Hi James,

               Please check the link http://now.netapp.com/NOW/knowledge/docs/ontap/rel732/html/ontap/filesag/GUID-B61B9FB7-BDDA-4F91-8FC5-CA4C39B43B7B.html  and make sure the settings you have done are all correct .And it also looks like you need to enable sshv2 for SFTP to work.

Also looks it does not support root user ,please check this link http://now.netapp.com/NOW/cgi-bin/bol?Type=Detail&Display=370800 .

Regards,

Vinay

Thanks for you reply, There are very limited options with SFTP and I have tried nearly all of them that are listed in the manual.  I have SSH2 enabled as it works with fas3020\orbitfeed i.e. NTLM authentication just does not seem work with windows....  I have check the mapping below:-

fas3020> secureadmin status
ssh2    - active
ssh1    - active
ssl     - active
fas3020> useradmin user list orbitfeed
Name: orbitfeed
Info:
Rid: 131073
Groups: Users
Full Name:
Allowed Capabilities: *
Password min/max age in days: 0/4294967295
Status: enabled

fas3020> wcc -u orbitfeed
Wed Jan 27 19:56:32 GMT [auth.trace.authenticateUser.loginTraceMsg:info]: AUTH: LSA lookup: Located account "FAS3020\orbitfeed" in domain "FAS3020"..
(NT - UNIX) account name(s):  (FAS3020\orbitfeed - orbitfeed)
        ***************
        UNIX uid = 10

        NT membership
                FAS3020\orbitfeed
                BUILTIN\Users
        User is also a member of Everyone, Network Users,
        Authenticated Users
        ***************
fas3020> wcc -s orbitfeed
(NT - UNIX) account name(s):  (FAS3020\orbitfeed - orbitfeed)
        ***************
        UNIX uid = 10

        NT membership
                FAS3020\orbitfeed
                BUILTIN\Users
        User is also a member of Everyone, Network Users,
        Authenticated Users
        ***************
fas3020>

Hi

Did you resolve the issue?

I'm facing near the same problem. I want to setup sftp to put files on filer via sftp, but I get the same error (ONTAP 7.3.6)

I added a user:

ACDC> useradmin user list sftpadmin

Name: sftpadmin

Info:

Rid: 131080

Groups: Administrators

Full Name:

Allowed Capabilities: login-*,cli-*,api-*,security-*

Password min/max age in days: 0/4294967295

Status: enabled

enabled sftp:

ACDC> options sftp

sftp.auth_style              mixed

sftp.bypass_traverse_checking off

sftp.dir_override            /vol/vol0/etc

sftp.dir_restriction         off

sftp.enable                  on

sftp.idle_timeout            900s

sftp.locking                 none

sftp.log_enable              on

sftp.log_filesize            512k

sftp.log_nfiles              6

sftp.max_connections         15

sftp.max_connections_threshold 75%

sftp.override_client_permissions off

And I get the same error when I try to connect via WinSCP or Linux scp client:

[sftp.connection.request.failed:error]: SFTP (SSH File Transfer Protocol) connection request from client system x.x.x.x, user sftpadmin failed, because the user is not permitted to do SFTP (SSH File Transfer Protocol) operations.

[sshd_1:error]: error: Disconnecting: SFTP connection creation failed

Please advice.

Thank you.

Nick

Hi Nick,

What does your usermap.cfg file and passwd file look like?

They are both in /etc

Also what user are you using?

Regards,

James

Please excuse my grammar sent from my iPhone

Please see if below KBs are of any help

https://kb.netapp.com/support/index?page=content&id=1012643

https://kb.netapp.com/support/index?page=content&id=1012617

Did anyone solve the issue?  I am trying to use WinSCP client to upload some firmware but I am getting the same error.  I am not using a UNIX client or LDAP so the settings in those articles did not work for me.  I have an open ticket with NetApp and we went thought the KB step by step but it did not fix my issue. 

After spending a long time with support I finaly got a resolution.  The users I created had to have a password that was 8 characters long.  Once I changed the 11 character password to 8 it worked.