SCP Server Support

SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network., which is based on SSHSecure Shell. SSH is a network protocol that provides secure access to a remote device. , is a tool to securely transfer files between hosts over the network. SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. uses SSHSecure Shell. SSH is a network protocol that provides secure access to a remote device. for authentication as well as data transfer. By using this functionality, clients can upload or download files from and to a server using SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network..

Typically, this functionality is of much use to customers that do not want to host a separate SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server. Some customers need the ArubaOS controller, managed device, or Mobility Master to act as an SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server as well, so that they can copy the files which are used in the general operation of the controller, managed device or Mobility Master— for example, files such as configuration, software upgrade images, and so on—from or to the controller, managed device, or Mobility Master flash. Additionally, for some customers, this functionality helps to easily manage their devices with their existing scripts or tools.

Sample Topology

The following figure is a sample topology where VRRPVirtual Router Redundancy Protocol. VRRP is an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN.-Master serves as the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server as well. A wireless client and a managed device in the network serve as the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. clients. The Mobility Master must support enabling the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality.

Figure 1  Sample Topology - VRRP Master as SCP Server

Click to view a larger size.

This is the sample topology for file transfer from external device to or from a controller that is serving as an SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server.

 

The maximum number of supported sessions is five at a time. So a customer's topology that has more than five managed devices cannot support the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality.

Configuring SCP Server Functionality

To enable the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device, execute the following command:

(host) [mynode] (config) #service scp

To disable the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device, execute the following command:

(host) [mynode] (config) #no service scp

Verifying SCP Server Functionality Configuration

To view if the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on the controller or managed device is enabled or not, execute the following command:

(host) [mynode] #show scp

Debugging

To debug SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. functionality issues, execute the following command:

(host) [mynode]# show audit-trail

The output of the command shows all tracked file transfers, which can help in debugging any issue.

Merits

Enabling the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality on a controller or managed device can help you perform the following tasks:

Periodic backup of running configuration of the controller or managed device to another system.

Update all the controllers or managed devices with a new configuration file.

Upgrade all the controllers or managed devices in the network, without the need of an image server, by using the following steps:

1. Copy the image to the flash storage of controller or managed device that serves as SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server.
2. In the controller or managed device, execute the copy scp: <scp server ip> username system: partition 0|1 command.

 

Aruba recommends to NOT use the controller or managed device that is serving as SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server for a centralized image upgrade.

Limitations

Enabling the SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality in a controller or managed device can make it vulnerable to security issues. The following list briefs the restrictions enforced to use this SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality:

Only SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. protocol is supported. SFTPSecure File Transfer Protocol. SFTP is a network protocol that allows file access, file transfer, and file management functions over a secure connection. or WinSCP protocols are not supported.

You can copy only one file at a time. Directories are not supported.

The SCPSecure Copy Protocol. SCP is a network protocol that supports file transfers between hosts on a network. server functionality is available only in ArubaOS 8.x versions.

The maximum number of simultaneous sessions supported is five.

The implementation of this functionality is limited to work with APs that use the Beeliner interface.