Enable Secure Data Wipe Capabilities
Secure data wipe is a Cisco wide initiative to ensure storage devices on all the IOS XE based platforms to be properly purged using NIST SP 800-88r1 compliant secure erase commands. Whenever possible, IoT platforms will leverage the corresponding ENG design and implementation available so far on their platforms.
This feature is supported on the following IoT platforms:
-
IR1101
-
IR1800
-
IR8140
-
ESR6300
When the enable secure data wipe is executed, the following will get wiped out:
-
IR1101, IR1800, IR8140: NVRAM, rommon variables, and bootflash
-
ESR6300: NVARM, rommon variables, bootflash
The router will be in rommon prompt with default factory settings (baud rate 9600) after the command is executed. The bootflash will not get formatted until booting with IOS image thru usbflash or tftp download if the platform is supported.
Performing a Secure Data Wipe
To enable the feature, perform the following:
Router#factory-reset all secure
The factory reset operation is irreversible for securely reset all. Are you sure? [confirm]Y
Important |
This operation may take hours. Please do not power cycle. To check the log after the command is executed, and booting up IOS XE, perform the following:
|