Bug ID 819429: Unable to scp to device after upgrade: path not allowed

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 13.1.5,, 14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,,,,, 15.0.0, 15.0.1,,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,, 15.1.4,, 15.1.5,, 15.1.6,, 15.1.7, 15.1.8,,, 15.1.9,

Fixed In:
16.0.0, 15.1.10

Opened: Aug 30, 2019

Severity: 4-Minor


Cannot scp copy a file to the BIG-IP system. The system reports an error: path not allowed


Cannot copy files to a path present under whitelist.


Issue occurs when both conditions are present: -- The BIG-IP user has 'shell tmsh' or 'shell none' access. -- The scp destination is the real path target (not listed in the 'allow' list) of a symbolic link that is listed in the scp 'allow' list (/config/ssh/scp.whitelist). For example: scp to /var/tmp succeeds. scp to /shared/tmp fails with 'path not allowed'.


Use the explicitly listed (symlink) path as the scp destination.

Fix Information

You can now scp copy files to a path present under whitelist without error.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips