Bug ID 819429: Unable to scp to device after upgrade: path not allowed

Last Modified: Sep 23, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP LTM(all modules)

Known Affected Versions:
13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,, 15.0.0, 15.0.1,,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,, 15.1.4

Fixed In:

Opened: Aug 30, 2019
Severity: 4-Minor


Cannot scp copy a file to the BIG-IP system. The system reports an error: path not allowed


Cannot copy files to a path present under whitelist.


Issue occurs when both conditions are present: -- The BIG-IP user has 'shell tmsh' or 'shell none' access. -- The scp destination is the real path target (not listed in the 'allow' list) of a symbolic link that is listed in the scp 'allow' list (/config/ssh/scp.whitelist). For example: scp to /var/tmp succeeds. scp to /shared/tmp fails with 'path not allowed'.


Use the explicitly listed (symlink) path as the scp destination.

Fix Information

You can now scp copy files to a path present under whitelist without error.

Behavior Change