Secure data wipe is a Cisco wide initiative to ensure storage devices on all the IOS XE based platforms to be properly purged using NIST SP 800-88r1 compliant secure erase commands. Whenever possible, IoT platforms will leverage the corresponding ENG design and implementation available so far on their platforms.

This feature is supported on the following IoT platforms:

• IR1101

• IR1800

• IR8140

• ESR6300

When the enable secure data wipe is executed, the following will get wiped out:

• IR1101, IR1800, IR8140: NVRAM, rommon variables, and bootflash

• ESR6300: NVARM, rommon variables, bootflash

The router will be in rommon prompt with default factory settings (baud rate 9600) after the command is executed. The bootflash will not get formatted until booting with IOS image thru usbflash or tftp download if the platform is supported.

Performing a Secure Data Wipe

To enable the feature, perform the following:

Router#factory-reset all secure
The factory reset operation is irreversible for securely reset all. Are you sure? [confirm]Y

Important

This operation may take hours. Please do not power cycle. To check the log after the command is executed, and booting up IOS XE, perform the following: Router#show platform software factory-reset secure log Factory reset log: #CISCO DATA SANITIZATION REPORT:# IR1800 Purge ACT2 chip at 12-08-2022, 15:17:28 ACT2 chip Purge done at 12-08-2022, 15:17:29 mtd and backup flash wipe start at 12-08-2022, 15:17:29 mtd and backup flash wipe done at 12-08-2022, 15:17:29.