User's Manual
Security: Secure Sensitive Data Management
SSD Properties
Cisco Small Business 300 Series Managed Switch Administration Guide  366
18
The default rules can be modified, but they cannot be deleted. If the SSD default 
rules have been changed, they can be restored. 
SSD Default Read Mode Session Override 
The system contains sensitive data in a session, as either encrypted or plaintext, 
based on the read permission and the default read mode of the user.
The default read mode can be temporarily overridden as long it does not conflict 
with the SSD read permission of the session. This change is effective immediately 
in the current session, until one of the following occurs:
• User changes it again. 
• Session is terminated. 
• The read permission of the SSD rule that is applied to the session user is 
changed and is no longer compatible with the current read mode of the 
session. In this case, the session read mode returns to the default read 
mode of the SSD rule. 
SSD Properties
SSD properties are a set of parameters that, in conjunction with the SSD rules, 
define and control the SSD environment of a device. The SSD environment 
consists of these properties:
• Controlling how the sensitive data is encrypted.
• Controlling the strength of security on configuration files.
• Controlling how the sensitive data is viewed within the current session. 
All Secure  Encrypted Only Encrypted 
All Insecure  Encrypted Only Encrypted 
Table 3 Default SSD Rules 
Rule Key  Rule Action 
User  Channel  Read 
Permission 
Default Read Mode 










