Newer switches have the factory-reset all secure command which performs a NIST purge (see System Management Configuration Guide, Cisco IOS Release 15.2(7)E3k (Catalyst Micro Switch Series)
I've just found this command but it doesn't work for older switches, i.e. Catalyst 2960S-24TS-S so I've been resetting most older switches by;
- Stopping Bootloader
- Deleting all files from Flash except current IOS Firmware
- Optionally running the write erase command once logged in
Is there some kind of purge command for older switches or is deleting files from flash secure enough?
I would imagine taking it a step further by deleting all files from flash and reinstalling current or newest firmware might be even more secure? Any help is appreciated!!