Changing what the Reset+Clear button combination does

In their default configuration, using the Reset+Clear buttons in the combination described under Restoring the factory default configuration replaces the switch current startup-config file with the factory default startup-config file, then reboots the switch and removes local password protection.
WARNING:

This means that anyone who has physical access to the switch could use this button combination to replace the switch current configuration with the factory-default configuration, and render the switch accessible without the need to input a user name or password.

You can use the factory-reset command to prevent the Reset+Clear combination from being used for this purpose.

Syntax

[no] front-panel-security factory-reset
Disables or re-enables the following functions associated with using the Reset+Clear buttons in the combination described under Restoring the factory default configuration:
  • Replacing the current startup-config file with the factory default startup-config file

  • Clearing any local user names and passwords configured on the switch

Default: Both functions enabled.

For redundant management systems, this command only affects the active management module.

NOTE:

The Reset+Clear button combination always reboots the switch, regardless of whether the [no] form of the command has been used to disable the above two functions. Also, if you disable factory-reset, you cannot disable the password-recovery option, and the reverse.

Example of disabling the factory reset option