Secure Zero Touch Provisioning (SZTP) automatically and securely loads version files (such as the system software package, configuration files, and patch files) when an unconfigured device is powered on and started.
During network device deployment, an administrator needs to perform software commissioning onsite after hardware installation is complete. If many devices are sparsely distributed on the network, the deployment efficiency is low and the labor cost is high as the administrator needs to manually configure each device.
Although the conventional ZTP function can be used to obtain version files from a file server and automatically load version files, data may be transmitted in insecure ways, such as without encryption or with the username or server being forged. To address these issues, SZTP is introduced. It uses two-way authentication, data encryption, and other secure processes to ensure that devices can be deployed securely and reliably.
With SZTP, devices do not require onsite commissioning or configuration, thereby reducing labor costs, improving deployment efficiency, and ensuring security during the deployment process.