Create a Wipe Boot Template

Last modified by Steffi F on 2026/06/01 11:58
Content

Create a new wipe boot template

A wipe boot template is used to boot devices into a special boot environment and automatically delete existing data from the storage media. In this context, the term “wipe” refers to the full removal of files and existing operating systems from a hard drive or SSD.
A Wipe Boot Template is used, for example, to securely reset devices before reuse, return, or disposal and to reliably remove old data. Automated execution ensures that the deletion process can be executed consistently on all devices without requiring manual steps.

Version note  Version note:  

Starting with ACMP version 6.10, you can choose wipe methods to determine how data should be deleted and create an interactive wipe boot template.

To delete entire hard drives using a Wipe Boot Template, follow these steps:

1. In ACMP, navigate to OS Deployment > Boot Templates.

2. Choose the folder where the boot template should be created.

3. Click the Add button on the ribbon bar and select the Add Wipe Boot Template option from the drop-down menu.

1779430057746-678.png

Add the Wipe Boot Template

4.A wizard will open where you can specify the output directory, the name of the new boot template, a description (if applicable), and the Boot Image itself, which will be used as the environment for the wipe process.
You can also choose whether the wipe should be performed as an interactive boot template.

Hinweis  Note:  

An interactive boot template is used to boot Clients into a boot environment via a physical boot medium, rather than booting over the network (PXE). The boot medium contains a Boot Image, which is provided, for example, on a USB drive or as an ISO file. Unlike an automated or wipe boot template, the actions after startup are not executed in a full manner. Instead, administrators can interactively select and confirm which steps should be executed during the boot process, such as starting deployments.

Wipe Boot Template_610.png

Select the Boot Image

5. Click Next.

6. On the next page, configure the template.

Wipe Boot Template anlegen_Seite2.png

Specify the wipe methods

Use the checkboxes to select whether you want to delete all drives or individual drives.

Then choose which wipe method you want to execute for the delete.

The wipe method you select determines the procedure used to delete the data on the respective storage device. Since SSDs behave differently from traditional hard drives (HDDs) from a technical standpoint, different deletion methods are available.

  • SSD

Uses a deletion method specifically designed for SSDs. This typically involves a hardware-supported command such as Secure Erase to remove the data quickly and reliably without placing unnecessary strain on the SSD.

  • SSD Alternative

Used when the standard erasure method for SSDs is not supported or fails. In this case, an alternative method is used to securely delete the data. This method is considered less resource-efficient, as it places a heavier load on the SSD and causes more write operations. It should therefore only be used if the standard SSD erasure method is not available.

  • No SSD

This method is intended for traditional magnetic hard drives (HDDs). It involves selectively overwriting specific data areas of the disk to prevent data recovery.

The selected method is automatically applied in ACMP depending on the detected storage device type. This ensures that both SSDs and HDDs are deleted using an appropriate and secure method.

As a final option, you can decommission the client once the disk deletion has been successfully completed. If applicable, specify the reason for decommissioning.

Hinweis  Note:  

A decommissioned Client is stored as a “Retired Client” in ACMP.

Hinweis  Note:  

The Client can only be shut down if all deletions have been completed successfully.

7. Click Done.

The Wipe Boot Template you created to delete disks is now available in the workspace.

Hinweis  Note:  

If you have already created old wipe boot templates, you can continue to use them. 

Monitoring the Wipe Process

During a wipe process, only data volumes that are available and accessible on the system can be deleted. If, for example, a drive cannot be processed due to missing hardware, connection issues, or other errors, this is logged accordingly in the monitor log.

Both finished and failed deletion operations can be tracked there.

Example:

Drives 0 and 2 are to be deleted. The deletion of Drive 0 is performed successfully and logged as successful in the monitor log. However, Drive 2 is not present, which is why the deletion process for this drive fails and is displayed as an error. The finished deletion of Drive 0 remains unaffected.

Client Detail Plugin "Wipe Logs"

You also have the option to view a client’s wipe logs via the Client Details. There, all executed jobs are listed with start and end times, the status (Running/Successful/Failed), and additional info for each executed wipe.

Under “Details,” the logs for each hard drive that was wiped are listed. So, for example, if you wiped 2 drives, you will see 2 logs here.

You can also output the completed wipes as a report via a Display Field. To do this, go to Display Fields under Available Fields > Client > OS Deployment > Wipe Reports.

Wipe Methods

Wipe methods are used to remove data from a storage medium in a targeted and as secure a manner as possible. Unlike standard deletion or formatting, the goal is not merely to make the data invisible, but to render it permanently inaccessible. This is particularly important when selling or disposing of devices, protecting sensitive information, or before reinstalling a system.

Different wipe methods are used depending on the storage medium. Some methods overwrite data multiple times, while others utilize special functions of modern SSDs. The goal is to prevent data recovery—even with specialized software—as much as possible.

