Isode Events (Facility Detail)

Summary: Isode components write to logging streams when events occur.

Facility DSA_SEC

Distributed operation events and errors.

NameSeverityIDDescriptionAction
AuthFailauthfail14 A user bind attempt was rejected. Operator action dependent on security policy.
AuthOKauthok16 Successful user or peer DSA authentication.
BADSIGerror5 An operation was requested. However the operations signature could not be correctly verified and so the operation will be discarded. None
DsaRequireSignedModifywarning6 Each DSA has a setting that causes it to require signed operations for any modification operations. This message is produced on startup, and whenever the setting is read from the root DSE (which is when the setting actually takes effect). None
GroupOfNamesReadFailwarning7 The DSA failed to read a groupOfNames entry when performing the access control decision function. The most likely cause of this is that the entry named in the relevant access controls does not exist. Fix access controls in case of missing groupOfNames entry. Contact Isode support in other cases.
InvalidACItemComponenterror12 An invalid ACI component was encountered. No operator action.
InvalidPasswordwarning9 Invalid password received. No operator action.
InvalidSASLMechanismerror10 Invalid or unsupported SASL mechanism received. No operator action.
MissingACItemComponenterror13 A required components was missing No operator action.
NOSIGerror4 An operation was requested. However the operation was missing a mandatory signature, and so will be discarded. Operator action dependent on security policy.
PeerAuthModeMismatchnotice15 A bind attempt was rejected because the credentials provided in the bind result do not match the credentials sent in the bind argument, e.g. simple crendentials were received in the bind result though strong credentials were sent in the bind argument. Verify that the peer DSA is configured and operating correctly.
PeerAuthModeNotPermittednotice11 A bind attempt was rejected because the authentication mode was not permitted by the configuration or fixed contstraints\ (e.g. anonymous bind is never permitted in DISP). Review peer authentication configuration for the peer DSA.
RejectedAutherror2 This DSA rejected a remote DSA's credentials in a bind attempt. Configuration error for authentication in directory replication or chaining agreement, that requires correction.
RemoteAuthFailerror1 Remote DSA rejected this DSA's credentials. Configuration error for authentication in directory replication or chaining agreement, that requires correction.
SigningErrorwarning8 An operation signing error occurred. Refer to previous logging to help determine the cause of the error.
SuperUserAuthFailauthfail3 A super user bind attempt was rejected due to inappropriate or invalid credentials. Operator action dependent on security policy.

RemoteAuthFail

Message Text
  • peer rejected my credentials in %2 bind operation (peer: %1)
Parameters
  1. DN of peer DSA.
  2. Protocol name.
Description
Remote DSA rejected this DSA's credentials.
Action
Configuration error for authentication in directory replication or chaining agreement, that requires correction.

RejectedAuth

Message Text
  • rejected credentials in %2 bind operation (peer: %1)
Parameters
  1. DN of peer DSA.
  2. Protocol name.
Description
This DSA rejected a remote DSA's credentials in a bind attempt.
Action
Configuration error for authentication in directory replication or chaining agreement, that requires correction.

SuperUserAuthFail

Message Text
  • super user bind failed, mode:%1, reason:\"%2\"
Parameters
  1. Mode.
  2. Reason.
Description
A super user bind attempt was rejected due to inappropriate or invalid credentials.
Action
Operator action dependent on security policy.

NOSIG

Message Text
  • Mandatory operation signature is missing.
Description
An operation was requested. However the operation was missing a mandatory signature, and so will be discarded.
Action
Operator action dependent on security policy.

BADSIG

Message Text
  • operation signature is invalid.
Description
An operation was requested. However the operations signature could not be correctly verified and so the operation will be discarded.
Action
None

DsaRequireSignedModify

Message Text
  • Setting for requiring signed operations for modifies is %1
Parameters
    Description
    Each DSA has a setting that causes it to require signed operations for any modification operations. This message is produced on startup, and whenever the setting is read from the root DSE (which is when the setting actually takes effect).
    Action
    None

    GroupOfNamesReadFail

    Message Text
    • failed to read a groupOfNames entry during ACI evaluation (dn: %1)
    Parameters
    1. DN.
    Description
    The DSA failed to read a groupOfNames entry when performing the access control decision function. The most likely cause of this is that the entry named in the relevant access controls does not exist.
    Action
    Fix access controls in case of missing groupOfNames entry. Contact Isode support in other cases.

    SigningError

    Message Text
    • failed to sign a PDU (%1)
    Parameters
    1. PDU type
    Description
    An operation signing error occurred. Refer to previous logging to help determine the cause of the error.
    Action

    InvalidPassword

    Message Text
    • reason:\"%1\"
    Parameters
    1. Reason
    Description
    Invalid password received.
    Action
    No operator action.

    InvalidSASLMechanism

    Message Text
    • mechanism:\"%1\"
    Parameters
    1. Mechanism name
    Description
    Invalid or unsupported SASL mechanism received.
    Action
    No operator action.

    PeerAuthModeNotPermitted

    Message Text
    • peer:\"%1\", protocol:%2, mode:%3
    Parameters
    1. Peer DSA DN
    2. Protocol
    3. Authenticaton mode
    Description
    A bind attempt was rejected because the authentication mode was not permitted by the configuration or fixed contstraints\ (e.g. anonymous bind is never permitted in DISP).
    Action
    Review peer authentication configuration for the peer DSA.

    InvalidACItemComponent

    Message Text
    • component:%1, detail:\"%2\"
    Parameters
    1. Component
    2. Detail
    Description
    An invalid ACI component was encountered.
    Action
    No operator action.

    MissingACItemComponent

    Message Text
    • component:%1
    Parameters
    1. Component
    Description
    A required components was missing
    Action
    No operator action.

    AuthFail

    Message Text
    • bind failed, mode:%1, reason:\"%2\", name:\"%3\"
    Parameters
    1. Mode.
    2. Reason.
    3. User.
    Description
    A user bind attempt was rejected.
    Action
    Operator action dependent on security policy.

    PeerAuthModeMismatch

    Message Text
    • peer:\"%1\", protocol:%2, received:%3, expected:%4
    Parameters
    1. Peer DSA DN
    2. Protocol
    3. Received authenticaton mode
    4. Expected authenticaton mode
    Description
    A bind attempt was rejected because the credentials provided in the bind result do not match the credentials sent in the bind argument, e.g. simple crendentials were received in the bind result though strong credentials were sent in the bind argument.
    Action
    Verify that the peer DSA is configured and operating correctly.

    AuthOK

    Message Text
    • mode:%1, name:"%2"
    Parameters
    1. Mode.
    2. User.
    Description
    Successful user or peer DSA authentication.
    Action

    All rights reserved © 2002 - 2024 Isode Ltd.