FreeBSD’s Base64 tool differs from Linux’s, so we need to use
ENCRYPTION_KEY=$(head -c 32 /dev/urandom | b64encode -r -)
at the beginning. The config file generation is the same, but we need to use our
scp -i ~cbsd/.ssh/id_rsa command instead of
gcloud‘s to copy the file to the controllers.