No "Restore key data" option on Rescue USB Key with VeraCrypt 1.24
Open source disk encryption with strong security for the Paranoid
Brought to you by:
idrassi
Menu
▾
▴
Hello,
I encrypted my Windows Sytem with VeraCrypt and saved the Rescue Disk/Zip file.
Then I changed my password but unfortunatly (stupidly), I don't remember the new one.
But as I still have the original Rescue Disk/Zip file and the original password I should be able to restore the original key.
I checked the documentation (https://www.veracrypt.fr/en/VeraCrypt%20Rescue%20Disk.html) and I found that booting on the Rescue Disk and choosing "Repair Options > Restore key data" will solve my problem : By restoring key data using a VeraCrypt Rescue Disk, you also restore the password that was valid when the VeraCrypt Rescue Disk was created.
But when I boot the UEFI Rescue USB Key, I don't have the "Restore key data" options.
Is it the "Restore OS header keys" option ?
PS : I don't have the new Rescue Disk/Zip file. It is still on the computer disk ...
Thanks,
Frédéric
Hi Frédéric,
Yes, it is the option "Restore OS header keys" that you should use. There is a difference in naming between MBR bootloader and EFI loader and this can cause confusion especially that the documentation was written for MBR bootloader. I will try to harmonize this or at least document the naming difference.
Anyway, using this option, you will be able to boot the system using the original password.
Hello,
I tried it and it worked.
I choosed the "Restore OS header keys", gave my old password and it worked !
So maybe the documentation should be updated as the rescue disk menu has been updated also ?
Because restoring header keys is something we almost never do, and when we are in emergency situation, the documentation should be explicit.
Anyway, thanks a lot for that great tool !
Frédéric
Thanks a lot "fast" Mounir, you answered me even before I tried it.
Luckily I was checking forums posts just when you posted your question!
Thank you also for pointing out this long time issue in the documentation. I have just made a modification to this page to reflect the use of EFI Rescue Disk: https://www.veracrypt.fr/en/VeraCrypt%20Rescue%20Disk.html
Don't hesitate if you have any comments on the added wording.
@idrassi
My suggestion is to change the wording to avoid confusion of EFI vs MBR mode since the current wording reads as an example to the EFI mode until you get to the end of the sentence to realize that was for MBR.
Current wording:
Suggested wording:
Is the EFI "Restore OS header keys" under a submenu select "Repair Options"? If yes, then modify the suggested wording to be "For EFI boot mode, Repair Options > Restore OS header keys".
Ditto the changes for system decryption.
@enigma2illusion: Thank you for your suggestion. I have updated the documentation to use your wording. Don't hesitate if you have other comments or remarks.