The choice of wipe method determines how data is deleted from the respective storage medium. Since SSDs behave technically differently than traditional hard drives (HDDs), ACMP offers different erasure methods:

SSD

Uses an erasure method specifically designed for SSDs. This typically involves a hardware-supported command such as Secure Erase to remove the data quickly and reliably without placing unnecessary strain on the SSD.

SSD Alternative

This method is used when the standard SSD erasure method is not supported or fails. In this case, an alternative method is used to securely delete the data nonetheless.

Since this requires additional write operations, this method is less resource-efficient and can place a heavier load on the SSD. It should therefore only be used if the regular SSD erasure method is not available.

HDD

This method is intended for traditional magnetic hard drives (HDDs). It involves selectively overwriting specific data areas of the hard drive to prevent data recovery.

ACMP automatically selects the appropriate wipe method based on the detected storage device type. This ensures that both SSDs and HDDs are deleted using a suitable and secure method.

The following table provides an overview of the standards supported by ACMP for the delete process:

Hinweis  Note:  

All items under the SSD option with more than 7 passes have already been filtered out. However, the items under HDD may include options with more than 7 wipe passes.

EnumNameRunsDescriptionRecommended for HDDRecommended for SDD
AFSSI_5020US Air Force AFSSI 50203
  1. Overwrite with 0x00
  2. Overwrite with 0xFF
  3. Overwrite with a random character

After that, “verification should take place”

(Minus)
AR_380_19US Army AR 380-193(Haken)(Minus)
CSEC_ITSG_06Canadian CSEC ITSG-063
  • CSEC= Communication Security Establishment Canada
  •  3-Fach-Wipe
    1. Überschreiben mit 0x00
    2. Überschreiben mit 0xFF
    3. Überschreiben mit random Bitmuster
  • Letzter Durchgang wird verifiziert
  • sehr ähnlich zu DOD_5220_22_M 
(Haken)(Minus)
DOD_5200_28_STDUS DoD 5200.28-STD7
  • DoD steht für Department of Defense, dem US-Verteidigungsministerium
  • 1985
  • 7-Fach-Wipe
    1. Überschreiben mit 0x55
    2. Überschreiben mit 0xAA
    3. Überschreiben mit 0x55
    4. Überschreiben mit 0xAA
    5. Überschreiben mit 0x55
    6. Überschreiben mit 0xAA
    7. Überschreiben mit random Character
(Haken)(Minus)
DOD_5220_22_MUS DoD 5220.22-M3
  • DoD steht für Department of Defense, dem US-Verteidigungsministerium
  • 1995
  • 3-Fach-Wipe:
    1. Überschreiben mit fixem Byte, z.B. 0x00
    2. Überschreiben Komplement zu 1., z.B. 0xFF
    3. Überschreiben mit "cryptographically secure pseudo-random sequence"
  • Verifikation von allen Durchgängen
(Haken)(Minus)
DOD_5220_22_M_EUS DoD 5220.22-M (E)3
  • DoD steht für Department of Defense, dem US-Verteidigungsministerium
  • 3-Fach-Wipe
    1. Überschreiben mit 0xF1
    2. Überschreiben mit Komplement von 1 (0x0E)
    3. Überschreiben mit random Character
(Haken)(Minus)
DOD_5220_22_M_ECEUS DoD 5220.22-M (ECE)7
  • DoD steht für Department of Defense, dem US-Verteidigungsministerium
  • 2001
  • 7-Fach-Wipe

