I have been using automatic archive configurations with TFTP and it works great. However, I'd like to switch to SCP as the file transfer mechanism to improve security on the router and for the file server. I have a test router configured with:
This should automatically archive every five minutes with the specified username and password. However, it does not automatically archive, but I can manually archive by typing archive config. I visually watch the router successfully log in to the SCP server and put the file in the correct directory. Is SCP not supported for automatic archive or am I missing something?
Solved! Go to Solution.
Here is the show archive:
The next archive file will be named scp://user:pwd@host/rtr01-11
Archive # Name
10 scp://user:pwd@host/rtr01-10 <- Most Recent
All of the above SCP archives were performed manually.
Here is my configuration:
Is is what the output looks like when I perform archive manually:
This is a private computer system. This computer system, including all
related equipment, networks, and network devices (specifically including
Internet access) are provided only for authorized use. This computer system
may be monitored for all lawful purposes, including to ensure that its use
is authorized, for management of the system, to facilitate protection against
unauthorized access, and to verify security procedures, survivability, and
operational security. Monitoring includes active attacks by authorized entities
to test or verify the security of this system. During monitoring, information
may be examined, recorded, copied and used for authorized purposes. All
information, including personal information, placed or sent over this system
may be monitored.
Use of this computer system, authorized or unauthorized, constitutes consent
to monitoring of this system. Unauthorized use may subject you to criminal
prosecution. Evidence of unauthorized use collected during monitoring may be
used for administrative, criminal, or other adverse action. Use of this system
constitutes consent to monitoring for these purposes.
The file is written in the correct archive directory.
I have some more information. The router appears to be not reset its timing of archive. For example, if I originally put 1440 minutes and then change it to 5 minutes. The router does not begin archiving at 5 minutes until after the 1440 time limit. Is there a way to manually reset the archive countdown?
thanks! I have tried it on the 3560G platform with c3560-ipbasek9-mz.122-25.SEE3.bin IOS. I experienced the same problem with SCP. Doing a no archive and adding the archive information does appear to work. I'll continue testing today.
Why when using the "path scp://user:password@host", the password length is limited to 15 characters? I'm able to use password in the length of 25 characters when running "copy run scp:" from commandline.
I tested this on 15.1, and I looked through the code, and the password limit appears to be 31 characters. Please start a new thread for your issue and include the specifics about your device and config.