Factory Reset

Feature history for factory reset

This table provides release and platform support information for the features explained in this module.

These features are available in all the releases subsequent to the one they were introduced in, unless noted otherwise.

Release

Feature name and description

Supported platform

Cisco IOS XE 17.18.1

Factory reset: This feature deletes all data stored on a device and restores the device to its original configuration.

Cisco C9350 Series Smart Switches

Cisco C9610 Series Smart Switches

Factory Reset

A factory reset deletes all customer-specific data stored on a device and restores the device to its original configuration as it was at the time of shipping. This process erases configurations, log files, boot variables, core files, and credentials, including Federal Information Processing Standard (FIPS)-related keys. The data erasure performed during a factory reset aligns with the clear method defined in NIST Special Publication 800-88 Revision 1.

When do you need to do factory reset

You need to perform factory reset in the following scenarios

  • Return Material Authorization (RMA) for a device

    When returning a device to Cisco for RMA, remove all customer-specific data before obtaining the RMA certificate.

  • Recovering a compromised device

    If the key material or credentials stored on the device are compromised, reset the device to the factory configuration. Then, reconfigure the device.

What happens during a factory reset

  1. During a factory reset, the device reloads and enters ROMMON mode.

    After the factory reset, the device removes all its environment variables, including the MAC_ADDRESS and the SERIAL_NUMBER variables, which are required to locate and load the software.

  2. Perform a reset in ROMMON mode to automatically set the environment variables.

    The BAUD rate environment variable returns to its default value after a factory reset. Make sure that the BAUD rate and the console speed are the same at all times. Otherwise, the console becomes unresponsive.

  3. After the system reset in ROMMON mode is complete, add Cisco IOS XE software either through an USB or TFTP.

The following table provides details about the data that is erased and retained during the factory reset process:

Table 1. Data erased and retained during a factory reset

Data erased

Data retained

All Cisco IOS XE software images, including the current boot image

Data from remote field-replaceable units (FRUs)

Crash information and logs

Value of the configuration register.

User data, startup and running configuration, and contents of removable storage devices, such as Serial Advanced Technology Attachment (SATA), Solid State Drive (SSD), or USB

Credentials such as FIPS-related keys

Credentials such as Secure Unique Device Identifier (SUDI) certificates, and public key infrastructure (PKI) keys.

Onboard Failure Logging (OBFL) logs

ROMMON variables added by a user.

Licenses

Secure Data Wipe

The device stores software images, device configurations, software logs, and operational history. Customer-specific data may be present in any of these areas, and this information can include details about the network architecture and design implemented by customers.

How to do secure data wipe

To perform secure data wipe, use the all secure option in the factory-reset command. This performs data sanitization and securely resets the device. The booted image of the device is retained.

When data sanitization is completed, the device reloads, and the device image is retained in flash if it was booted with an image from the flash.

Secure data wipe standards

The secure data wipe feature uses media sanitization guidelines as described in NIST SP 800-88 Rev. 1. NIST 800-88 is a standard that is published by the National Institute of Standards and Technology (NIST) that provides guidelines for media sanitization.

The PURGE standard within NIST 800-88 specifies methods to render data on storage media unrecoverable using laboratory techniques. When a device is sanitized using NIST 800-88 PURGE method, data cannot be recovered through simple non-invasive data recovery techniques or advanced laboratory techniques.

Guidelines to perform factory reset

  • Back up all software images (including the current image), configurations, and personal data before you begin the factory reset process.

  • Ensure that the power supply is uninterrupted during the factory reset process.

  • Complete all In-Service Software Upgrade (ISSU) procedures before you begin the factory reset process.

  • After you perform a factory reset, software patches you have installed will not be restored.

  • If the factory-reset command is issued through a VTY session, the session is not restored after completion of the factory reset process.

  • The config keyword of the factory-reset command is not supported when the switch is in stacking or Stackwise Virtual Link (SVL) mode.

  • For modular chassis devices configured in high-availability mode, you must apply a factory reset to each supervisor module.

Perform a Factory Reset

Perform this procedure for a factory reset.

Procedure

Step 1

enable

Example:

Device> enable

Enables privileged EXEC mode.

Enter your password, if prompted.

Step 2

Enter one of these commands based on the switch configuration:

  • Switch

    factory-reset {all [secure] [3-pass] | config | boot-vars}

  • Switch stack

    factory-reset {all [secure 3-pass] | config | boot-vars | switch {switch-number | all {all [secure 3-pass] | config | boot-vars}}

Example:

Device# factory-reset all
OR
Device# factory-reset all secure

Resets the device to its configuration at the time of its shipping.

Note

 

No system configuration is required to use the factory reset command.

  • all : Erases all the content from the NVRAM, all the images, including the current boot image, boot variables, startup and running configuration data, and user data. We recommend that you use this option.

  • all secure : Performs data sanitization and securely resets the device.

    Note

     

    • You can use the all secure option only on standalone devices.

      This option implements guidelines for media sanitization as described in NIST SP 800-88 Rev. 1.

    • The factory-reset all secure command initiates data sanitization. The booted image of the device is retained.

      When data sanitization is completed, the device reloads, and the device image is retained in flash if it was booted with an image from the flash.

  • secure 3-pass : Erases all the content from the device with 3-pass overwrite.

    • Pass 1: Overwrites all addressable locations with binary zeroes.

    • Pass 2: Overwrites all addressable locations with binary ones.

    • Pass 3: Overwrites all addressable locations with a random bit pattern.

      Note

       

      This option takes approximately thrice the time taken to perform any other option.

    • config : Resets the startup configurations.

    • boot-vars : Resets the user-added boot variables.

    • switch {switch-number | all} :

      • switch-number : Specifies the switch number.

      • all : Selects all the switches in the stack.

After the factory reset process is successfully completed, the device reboots and enters ROMMON mode.