SCP SFTP errors.

Unanswered Question

I have installed SSH and it works with PuTTY. I then wanted to use SCP. I enabled the SCP server on the switch: ip scp server enable.

First I logged in to the switch using PuTTY.

I tried using WinSCP from SourceFire. I found that it doesn't work and forum users say that the SCP transfer must be initiated FROM the Switch/Router.

The command should look something like Router# copy flash:c3620-ik9s-mz.122-0.17.T scp:[email protected]/

Error message: Connections to that host not permitted from this terminal.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Leo Laohoo Tue, 03/24/2009 - 17:02
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

What do you need to securely copy from the server to the appliance?

That is really the purpose of the SCP or SFTP. They encrypt the data, as well as authenticate. You want to avoid using telnet or tftp, both use clear text. Even better TACACS+ with the addition of RSA tokens. This system costs about $25K for a couple of appliances and 20 tokens. The benefits are the One Time Passwords off the tokens and a great deal of AAA.

System includes: Cisco ACS SE appliance and RSA authentication server; the RSA server is a System 130 appliance, built by Dell running a hardened Windows. This is the way to go for login (as opposed to SSH).


This Discussion