SCP Server Support

SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network., which is based on SSH Secure Shell. SSH is a network protocol that provides secure access to a remote device. , is a tool to securely transfer files between hosts over the network. SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. uses SSH Secure Shell. SSH is a network protocol that provides secure access to a remote device. for authentication as well as data transfer. By using this functionality, clients can upload or download files from and to a server using SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network..

Typically, this functionality is of much use to customers that do not want to host a separate SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server. Some customers need the ArubaOS controller, managed device, or Mobility Master to act as an SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server as well, so that they can copy the files which are used in the general operation of the controller, managed device or Mobility Master— for example, files such as configuration, software upgrade images, and so on—from or to the controller, managed device, or Mobility Master flash. Additionally, for some customers, this functionality helps to easily manage their devices with their existing scripts or tools.

Sample Topology

The following figure is a sample topology where VRRP Virtual Router Redundancy Protocol. VRRP is an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN.-Master serves as the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server as well. A wireless client and a managed device in the network serve as the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. clients. The Mobility Master must support enabling the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality.

Figure 1  Sample Topology - VRRP Master as SCP Server

Click to view a larger size.

This is the sample topology for file transfer from external device to or from a controller that is serving as an SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server.

 

The maximum number of supported sessions is five at a time. So a customer's topology that has more than five managed devices cannot support the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality.

Configuring SCP Server Functionality

To enable the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device, execute the following command:

(host) [mynode] (config) #service scp

To disable the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device, execute the following command:

(host) [mynode] (config) #no service scp

Verifying SCP Server Functionality Configuration

To view if the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device is enabled or not, execute the following command:

(host) [mynode] #show scp

Debugging

To debug SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. functionality issues, execute the following command:

(host) [mynode]# show audit-trail

The output of the command shows all tracked file transfers, which can help in debugging any issue.

Merits

Enabling the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on a controller or managed device can help you perform the following tasks:

Periodic backup of running configuration of the controller or managed device to another system.

Update all the controllers or managed devices with a new configuration file.

Upgrade all the controllers or managed devices in the network, without the need of an image server, by using the following steps:

1. Copy the image to the flash storage of controller or managed device that serves as SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server.
2. In the controller or managed device, execute the copy scp: <scp server ip> username system: partition 0|1 command.

 

Aruba recommends to NOT use the controller or managed device that is serving as SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server for a centralized image upgrade.

Limitations

Enabling the SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality in a controller or managed device can make it vulnerable to security issues. The following list briefs the restrictions enforced to use this SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality:

Only SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. protocol is supported. SFTP Secure File Transfer Protocol. SFTP is a network protocol that allows file access, file transfer, and file management functions over a secure connection. or WinSCP protocols are not supported.

You can copy only one file at a time. Directories are not supported.

The SCP Secure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality is available only in ArubaOS 8.x versions.

The maximum number of simultaneous sessions supported is five.

The implementation of this functionality is limited to work with APs that use the Beeliner interface.