When run from the "user prompt"
{primary:node0}
rmckennon@peak10-juniper> file copy config.txt "scp://juniper@<FQDN>.com"
*** All unauthorized access to this system is subject to prosecution. ***
Permission denied (publickey,gssapi-keyex,gssapi-with-mic).
lost connection
error: put-file failed
error: could not send local copy of file
BUT this is not a valid test. this is being run as my user. In reality when the archives are being done after a commit, it's being done as the root user, using root's SSH keys. In our envirnment, we have copied over root's public key into the juniper user's keyring in our central authentication server (freeipa).
Now, that being said. I did upgrade the OS on this router on July 6th and since then all the archives were failing. I regenerated the ssh keys for root last night and so far I haven't seen any failures. But I'll keep an eye on it.
Rob.