Backing up switch configuration using configupload command failing with error 'configupload not permitted (sftp failed)'

Summary: Issued the 'configupload' command to back up switch configuration to an SFTP server. Received the error message 'configupload not permitted (sftp failed)'.

Acest articol se aplică pentru Acest articol nu se aplică pentru Acest articol nu este legat de un produs specific. Acest articol nu acoperă toate versiunile de produs existente.
Consultați alte resurse

Symptoms

The errdumpall output on the switch displays the following error message at the time the configupload command fails:
 
SEC-3076: 'SSH session establishment failed. Reason: Unable to negotiate a key exchange method'.

Cause

A possible cause for this issue is the switch and the SFTP server having SSH KEX (key exchange) algorithms which do not match.

The SSH KEX algorithms, which are enabled on the switch, can be checked using the following command:

secCryptoCfg --show

Resolution

Update the SSH KEX algorithms on either the switch or the SFTP server so that they match.

Use the following command syntax to update the SSH KEX algorithms on the switch:

secCryptoCfg --replace -type SSH -kex [algorithm1,algorithm2]

Below is a list of the SSH KEX algorithms that are available in Fabric OS 8.2.x:
  • ecdh-sha2-nistp256
  • ecdh-sha2-nistp384
  • ecdh-sha2-nistp521
  • diffie-hellman-group-exchange-sha256
  • diffie-hellman-group-exchange-sha1
  • diffie-hellman-group14-sha1
  • diffie-hellman-group1-sha1

Check the Fabric OS Command Reference guide section on the 'secCryptoCfg' command for further details and examples.

Produse afectate

Brocade
Proprietăți articol
Article Number: 000188867
Article Type: Solution
Ultima modificare: 23 iun. 2021
Version:  1
Găsiți răspunsuri la întrebările dvs. de la alți utilizatori Dell
Servicii de asistență
Verificați dacă dispozitivul dvs. este acoperit de serviciile de asistență.