request system zeroize
Syntax
request system zeroize <media>
Description
Erases all configuration information and resets all key values. The command removes all data files, including customized configuration and log files, by unlinking the files from their directories.
The command removes all user-created files from the system including all plain-text passwords, secrets, and private keys for SSH, local encryption, local authentication, IPsec, RADIUS, TACACS+, and SNMP.
This command reboots the device and sets it to the factory default configuration. After the reboot, you cannot access the device through the management Ethernet interface. Log in through the console as root and start the Junos OS CLI by typing cli at the prompt.
Options
media | (Optional) In addition to removing all configuration and log files, the media option causes memory and the media to be scrubbed, removing all traces of any user-created files. Every storage device attached to the system is scrubbed, including disks, flash drives, removable USBs, and the like. The duration of the scrubbing process is dependent on the size of the media being erased. As a result, the request system zeroize media operation can take considerably more time than the request system zeroize operation. However, the critical security parameters are all removed at the beginning of the process. Note:
The |
Required Privilege Level
Not applicable.
Sample Output
request system zeroize
user@host> request system zeroize warning: System will be rebooted and may not boot without configuration Erase all data, including configuration and log files? [yes,no] (no) yes warning: zeroizing re0 Loading /boot/loader Consoles: serial port BIOS driver C: is disk0 BIOS 607kB/2087552kB available memory FreeBSD/i386 bootstrap loader, Revision 1.1 (builder@youcompany.com, Mon Mar 28 20:49:26 UTC 2011) Loading /boot/defaults/loader.confg /kernel text-0x837a60 data=0x46a78+0x9d44c syms=[0x4+0x8f38+0x4+0xca1ee] Hit [Enter[ to boot immediately, or space bar for command prompt. Booting [/kernel]... platform_early_bootinit: MAG Series Early Boot Initilaization GDB: debug ports: sio GDB: current port: sio KDB: debugger backends: ddb gdb KDB: current backend: ddb Copyright (c) 1996-2011, Juniper Networks, Inc. All rights resrved. Copyright (c) 1992-2006 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 18\989, 1991, 1992, 1993,1994 The Regents of the University of California. All rights reserved. ... output truncated