Network and Storage Protocols

SFTP can not login in

unitech89e9
12,502 Views

I want to setup a sftp in windows enviroment,

so I create a volume in /vol/sftpvol

the sftp configuration is

FAS2040*> options sftp
sftp.auth_style              mixed
sftp.bypass_traverse_checking on
sftp.dir_override            /vol/sftpvol
sftp.dir_restriction         on
sftp.enable                  on
sftp.idle_timeout            900s       (value might be overwritten in takeover)
sftp.locking                 delete
sftp.log_enable              on
sftp.log_filesize            512k
sftp.log_nfiles              6
sftp.max_connections         15         (value might be overwritten in takeover)
sftp.max_connections_threshold 75%        (value might be overwritten in takeover)
sftp.override_client_permissions off

 

and the ftp configuration is

FAS2040*> options ftp
ftpd.3way.enable             off
ftpd.anonymous.enable        on
ftpd.anonymous.home_dir
ftpd.anonymous.name          anonymous
ftpd.auth_style              mixed
ftpd.bypass_traverse_checking on
ftpd.dir.override            /vol/sftpvol
ftpd.dir.restriction         on
ftpd.enable                  on
ftpd.explicit.allow_secure_data_conn on
ftpd.explicit.enable         off
ftpd.idle_timeout            900s       (value might be overwritten in takeover)
ftpd.implicit.enable         off
ftpd.ipv6.enable             off
ftpd.locking                 none
ftpd.log.enable              on
ftpd.log.filesize            512k
ftpd.log.nfiles              6
ftpd.max_connections         500        (value might be overwritten in takeover)
ftpd.max_connections_threshold 0%         (value might be overwritten in takeove                                             r)
ftpd.tcp_window_size         28960

 

and then the ssh that I configuration is

FAS2040*> secureadmin status
ssh2    - active
ssh1    - active
ssl     - active

 

but when I use the sftp client software to login with root account

it report me [Authentication failed]

2.jpg

 

and the filer's console show some messages

Wed Nov 19 09:48:51 GMT [FAS2040:openssh.invalid.channel.req:warning]: SSH client (SSH-2.0-WinSCP_release_5.5.6) from 192.168.0.60 sent unsupported channel request (10, simple@putty.projects.tartarus.org).
Wed Nov 19 09:48:51 GMT [FAS2040: sshd_1:error]: error: Disconnecting: SFTP connection creation failed
Wed Nov 19 09:48:51 GMT [FAS2040:sftp.connection.request.failed:error]: SFTP (SSH File Transfer Protocol) connection request from client system 192.168.0.60, user root failed, because the user is not permitted to do SFTP (SSH File Transfer Protocol) operations.

 

Why the root not permitte?

How to solve this problem?

Please help me!

Thanks very much!

 

4 REPLIES 4

georgevj
12,491 Views

Have you checked the following KB articles?

 

https://kb.netapp.com/support/index?page=content&id=1012617

https://kb.netapp.com/support/index?page=content&id=1014125

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
Cannot find the answer you need? No need to open a support case - just CHAT and we’ll handle it for you.

unitech89e9
12,470 Views

Hi georgevj

Thanks for your help,

I can use the root login through sftp,

but I still can't login by the other account!

when I login by the [administrator] this builtin account in filer,

it will show me this error message

2.jpg

 

the error messange in console is

Mon Nov 24 00:20:11 GMT [fas2040:sftp.connection.request.failed:error]: SFTP (SSH File Transfer Protocol) connection request from client system 192.168.0.60, user administrator failed, because the user is not permitted to do SFTP (SSH File Transfer Protocol) operations.

 

when I use the account that I create to login,

it will message me that the password is wrong,

8.jpg

 

and the console will show

fas2020> Mon Nov 24 00:22:34 GMT [fas2020: sshd_1:info]: Failed password for 89e9 from 192.168.0.60 port 56663ssh2

 

Is any configration that I missing or setting error?

Thanks

 

 

 

thokelly
10,696 Views

Hi,

 

 

and what is the solution with using CIFS???

 

 

Greetings,

Tom

 

georgevj
10,673 Views

Please follow this KB word by word: https://kb.netapp.com/support/index?page=content&id=1012617

 

 

If you miss or mis-spel any of the words in /etc/password and /etc/group files, you will receive an error like "Mon Mar 7 04:06:42 GMT [sshd_0:info]: Failed password for sftpuser from 192.168.0.60 port 51543ssh2"

 

Make sure that the UID and GID specified in passwd and group files are valid. and the option "sftp.auth_style" is set to "unix"

If this post resolved your issue, help others by selecting ACCEPT AS SOLUTION or adding a KUDO.
Cannot find the answer you need? No need to open a support case - just CHAT and we’ll handle it for you.
Public