Cisco Embedded Wireless Controller on Catalyst Access Points Configuration Guide, IOS XE 17.15.x

Feature history for secure data wipe

This table provides release and related information about the feature explained in this section.

This feature is also available in all the releases subsequent to the one in which they are introduced in, unless noted otherwise.

Table 1. Feature history for secure data wipe
Release	Feature	Feature Information
Cisco IOS XE Dublin 17.11.1	Secure data wipe	The Secure Data Wipe feature allows you to securely erase files from the file system of Cisco APs by using the clear ap config command.

Secure data wipe

The Secure Data Wipe feature allows you to securely erase files from the file system of Cisco APs by using the clear ap config command.

The secure data wipe feature:

Triggers a secure data wipe in an AP.
Stores basic information about the wipeout and its status.
Helps verify the files erased from the AP file system and troubleshoot issues.

To view the wipeout history details, use the clear ap config command.

Types of files securely erased

The following files are securely erased, without possibility of recovery:

Configuration and backup configuration files
Crash files
Log files
Boot variables
Package logs

Note

Data wipe for APs in Work Group Bridge mode can be done only through the mode button, which needs to be pressed for 20 to 60 seconds to remove storage content.

Supported AP models and software versions

Supported software versions

The supported software versions for Secure Data Wipe feature are:

Cisco Wave 1 APs are supported in Cisco IOS XE Amsterdam 17.3 and Cisco IOS XE Cupertino 17.9.3 and its later versions. Cisco Wave 1 APs are not supported in 17.4, 17.5, 17.6, 17.7, 17.8, 17.10 and later releases.
Cisco Wave 2 APs are supported in Cisco IOS XE Dublin 17.11 and Cisco IOS XE 17.13.
Cisco Wave 1 APs and Cisco Wave 2 APs are supported in Cisco IOS XE Dublin 17.12.

Supported AP models

Table 2. Supported AP models
Cisco IOS APs	Cisco COS APs	Cisco Catalyst APs
3700 (I/E/P)	3800 (I/E/P)	9162I 9164I 9166I 9166D1 9163E
2700 (I/E)	2800 (I/E)	9124AX (I/D/E)
1700I	1815 (I/W)	9136I
702W	1840 (I)	9130AX (I/E)
1532I/E	1850 (I/E)	9120AX (I/E)
1570	1830 (I/W)	9117AXI
—	1810	9115AX (I/E)
—	1800I	9105AX (I/W)
—	1540	—
—	1560	—
—	4800	—

Verify data wipe

To verify the output of the data wipe, run the show flash wipeout-log AP command:

Cisco-AP# show flash wipeout-log 
DATA SANITATION LOGS
Filesystem Name    :    Flash
Filesystem size    :    519 M (bytes) 
Total Files        :    95
Data Wipe Time     :    Fri Mar  8 09:50:49 UTC 2024 
Data Wipe method   :    CLEAR
Files cleared      :    92
Bytes cleared      :    5484544 (bytes)
Total Free byte    :    458846208 (bytes)
Device PID         :    C9130AXI-E           
Serial number      :    KWC233202MN  
Data Wipe Status   :    SUCCESS

Bias-Free Language

Book Title

Cisco Embedded Wireless Controller on Catalyst Access Points Configuration Guide, IOS XE 17.15.x

Chapter Title

Secure Data Wipe

Results

Chapter: Secure Data Wipe