Re: If you can't fix it
Did you read the article? Cisco said if you don't need it, turn it off.
Whilst I am all for making things secure, lets not forget that this feature is for new, unconfigured switches. Clue is in the name of the feature, install.
First paragraph from cisco:
Smart Install is a plug-and-play configuration and image-management feature that provides zero-touch deployment for new switches. You can ship a switch to a location, place it in the network and power it on with no configuration required on the device.
So really the idea is you ship a pallet of new switches (or replace one an identical SKU one for example) to your DC and the director flashes correct IOS imagea and your pre-created config. Then you turn the feature off. As much as I like things secure, there is not really much need for authentication in this situation as the kit is effectively unprovisioned until Smart Install has done its bit.
Doesn't sound like a bad way at all to install bunch of new kit (or replace broken kit).