right now I am encrypting my SSD on my Windows graphic design machine using Bitlocker and I would love to do the same with my Manjaro development machine. But I couldn’t find anything that delivers the ease of use that Bitlocker has. You encrypt once, the key is saved in the TPM and you get an additional recovery key. Now I tried to do this with my old Ubuntu machine without any luck. I only found solutions for the home partition. But I would like to encrypt the whole disk.
My dream scenario: When I boot my system the Manjaro kernel loads the key from TPM and decrypts the drive except for home. I enter my password and my home directory is decrypted. Is this possible and if yes how?
Greetings and thanks in advance