My on-line datasets are encrypted and I replicated the raw datasets to backup zpools with zfs send -w. I can decrypt them but the process in the GUI seems convoluted enough that I assume I am doing something wrong. Can anyone help with how this should work? This is with 25.04.1.
What ultimately worked was: Export encryption key in JSON from the online dataset. Open in a text editor and copy the encryption key. Click to unlock the dataset tree. Choose to manually provide the key. Paste the key into every dataset. Click to unlock.
What I also tried:
-
Uploading the JSON file, with or without Force. If the dataset name in the JSON does not match the dataset to unlock this fails.
-
Uploading the JSON file with the dataset name edited to match the backup dataset, with or without Force, and with or without Unlock children set. Only the parent dataset is unlocked, not the children.
-
Manually enter the key, with Unlock children set. Only the parent dataset is unlocked, not the children.
What I expected to happen: Upload the JSON from the on-line dataset, choose force (to ignore the dataset name) and unlock children, and it just works. Also, manually entering the key once in the parent and choosing unlock children should have worked.
Thank you for any assistance!
Evan