name of your laptop or PC and as detailed a description of your request as possible. The more details you give us, the faster we can process your request!

We might not be able to answer questions about third party hardware or software. For questions about popular open source software (Thunderbird, Filezilla...) please contact a forum e.g. ubuntuforums.org. The research effort for application specific setup is immense and not manageable at the current time. Basic compatibility questions e.g. are of course still welcome!

An extra function is available in your customer account for repair requests (RMA).

Country	Shipping Fee	Free Shipping From
Albania	99,00 EUR	-
Andorra	59,00 EUR	-
~~Belarus~~ Temporarily no delivery possible	~~59,00 EUR~~	-
Belgium	8,49 EUR	100 EUR
Bulgaria	15,99 EUR	160 EUR
Denmark	8,49 EUR	100 EUR
Estonia	15,99 EUR	160 EUR
Faroe Islands	129,00 EUR	-
Finland	14,99 EUR	150 EUR
France	9,99 EUR	120 EUR
Greece	22,90 EUR	-
United Kingdom	9,99 EUR	120 EUR
Hong Kong	199,00 EUR	-
India	199,00 EUR	-
Ireland	14,99 EUR	150 EUR
Island	129,00 EUR	-
Italy	9,99 EUR	120 EUR
Japan	99,00 EUR	-
Canada	99,00 EUR	-
Croatia	34,90 EUR	500 EUR
Latvia	15,99 EUR	160 EUR
Lithuania	15,99 EUR	160 EUR
Luxembourg	8,49 EUR	100 EUR
Macau	199,00 EUR	-
Malta	34,90 EUR	500 EUR
Macedonia	59,00 EUR	-
Moldova	199,00 EUR	-
Monaco	19,00 EUR	-
Montenegro	99,00 EUR	-
Netherlands	8,49 EUR	100 EUR
Norway	14,99 EUR	150 EUR
Austria	8,49 EUR	100 EUR
Poland	15,99 EUR	160 EUR
Portugal	14,99 EUR	150 EUR
Romania	15,99 EUR	160 EUR
San Marino	9,99 EUR	120 EUR
Sweden	14,99 EUR	150 EUR
Switzerland	13,99 EUR	150 EUR
Serbia	34,90 EUR	500 EUR
Singapore	199,00 EUR	-
Slovakia	15,99 EUR	160 EUR
Slovenia	15,99 EUR	160 EUR
Spain (without Canary Islands)	14,99 EUR	150 EUR
Czech Republic	15,99 EUR	160 EUR
~~Ukraine~~ Temporarily no delivery possible	~~129,00 EUR~~	-
Hungary	15,99 EUR	160 EUR
USA including Hawaii	99,00 EUR	-
United Arabic Emirates	199,00 EUR	-
Cyprus	34,90 EUR	500 EUR
Qatar	199,00 EUR	-

Encrypting TUXEDO OS in a Dual Boot Scenario - TUXEDO Computers

Settings

Customer Account