https://kb.vmware.com/s/article/2043048
Describes how to manually restore the state.tgz from ESXi.
However, it seems nowadays the files within are encrypted too (local.tgz.ve). There is also an "encryption.info" file which maybe contains the key? The auto-backup.sh file contains some snippets for decryption. I need to decrypt the files either on another system or backup the files in an unencrypted way.
Is there any way to do this ? I can manually tinker with the auto-backup.sh file but then I'd also need to backup this somehow.
The file mentions a feature flag "ESXConfigEncryption" but I don't know where I can set this persistently in order to turn it off.
Alternatively some command to decrypt the file (ideally on another system) would be useful.