Monday, July 24, 2017

Configure SCP in cisco router/switch

http://itknowledgeexchange.techtarget.com/network-technologies/how-to-configure-secure-copy-scp-in-cisco-devices/

In order to configure Secure Copy (SCP) in a Cisco Router make sure the SSH is enabled and its working.
Step 1) Lets enable the SSH and AAA features in the Cisco Device

ITKE-AS1(config)#ip domain-name itke.com
ITKE-AS1(config)#crypto key generate rsa general-keys modulus 512
The name for the keys will be: ITKE-AS1.itke.com

% The key modulus size is 512 bits
% Generating 512 bit RSA keys, keys will be non-exportable…[OK]

ITKE-AS1(config)#
ITKE-AS1(config)#aaa new-model
ITKE-AS1(config)#aaa authentication login default local
ITKE-AS1(config)#aaa authorization exec default local

Step 2) In order to use the SCP feature to manage configuration we must have at least once user account with enough privilege to access it
ITKE-AS1(config)#
ITKE-AS1(config)#username itke privilege 15 password secret itkeleads

Step 3) Now you are ready to enable the SCP server on:
ITKE-AS1(config)#ip scp server enable


Just by following these 3 simple steps we can enable Secure Copy (SCP) in a Cisco router or a Switch. For any further clarifications you can always have a close look at Cisco’s document on Secure Copy (SCP). 

No comments:

Post a Comment