1. bis 3.: DOD_5220_22_M_E

4. Überschreiben mit random Character

5. bis 7. DOD_5220_22_M_E

(Haken)(Minus)
GOST_R_50739_95_1Russian GOST R 50739-95 (1 pass)1Überschreiben mit random Byte(Haken)(Minus)
GOST_R_50739_95_2Russian GOST R 50739-95 (2 passes)2
  • 2-Fach-Wipe
    1. Überschreiben mit 0x00
    2. Überschreiben mit random Byte
(Haken)(Minus)
HMG_IS5_BBritish HMG IS5 (Baseline)2
  •  
    1. Überschreiben mit 0x00
    2. Überschreiben mit pseudo random Bitmuster
(Haken)(Minus)
HMG_IS5_EBritish HMG IS5 (Enhanced)3
  •  
    1. Überschreiben mit 0x00
    2. Überschreiben mit 0xFF
    3. Überschreiben mit "cryptographically secure pseudo-random sequence"
  • Verifikation aller Durchgänge
(Haken)(Minus)
ISM_6_2_92Australian ISM 6.2.921
  • australisch
  • Überschreiben mt random Bitmuster
(Haken)(Minus)
NAVSO_P_5239_26_MFMUS Navy NAVSO P-5239-26 (MFM)3
  • 3-Fach-Wipe
    1. Überschreiben 0x01
    2. Überschreiben mit 0x7FFFFFFF (32-Bit mit führender 0, dann nur noch 1)
    3. Überschreiben mit unterschiedlichen random Bitmuster
  • Verifikation
(Haken)(Minus)
NAVSO_P_5239_26_RLLUS Navy NAVSO P-5239-26 (RLL)3
  • 3-Fach-Wipe
    1. Überschreiben mit 0x01
    2. Überschreiben mit 0x27FFFFFF
    3. Überschreiben mit unterschiedlichen random Bitmustern
  • Verifikation
(Haken)(Minus)
NCSC_TG_025US NCSC-TG-0253
  • 3-Fach-Wipe
    1. Überschreiben mit 0x00
    2. Überschreiben mit 0xFF
    3. Überschreiben mit random Character
  • Verifikation nach jedem Schritt
(Haken)(Minus)
NIST_800_88_1RNIST 800-88 (1 pass random)1
  • NIST steht für National Institute of Standard
  • Überschreibt alle adressierbaren Speicherplätze einmal mit zufälligen Bitmustern
(Haken)(Minus)
NIST_800_88_1ZNIST 800-88 (1 pass zeros)1
  • NIST steht für National Institute of Standard
  • Überschreibt alle adressierbaren Speicherplätze mit Nullen
(Haken)(Minus)
NIST_800_88_3

NIST 800-88 (3 passes)

 

3
  • NIST steht für National Institute of Standard
  • 3-Fach-Wipe:
    1. Überschreiben mit 0x00
    2. Überschreiben mit 0xFF
    3. Überschreiben mit pseudo-random String
  • am Ende verifizieren
(Haken)(Minus)
NSA_130_1US NSA 130-13

3-Fach-Wipe

1.und 2. Überschreiben mit random Wert

3. Überschreiben mit 0xAA

(Haken)(Minus)
NZSIT_402New Zealand NZSIT 4021
  • Überschreibt jeden Sektor mit einem random Byte
  • danach wird verifiziert
(Haken)(Minus)
PFITZNER_7Pfitzner 7-pass7
  • Roy-Pfitzner-Methode
  • 7-Fach-Wipe mit random Byte
(Haken)(Minus)
PFITZNER_33Pfitzner 33-pass33
  • Roy-Pfitzner-Methode
  • 33-Fach-Wipe mit random Bitmustern
(Haken)(Minus)
RCMP_TSSIT_OPS_IICanadian RCMP TSSIT OPS-II7
  • Royal Canadian Mounted Police: Technical Security Standards for Information Technology
  • 7-Fach-Wipe, oft wie folgt implementiert
    1. Überschreiben mit 0x00
    2. Überschreiben mit 0xFF
    3. Überschreiben mit 0x00
    4. Überschreiben mit 0xFF
    5. Überschreiben mit 0x00
    6. Überschreiben mit 0xFF
    7. Überschreiben mit random Bitmuster
(Haken)(Minus)
SCHNEIERBruce Schneier7
  • Bruce-Schneider-Methode
  • 7-Fach-Wipe:
    1. Überschreiben mit 0x00
    2. Überschreiben mit Komplement von 1 (also 0xFF)
    3. - 7. Überschreibe alle adressierbaren Speicherplätze mit pseudo-random Bitmustern
(Haken)(Minus)
VSITRGerman VSITR7
  • deutscher Standard; (VS=Verschlusssachen; IT=Informationstechnik; R=Richtlinie)
  • 1998 bis 2009, inzwischen abgelöst
  • Richtlinien zum Geheimschutz von Verschlusssachen beim Einsatz von Informationstechnik
  • 7-Fach-Wipe mit festen Mustern: 0x00, 0xFF abwechselnd und am Ende 0xAA (Wikipedia)
  • "7 sequental passes, consistently filling it with the specific patterns"
(Haken)(Minus)
SSD_SANITIZESSD Sanitizen.A.
  • Sanitize, säubern
  • Nur für NVMe
  • Factory Reset und löschen der Daten
  • Nicht von allen SSDs unterstützt
(Minus)(Haken)
Sanitize + Crypto   (Minus)(Haken)
SSD_SE n.A.
  • Secure Erase, schnelles Löschen
  • Factory Reset
  • zurücksetzen aller Flash-Zellen auf Zustand "1": unprogrammiert
  • kein Löschen/Überschreiben nur die Zuordnungstabelle leeren
(Minus)(Haken)
Secure Erase + Crypto   (Minus)(Haken)
TRIMSSD Trimn.A."SSD Trim is a hardware command to safely wipe solid state drives. It’s universal and can be applied to almost all SSD drives SATA/NVMe."(Minus)(Haken)

 

© Aagon GmbH 2026
Besuchen Sie unsere Aagon Community