Hi, after some testing I managed to install zorin 17.2 alongside win11. So far so good. Now I want to re-install zorin on it's dedicated partition and enable encryption. I have not been able to do it, since I select during the installation (gparted) the partition for zorin, I select all of it's available space, I select \ as the mount point and I also select "partition for encrypted volume", but then when I press install it fails.
Can someone confirm this is the correct way of doing it?
Rgds
As Mounting Point, you have to use / instead of \
As Zorin 17 is based on Ubuntu 22.04, this askubuntu thread might be of help:
It was a type error. I wrote it as you said.
I am stuck. If I use the guided install, I can create the "physical volume for encryption", but afterwards when I want to install zorin on it, it says there is a missing / to continue.
Should I do this partitioning?
/dev/nvmen01/boot (1024Mb) ... which format should I use? does it need to be encrypted too?
/dev/nvmen01/"physical volume for encryption" (with the rest of the free space)
Could You post a Picture of that?
Hi, thx for support. I finally managed to install a working dual-boot setup (w11 + zorin). After w11 install, I installed zorin in an encrypted partition.
There were some things that made it difficult for me:
fdisk -l
Device Start End Sectors Size Type
/dev/nvme0n1p1 2048 206847 204800 100M EFI System
/dev/nvme0n1p2 206848 239615 32768 16M Microsoft reserved
/dev/nvme0n1p3 239616 142266367 142026752 67,7G Microsoft basic data
/dev/nvme0n1p4 142266368 143597567 1331200 650M Windows recovery environment
/dev/nvme0n1p5 143597568 144594943 997376 487M EFI System
/dev/nvme0n1p6 144594944 146216959 1622016 792M Linux filesystem
/dev/nvme0n1p7 146216960 500117503 353900544 168,8G Linux filesystem
lsblk -f
NAME FSTYPE FSVER LABEL UUID FSAVAIL FSUSE% MOUNTPOINTS
├─nvme0n1p6 ext4 1.0 2f4f298a-d073-4861-bef6-29ad673eac51
├─nvme0n1p1 vfat FAT32 AE63-E62B
├─nvme0n1p2
├─nvme0n1p3 BitLocker 2
├─nvme0n1p4 ntfs 26F4B970F4B942BB
├─nvme0n1p5 vfat FAT32 A719-EEE5
└─nvme0n1p7 crypto_LUKS 2 a16302d2-c6ab-433b-a0bc-b1c1daafb082
└─nvme0n1p7_crypt ext4 1.0
├─nvme0n1p5 vfat FAT32 EFI 64B6-35B0
├─nvme0n1p6 ext4 1.0 /boot 404c0f9e-8bfb-43d8-ae00-5e23d5ea23a7
└─nvme0n1p7
/dev/nvme0n1p5 143597568 144594943 997376 487M EFI System
nvme0n1p5 vfat FAT32 EFI 64B6-35B0
It needs some tweaks to make it work. See below.
/dev/nvme0n1p6 144594944 146216959 1622016 792M Linux filesystem
├─nvme0n1p6 ext4 1.0 /boot 404c0f9e-8bfb-43d8-ae00-5e23d5ea23a7
Then you can create the partition for zorin, just create a partition with no filesystem and mark it as /.
Now you can proceed with the zorin install, but before you need to make another step: to make the EFI partitions work you need to enter gparted in zorin live and:
sudo parted /dev/nvme0n1
set boot 1 off
set boot 5 off
q
Proceed with zorin install and in gparted while installing select "something else" and select
/dev/nvme0n1p7 146216960 500117503 353900544 168,8G Linux filesystem
as "partition for encryption"
then proceed as a normal installation
Do no reboot after zorin is installed. Go back to gparted in zorin live and enable back to on the EFI flag in both EFI partitions:
sudo parted /dev/nvme0n1
set boot 1 on
set boot 5 on
q
Reboot
secure boot will require you to enroll MOK key (that you entered when you installed zorin)
Now you enter zorin but only grub shows zorin os. So it needs to be fixed to enable grub hosting win11 and zorin.
Check that ubuntu is the first option at booting:
sudo efibootmgr
In next reboot (not now) remember in BIOS you have to check for it too.
Fix grub:
x@x~# grub-install --target=x86_64-efi --efi-directory=/boot/efi --recheck
Installing for x86_64-efi platform.
Installation finished. No error reported.
Open your /etc/default/grub file.
x@x:~# nano /etc/default/grub
Then manually add this line to the bottom of that file .. to allow Grub to look for other OS:
GRUB_DISABLE_OS_PROBER=false
Check if it recognises "Windows Boot Manager":
x@Sx:~# os-prober
/dev/nvme0n1p1@/efi/Microsoft/Boot/bootmgfw.efi:Windows Boot Manager:Windows:efi
Create a new Grub config file:
x@x:~# grub-mkconfig -o /boot/grub/grub.cfg
Sourcing file `/etc/default/grub'
Sourcing file `/etc/default/grub.d/init-select.cfg'
Generating grub configuration file ...
Found theme: /usr/share/grub/themes/zorin/theme.txt
Found linux image: /boot/vmlinuz-6.8.0-45-generic
Found initrd image: /boot/initrd.img-6.8.0-45-generic
Found linux image: /boot/vmlinuz-6.8.0-40-generic
Found initrd image: /boot/initrd.img-6.8.0-40-generic
Memtest86+ needs a 16-bit boot, that is not available on EFI, exiting
Warning: os-prober will be executed to detect other bootable partitions.
Its output will be used to detect bootable binaries on them and create new boot entries.
Found Windows Boot Manager on /dev/nvme0n1p1@/efi/Microsoft/Boot/bootmgfw.efi
Adding boot menu entry for UEFI Firmware Settings ...
done
It was successfull since it found "Windows Boot Manager":
Now restart.
The theme.txt is here:
x@x:/usr/share/grub/themes/zorin$ ls
background.png menu_bkg_c.png select_bkg_c.png slider_c.png theme.txt
icons progress_bar_s.png select_bkg_e.png slider_n.png
info.png progress_highlight_c.png select_bkg_w.png slider_s.png
We need to copy it to /booot/grub/ ...but before we need to create the directories:
/boot/grub$ sudo mkdir themes
/boot/grub/themes$ sudo mkdir zorin
..now we can copy it:
/boot/grub/themes$ sudo cp -r /usr/share/grub/themes/ /boot/grub/
/boot/grub/themes/zorin$ ls
background.png menu_bkg_c.png select_bkg_c.png slider_c.png theme.txt
icons progress_bar_s.png select_bkg_e.png slider_n.png
info.png progress_highlight_c.png select_bkg_w.png slider_s.png
Also modify grub.cfg:
/etc/default/grub.d$ sudo nano /etc/default/grub
and change..
GRUB_THEME=/usr/share/grub/themes/zorin/theme.txt to
GRUB_THEME=/boot/grub/themes/Zorin/theme.txt
Run 'update-grub' afterwards to update.
Hope this helps to anyone that goes the same road 
Still need to fix surface keyboard is not present when powering on when it asks you for the encryption key (neither the on-screen keyboard neither the option to select my language for the keyboard).
I realised when proceeding like I did, the guided setup does not create swap "space" in the encrypted partition. How should I proceed to create an encrypted partition now?
Depending on how much RAM do You have, You couldn't need Swap. And it could be that it simply create a Swap File and not a Swap Partition.