Solved: Data Sanitizing/Purging Older Switches

alarson011 · ‎01-04-2023

Newer switches have the factory-reset all secure command which performs a NIST purge (see System Management Configuration Guide, Cisco IOS Release 15.2(7)E3k (Catalyst Micro Switch Series)

I've just found this command but it doesn't work for older switches, i.e. Catalyst 2960S-24TS-S so I've been resetting most older switches by;

Stopping Bootloader
Deleting all files from Flash except current IOS Firmware
Optionally running the write erase command once logged in

Is there some kind of purge command for older switches or is deleting files from flash secure enough?

I would imagine taking it a step further by deleting all files from flash and reinstalling current or newest firmware might be even more secure? Any help is appreciated!!

Leo Laohoo · ‎01-05-2023

For Cisco IOS (not IOS-XE), I would format the flash.

View solution in original post

Leo Laohoo · ‎01-04-2023

Cisco an pick up and perform a secure-destruction for free. If I remembered correctly, they can even process non-Cisco branded (competitor's) products as well.

Customer Recycling Solutions

alarson011 · ‎01-05-2023

That's a good way to take care of switches that I no longer need so I appreciate the answer but I'm searching how to do it myself and if the way I'm currently doing it is secure

Leo Laohoo · ‎01-05-2023

For Cisco IOS (not IOS-XE), I would format the flash.