Skip to main content
Answer

How to Perform SCP/SFTP Transfers Between Managed Linux Systems via Password Safe?

  • June 5, 2025
  • 3 replies
  • 210 views
G
Forum|alt.badge.img+1

Hello community,

I have a question regarding our use of Password Safe. In our organization, we use Password Safe to access privileged SSH sessions. However, a question recently came up: since Password Safe is our only access method to managed Linux systems and credentials are never exposed to users, we're wondering how we could securely perform SCP or SFTP file transfers between two of our managed Linux systems.

Has anyone encountered a similar scenario or found an effective approach for handling file transfers in a Password Safe-controlled environment?

Any suggestions would be greatly appreciated.

Best answer by Paulo144

@gabriel.restrepo The scenario your are describing its possible, but i would recommend against it, you will mostly like break your session monitoring service the moment you try to send a file with more than 5mb.

I know because i have done so on the past, the service just can’t work with file transfer over a proxied session to another proxied session, but if you want to try, here what you got do:

1 - Direct Connection to a SSH session with putty or moba(the best one)
2 - On the session use this command: 

“rsync -avz /path/to/local/source/ UserAccount+ManagedAccount+ManagedSystem@PasswordSafeHost:/path/to/remote/destination/”

-a: archive mode (preserves permissions, ownership, timestamps, etc.)
-v: verbose output
-z: compress file data during transfer

That way you can open a transfer from a proxied session in password safe, to another proxied session in password safe, but on another server.

Good Luck!

Pulitros144

3 replies

GloriaB
BeyondTrust Employee
  • GloriaB
  • BeyondTrust Employee
  • June 5, 2025

Hello ​@gabriel.restrepo, You can use direct connect to SFTP. Here are some articles to help:

 

Direct Connect string for SSH using CMD, Putty, MobaXterm, WinSCP and Filezilla

MobaXterm SFTP side pane missing directories and file when doing Quick Connect session that are proxied through Password Safe

 

 

Hope this helps

jacek.krecisz
G
G
Forum|alt.badge.img+1

Hi Gloria,

 

Thank you for your response — that’s a great approach for scenarios where I need to download files to my laptop or upload them to a managed system.

However, my question was more focused on cases where the transfer is between two managed systems within the PasswordSafe environment.

 

Thank you for your support.

Paulo144
Forum|alt.badge.img+5
  • Paulo144
  • Veteran
  • Answer
  • June 10, 2025

@gabriel.restrepo The scenario your are describing its possible, but i would recommend against it, you will mostly like break your session monitoring service the moment you try to send a file with more than 5mb.

I know because i have done so on the past, the service just can’t work with file transfer over a proxied session to another proxied session, but if you want to try, here what you got do:

1 - Direct Connection to a SSH session with putty or moba(the best one)
2 - On the session use this command: 

“rsync -avz /path/to/local/source/ UserAccount+ManagedAccount+ManagedSystem@PasswordSafeHost:/path/to/remote/destination/”

-a: archive mode (preserves permissions, ownership, timestamps, etc.)
-v: verbose output
-z: compress file data during transfer

That way you can open a transfer from a proxied session in password safe, to another proxied session in password safe, but on another server.

Good Luck!

Pulitros
G

Badge Earners

  • BCIE: Password Safe
    DanielAustinhas earned the badge BCIE: Password Safe
  • BCA: Password Safe
    Nicolas.Ghas earned the badge BCA: Password Safe
  • Core Concepts -Endpoint Privilege Management - Linux
    Lakshmihas earned the badge Core Concepts -Endpoint Privilege Management - Linux
  • 5 Courses Completed - Endpoint Privilege Management - Linux
    Lakshmihas earned the badge 5 Courses Completed - Endpoint Privilege Management - Linux
  • Core Concepts - Privileged Remote Access
    ITKristinhas earned the badge Core Concepts - Privileged Remote Access
Show all badges
Terms & ConditionsCookie settingsAccessibility statement