Secure Mode allows the transition between standard secure mode and enhanced secure mode for several security functions. Standard secure mode is the existing, default security mode on the switch. Enhanced secure mode provides an additional level of switch security. Test-mode is not allowed in enhanced secure mode. Enhanced secure mode is also known as FIPS.

When changing from standard to enhanced secure mode, the switch must be removed from production and commands must be executed from a serial terminal emulator connected to the switch. Executing the secure mode command initiates a switch reboot which erases all the configuration files and everything on the flash memory except the firmware images, similar to the erase all zeroize command. (See “Switch Memory and Configuration” in the basic operation guide for your switch). After the system reboots, the switch must be power-cycled.