cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

2406
Views
0
Helpful
9
Replies
Highlighted
Explorer

ACS 5.5, adding a SFTP repo.

Hi.

Please, where am I wrong?

I need to add a SFTP repo to perform ACS and View backup.

I'm running ACS version 5.5p6

Cisco ACS VERSION INFORMATION
-----------------------------
Version : 5.5.0.46.6
Internal Build ID : B.723
Patches :
5-5-0-46-6

This is my repo setup

repository SFTP-SERVER
  url sftp://192.168.1.50/
  user superuser password hash 9bd782dcaec1bf3860f354becbe93a2a9e18a677

When I try to backup I got an error message 306, fail to connect SSH.

Any idea?

Thanks.

9 REPLIES 9
Highlighted
Enthusiast

Andrea,

Andrea,

Did you add the SFTP server key to ACS with the command "crypto host_key add"?

Javier Henderson

Cisco Systems

Highlighted
Explorer

I added the key when I try a

I added the key when I try a SSH session that failed.

acs/acsadmin# sh cry host_keys
1024 29:00:72:5d:19:0f:41:30:bf:66:ec:45:a9:bd:4e:93 192.168.1.50 (RSA)
acs/acsadmin#

Anyway, please, could you provide a step by step guide to add key using the crypto command?

Thanks.

Highlighted
Cisco Employee

Hi Andrea,

Hi Andrea,

Do you have any other repository configured on the ACS ?

Can you try using a different server (SFTP/FTP) and then test ?

It would at least rule out that whether we are having the issue with the ACS or the remote server.

Regards,

Aditya

Highlighted
Explorer

Hi.

Hi.

No, this is the only one.

On the same host runs a FTP server.

ACS backups run successfully via CLI or GUI. ACS View backups always fail on the same repo.

ACS View database size is 68 Gb and I'm trying to rebuild with the last year infos only using the command

acsview rebuild-database 365

Thanks.

Highlighted
Cisco Employee

Hi Andrea,

Hi Andrea,

Could you also verify if you have the correct set of privileges on the SFTP server ?

Regards,

Aditya

Please rate helpful posts

Highlighted
Explorer

Yes, I have. I can reach the

Yes, I have. I can reach the server with another tool and create folders and files using the same credentials.


Thanks.

Highlighted
Cisco Employee

Do you know if there is any

Do you know if there is any device in the transit path that could block ssh communication between ACS and SFTP server? You may need to run a quick TCPDump on the ACS to check if SFTP server is responding at all.

~ Jatin

~Jatin Katyal
Highlighted
Explorer

There aren't any devices that

There aren't any devices that could block SSH. Anyway I'll try a dump. Thanks.

Highlighted
Explorer

Manual backups run

Manual backups run successfully but scheduled ACS backup no.

acs/acsadmin# acs backup aaa repository SFTP-SERVER
Please enter backup encryption password [8-32 chars]:
Please enter the password again:
Calculating disk size for /opt/backup/backup-aaa-160229-2243-1456782209
Total size of backup files are 143 M.
Max Size defined for backup files are 105277 M.
% backup in progress: Moving Backup file to the repository...75% completed
% backup in progress: Completing Backup...100% completed
ACS backup file 'aaa-160229-2243.tar.gpg' successfully copied to repository 'SFTP-SERVER'
acs/acsadmin# sh repo SFTP-SERVER
aaa-160229-2243.tar.gpg                                                        
acs/acsadmin# acs backup aaa repository SFTP-SERVER
Please enter backup encryption password [8-32 chars]:
Please enter the password again:
Calculating disk size for /opt/backup/backup-aaa-160229-2244-1456782262
Total size of backup files are 143 M.
Max Size defined for backup files are 105277 M.
% backup in progress: Moving Backup file to the repository...75% completed
% backup in progress: Completing Backup...100% completed
ACS backup file 'aaa-160229-2244.tar.gpg' successfully copied to repository 'SFTP-SERVER'


acs/acsadmin# sh repo SFTP-SERVER
aaa-160229-2243.tar.gpg                                                        
aaa-160229-2244.tar.gpg                                                        
acs/acsadmin#