Push config backup from ClearPass automatically

I used Insight>Administration>Settings>File Transfer Settings to test the remote directory path. I kept receiving a backup failure with "Reason: [Errno 13] Permission denied". This was due to the missing forward slash(/) at the beginning of the path. Depending on the permissions set on the SFTP/SCP server to create or modify new directories, I had to create the folders with WinSCP first then point the path in the Remote Directory field. In my case, Clearpass would fail to create a new folder if the path was not already made. After creating the desired folders manually and forward slash, Insight and Policy Manager now transfer files as expected.  

FTP and SFTP are different - is you server an S-FTP server?  The S stands for secure, but usually means SSH is used as a wrapper for FTP services.  Generally that's port 22.

Solarwinds is expecting an SFTP sever, and not an FTP server.

Hi,

    I have configured the File Backup Server according to the screen shots, but i am facing an issue and my ftp server is configured with port 21.I am posting the screen shots.Any help would be appreciated.

Thanks for the update this really useful information. Just want to know which SFTP client is used winscp ?

Hi @all

i treid to configure it as mentioned. But it does not work. Eventviewer shows follwoing error message:

Reason: scp: /backups/10.10.255.13/auto-backup-tips-2017-04-08-01-10-01.tar.gz: No such file or directory

But /backups/ does exist:

Configuration looks als follows:

I think it is a problem with the path, but in which form Clearpass need the path?

Is there a way to start the backup manually?

Thanks in advance.

Saravanan,

Is there a way to test the backup manually or do you have to wait till 1:10 am?

Thanks,

Kent

Hi Joe,

We had another way(External Data Puller) to export the backup from ClearPass servers prior to 6.5. Refer the below links for more info on External Data Puller.

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/CPPM-External-Data-Puller-Tool-to-automatically-pull-CPPM/ta-p/176430

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/Automatically-transfer-CPPM-backups-to-external-Linux-Windows/ta-p/180628

Please let us know how you tried to backp the ClearPass Server and more info on failure to assist further.

What about prior to 6.5?  I need to back up my config before I update to 6.5 which has failed twice.

Hi Fahad/MSabin,

ClearPass server collects the auto-backup aroud 1:10am everyday and copy the file to external host. So check for the backup export after 1:10am.

You can specify the file path as shown in the below examples.

A new directory/folder(folder name = ClearPass serverIP) will be automatically created in the specified location to copy the backup file.

The ClearPass system Event Viewer will log the message of successful or failed backup export.

How often CPPM sends backups?