Sanitizing a Device
Some Roving Edge devices provide a sanitization feature that enables you to permanently and securely erase all data from the device in a way that the data can't be recovered. If your device has the sanitization feature, you must sanitize the device before you return the device to Oracle.
This feature is only available on devices that were self-provisioned on-site, as described in Self-Provision the Roving Edge Device. The steps in this procedure help you find out if this feature is supported or not.
The sanitization feature offers the following wipe options:
-
Simple Wipe: File storage is erased. This wipe takes less time than a deep wipe, and is suitable for situations where a deep wipe isn't needed, for example, if time is more important than the data on the device, or if you don't have any user data on the device.
- Deep Wipe: All user data on file storage is erased. Depending on the amount of data on the device, a deep wipe might run for 10 to 20 hours. Select the deep wipe option when you want to completely remove all user data from the device.
When the entire sanitization procedure is completed, the following actions happen:
-
All user data is wiped clean on the device.
- The device is returned to an unprovisioned state (the same state in which the device was shipped to you).
-
Billing stops for this device.
-
You're presented with a sanitization certificate.
Prerequisites
The device must have connectivity to the device's OCI home region during the entire procedure.
Ensure you have synced all your needed data to Oracle Cloud Infrastructure using Data Sync before deleting it from your devices. See Data Sync Tasks.
-
Access the serial console as described in Operating the Serial Console.
Don't unlock the device. The device must be locked to sanitize it.
If the device is unlocked, take these actions:
- Ensure the device auto unlock feature is disabled. See Managing Auto Unlock.
- Select the Reboot Device option to reboot the device into a locked state.
-
In the serial console, select Advanced Menu.
-
Select Sanitize Device Management.
Note
If you receive a message that you can't use the sanitize feature on this device, instead see Returning Older Devices.
The Sanitize Device Management menu is displayed:
Sanitize Device Management -------------------------------------------- 1) Download Artifacts from OCI for Sanitization 2) Sanitize Device with Simple Wipe 3) Sanitize Device with Deep Wipe 4) Help -
Select Download Artifacts from OCI for Sanitization.
Files that are required for sanitization are downloaded from OCI to the device.
-
Select one of the following sanitization programs:
-
Sanitize Device with Simple Wipe
- Sanitize Device with Deep Wipe
After the sanitization completes, user data is wiped, the device reboots into a minimal OS and displays a new Sanitization Main Menu.
1) Configure Networking 2) Advanced Operations 3) Device Sanitization -
-
Select Device Sanitization.
The following menu options are displayed:
1) Wipe rover image 2) Complete sanitization -
Select Wipe rover image.
Data on the boot drive is erased.
-
Select Complete sanitization.
The following actions happen:
- The device is returned to an unprovisioned state (the same state in which the device was shipped to you).
-
The device shuts down.
-
The status of the device node in your OCI tenancy is set to CUSTOMER_SANITIZED.
-
Oracle is notified that the device is restored to a factory state.
-
A sanitization certificate is displayed.
- (Optional) Take a screen shot of the sanitization certificate and save it for your records.
What's next?
Return the device to Oracle: When sanitization is complete, Oracle sends you a shipping label that you can use to return the device to Oracle. After Oracle receives the device, the node status in your tenancy changes to ORACLE_RECEIVED. To see the status of a node, see Listing Nodes for Compute, GPU, and Storage Devices.