What perplexes me about this is that on bootup, I am only asked for my password once. I’m wondering how that happens, as I would like to add another LUKS encrypted hard drive for backups from the machines on the LAN. With Debian, I had to use keyscript=decrypt_keyctl, but some other magic is solving the problem here.
That’s remote unlock, which is useful but not what I’m after. It sounds like you just want to use LUKS with Nethserver. That’s easy. You can set it up in the installer. Just do a manual partition of the hard drive.
This turned out to be quite easy, as systemd will now decrypt as many disks as it can with the first password it is given. So we just need to add another line like:
luks-<uuid3> UUID=<uuid3> none
If you fail to put in the right password on the first try, be aware that it will then ask for one password for each device.