Secure data deletion for devices
You can securely delete data for disk drives, solid-state drives (SSD), Non-Volatile Memory Express (NVMe) devices.
Notes:
- Your system must remain powered on until the erase operation completes normally. Otherwise, the erase operation might not complete.
- Some erase operations can take several days to complete.
- Use only the
storcli
command to securely delete data for drives that are attached with MegaRaid LSI 9361 Controller.
If you want to perform secure data deletion for drives attached with Broadcom (LSI) MegaRAID
9361-8i SAS3 Controller, refer to the following table:
Protocol | Device SED/Non-SED | MegaRaid LSI 9361 Controller | ||
Rescue Environment | Erase Method | Command | ||
SAS | SSD Non-SED | OS (StorCLI) | Crypto-erase | storcli /cx/ex/sx start erase crypto |
SAS | HDD Non-SED | OS (StorCLI) | overwrite | storcli /cx/ex/sx start erase normal … |
SAS | SSD SED | OS (StorCLI) | Secure-erase | storcli /cx[/ex]/sx secureerase [force] |
SAS | HDD SED | OS (StorCLI) | Secure-erase | storcli /cx[/ex]/sx secureerase [force] |
SATA | SSD Non-SED | OS (StorCLI) | Crypto-erase | storcli /cx[/ex]/sx start erase crypto |
SATA | HDD Non-SED | OS (StorCLI) | overwrite | storcli /cx/ex/sx start erase normal … |
SATA | SSD SED | OS (StorCLI) | Secure-erase | storcli /cx[/ex]/sx secureerase [force] |
SATA | HDD SED | OS (StorCLI) | Secure-erase | storcli /cx[/ex]/sx secureerase [force] |
If you want to perform secure data deletion for drives attached with other controllers, refer to
the following table:
*The referenced commands require 9.54 or later version of the
Protocol | Device SED/Non-SED | Controllers other than Broadcom (LSI) MegaRAID 9361-8i SAS3 Controller | ||
Rescue Environment | Erase Method | Command | ||
SAS | SSD Non-SED | OS (sg_sanitize) | Block-erase | sg_sanitize --block /dev/sdX |
SAS | HDD Non-SED | OS (sg_sanitize) | Overwrite | sg_sanitize --overwrite –pattern=<file> /dev/sdX |
SAS | SSD SED | OS (sg_sanitize) | Crypto-erase | sg_sanitize –crypto /dev/sdX |
SAS | HDD SED | OS (sg_sanitize) | Crypto-erase | sg_sanitize –crypto /dev/sdX |
SATA | SSD Non-SED | OS (hdparm*) | Block Erase | hdparm --yes-i-know-what-i-am-doing --sanitize-block-erase /dev/sdk |
SATA | HDD Non-SED | OS (hdparm) | Security-erase |
|
SATA | SSD SED | OS (hdparm*) | Crypto-erase | hdparm --yes-i-know-what-i-am-doing –sanitize-crypto-scramble
/dev/sdk |
SATA | HDD SED | OS (hdparm*) | Crypto-erase | hdparm --yes-i-know-what-i-am-doing –sanitize-crypto-scramble
/dev/sdk |
hdparm
command.