000025219 - ClearTrust Authorization Server 5.0.1 Log Messages

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 5Show Document
  • View in full screen mode

Article Content

Article Number000025219
Applies ToRSA ClearTrust 5.0.1
RSA ClearTrust Authorization Server (AServer)
Sun Solaris 2.8
Microsoft Windows 2000
IssueClearTrust Authorization Server 5.0.1 Log Messages
The ClearTrust Authorization Server will log certain messages to a file.  The types of messages logged are dependent on the level of logging set in the Authorization Server configuration file. This is an example of the log created:

2003-07-18 12:41:53:898 CEST,WebServer = WebServer,URI = /cleartrust/ct_home.asp,Client IP Address = 192.168.0.128,Client Port = 2900,Result Code = 21,Result Action = Check Resource,Result Reason = Unprotected Resource
2003-07-18 12:41:53:939 CEST,WebServer = WebServer,URI = /gsi/*,Resource = /gsi/travel.htm,Client IP Address = 192.168.0.128,Client Port = 2208,Result Code = 20,Result Action = Check Resource,Result Reason = Protected Resource
2003-07-18 12:41:54:109 CEST,User = melwin,WebServer = WebServer,URI = /gsi/*,Resource = /gsi/travel.htm,Client IP Address = 192.168.0.128,Client Port = 1922,Browser IP Address = 127.0.0.1,Result Code = 10,Result Action = Authorization Success,Result Reason = Group Entitlement
ResolutionThis is a full list of all log messages available for the ClearTrust 5.0.1 Authorization Server. Messages are only logged if their log level is less than or equal to the configured log level.

Result Action = Authorization Success
Result Reason = Access Allowed
Log level: 30

Result Action = Authorization Failure
Result Reason = Access Denied
Log level: 20

Result Action = Authentication Failure
Result Reason = Administrative Lockout
Log level: 20

Result Action = Authentication Failure
Result Reason = Bad Password
Log level: 20

Result Action = Authorization Success
Result Reason = Cached Allow
Log level: 30

Result Action = Authorization Failure
Result Reason = Cached Deny
Log level: 20

Result Action = Authentication Failure
Result Reason = Custom Authentication Type
Log level: 10

Result Action = Data Store Error
Log level: 10

Result Action = Authentication Failure
Result Reason = Account Expired
Log level: 20

Result Action = Returned Groups For User
Log level: 40

Result Action = Authorization Success
Result Reason = Group Entitlement
Log level: 30

Result Action = Authorization Failure
Result Reason = Group Entitlement
Log level: 20

Result Action = Authentication Failure
Result Reason = Inactive Account
Log level: 20

Result Action = Internal Error
Result Reason = Invalid Argument
Log level: 10

Result Action = Internal Error
Result Reason = LDAP Authentication Error
Log level: 10

Result Action = Authentication Failure
Result Reason = NT PDC Error
Log level: 10

Result Action = Need more information
Result Reason = New Pin Accepted
Log level: 20

Result Action = Authentication Failure
Result Reason = New Pin Rejected
Log level: 20

Result Action = Need more information
Result Reason = New Pin Required
Log level: 20

Result Action = Need more information
Result Reason = Next Code Required
Log level: 20

Result Action = Authorization Failure
Result Reason = No Entitlement
Log level: 20

Result Action = Authorization Success
Result Reason = Passive Allow
Log level: 30

Result Action = Authorization Failure
Result Reason = Passive Deny
Log level: 20

Result Action = Authentication Failure
Result Reason = Password Expired
Log level: 20

Result Action = Authentication Failure
Result Reason = Password Expiration Forced
Log level: 20

Result Action = Authentication Failure
Result Reason = Password Expired
Log level: 20

Result Action = Authentication Failure
Result Reason = New User Password Expire
Log level: 20

Result Action = Property/Properties not returned
Log level: 20

Result Action = Read User Properties
Result Reason = -
Log level: 30

Result Action = Check Resource
Result Reason = Protected Resource
Log level: 30

Result Action = Authorization Success
Result Reason = Realm Entitlement
Log level: 30

Result Action = Authorization Failure
Log level: 20

Result Action = Authentication Failure
Result Reason = SecurID Authentication Failed
Log level: 20

Result Action = Server Test
Result Reason = Server Test Failed
Log level: 10

Result Action = Server Test
Result Reason = Server Test Succeeded
Log level: 40

Result Action = Authorization Success
Result Reason = Smart Rule
Log level: 30

Result Action = Authorization Failure
Result Reason = Smart Rule
Log level: 20

Result Action = User Token Created
Result Reason = Valid User
Log level: 30

Result Action = User Token Failed
Result Reason = Token error
Log level: 10

Result Action = Internal Error
Result Reason = Unknown Authentication Type
Log level: 10

Result Action = Internal Error
Result Reason = Unknown Error
Log level: 10

Result Action = Resource Check
Result Reason = Unknown Resource
Log level: 40

Result Action = Authentication Failure
Result Reason = Unknown User
Log level: 20

Result Action = Check Resource
Result Reason = Unprotected Resource
Log level: 40

Result Action = Authorization Success
Result Reason = User Entitlement
Log level: 30

Result Action = Authorization Failure
Result Reason = User Entitlement
Log level: 20

Result Action = User In Group
Log level: 40

Result Action = User Not In Group
Log level: 40

Result Action = Authentication Success
Result Reason = Valid User
Log level: 30
Notes

For more information, see the following solutions:

RSA ClearTrust Key Server/Dispatcher 5.0.1 Log Messages

Legacy Article IDa20676

Attachments

    Outcomes