SFTP Scanning Leads To Access is Denied Error

book

Article ID: 160163

calendar_today

Updated On:

Products

Data Loss Prevention Network Discover

Issue/Introduction

When attempting to run an SFTP scan , the scan will immediately fail and in the Scan Detail page you will see in the Recent Scan Activity:

WARNING Failed to read sftp:/X.X.X.X; error: Access is denied.


In the filereader, you will see the following error:

INFO: No excluded file list directory: D:\Vontu\Protect\bin\..\config\excludeFiles
com.vontu.directorycrawler.AbstractFileSystemCrawler crawlDirectory
WARNING: Unable to get list of files for directory sftp:\X.X.X.X
com.vontu.directorycrawler.filter.FileSystemCrawlerFilter loadExcludeList

Resolution

This can happen if in the Sharepointmapper.properties there is a space at the end for some or all the parameters related to SFTP. 

SFTP Parameters:

#Windows WebDrive implementation of SFTP
mounter3.uri=sftp
mounter3.prefix=SFTP
 
#SFTP General
SFTP.scriptName=sftp.bat
SFTP.Success=success
SFTP.unmountScriptName=sftpu.bat
SFTP.umountSuccess=success

#Mount Errors
SFTP.AccessDenied=Not Applicable
SFTP.ShareNotFound=Not Applicable
SFTP.ShareExists=Not Applicable
SFTP.MultipleConnections=Not Applicable
SFTP.SyntaxError=Not Applicable
SFTP.ResponseExpected=Not Applicable
SFTP.ServerNotFound=Not Applicable
SFTP.AccountLockedOut=Not Applicable
SFTP.NoLogonServers=Not Applicable
 
#Unmount Errors
SFTP.MountDoesNotExist=could not be found
SFTP.MountDependencyExists=force them closed
 
1.  Go to \Vontu\Protect\config and open Sharepointmapper.properties. 

2.  Remove the spaces for SFTP related parameters from the sharepointmapper.properties or copy them from the above. 
 
3.  Make sure that sharepointmapper.properties is correct as mentioned above

4.  Restart the Vontu Monitor  service and run the scan again.

NOTE: This can also happen if the target does not use sftp all in lower case. For example, sftp://10.X.X.X will work but not SFTP://10.X.X.X or Sftp://10.X.X.X. The case of the sftp prefix matters and should be all in lowercase.