The following messages are triggered by user events and appear in the User Event Monitor.
| Event Code | Level | Type | Category | Description |
|---|---|---|---|---|
| 2 | notice | user | Authentication | Method now locked. |
| 3 | notice | user | Authentication | Method unlocked - User successfully authenticated. |
| 20 | error | user | Authentication | Method enrollment failed - Required parameter missing. |
| 21 | error | user | Authentication | Method enrollment failed - User does not exist. |
| 22 | error | user | Authentication | Method enrollment failed - User account inactive. |
| 23 | error | user | Authentication | Method enrollment failed - Sign-in device not registered to user. |
| 24 | error | user | Authentication | Method enrollment failed - Provider type not found. |
| 30 | error | user | Authentication | Authentication failed - Required parameter missing. |
| 31 | error | user | Authentication | Authentication failed - User does not exist. |
| 32 | error | user | Authentication | Authentication failed - User account inactive. |
| 33 | error | user | Authentication | Authentication failed - Application not found. |
| 34 | error | user | Authentication | Authentication failed - Rule not found. |
| 35 | error | user | Authentication | Authentication failed - Method locked. |
| 36 | error | user | Authentication | Authentication failed - Device not registered or authentication method not enrolled. |
| 51 | error | user | Authentication | Authentication failed - Device not registered. |
| 52 | error | user | Authentication | Authentication failed - Cannot push notification to device. |
| 53 | error | user | Authentication | Authentication failed - Internal verification interrupted. |
| 101 | notice | user | Authentication | Authenticate Tokencode enrollment succeeded. |
| 102 | error | user | Authentication | Authenticate Tokencode enrollment failed - Authentication device not registered to user. |
| 103 | notice | user | Authentication | Authenticate Tokencode authentication succeeded. |
| 104 | error | user | Authentication | Authenticate Tokencode authentication failed - Invalid tokencode. |
| 105 | error | user | Authentication | Authenticate Tokencode authentication failed - Previously used tokencode detected. |
| 106 | notice | user | Authentication | Identity router API tokencode request sent to hosted service. |
| 107 | notice | user | Authentication | Identity router API tokencode response received - Authentication succeeded. |
| 108 | error | user | Authentication | Identity router API tokencode response received - Authentication failed. |
| 109 | error | user | Authentication | Identity router API tokencode authentication failed - User not found in identity source. |
| 110 | error | user | Authentication | Identity router API tokencode authentication failed - Username is associated with multiple user accounts. |
| 111 | error | user | Authentication | Identity router API tokencode authentication failed - User account disabled in identity source. |
| 112 | error | user | Authentication | Identity router API tokencode authentication failed - User email address not found in identity source. |
| 113 | error | user | Authentication | Identity router API tokencode authentication failed - Identity source unreachable. |
| 114 | error | user | Authentication | Identity router API tokencode authentication failed - Hosted service unreachable. |
| 115 | error | user | User Status | Identity router API user status check - User not found in identity source. |
| 116 | error | user | User Status | Identity router API user status check - Username is associated with multiple user accounts. |
| 117 | error | user | User Status | Identity router API user status check - Identity source unreachable. |
| 201 | notice | user | Authentication | LDAP password authentication succeeded. |
| 202 | error | user | Authentication | LDAP password authentication failed - Unknown cause. |
| 203 | error | user | Authentication | LDAP password authentication failed - Request timed out or identity router is not connected. |
| 204 | error | user | Authentication | LDAP password authentication provider enrollment failed - Missing email or password. |
| 205 | error | user | Authentication | LDAP password authentication provider enrollment failed - Unknown cause. |
| 206 | error | user | Authentication | LDAP password authentication failed - Provider configuration in the Cloud Authentication Service is incorrect for this user. |
| 207 | error | user | Authentication | LDAP password authentication failed - Provider configuration in the Cloud Authentication Service is incorrect for this user. |
| 208 | error | user | Authentication | LDAP password authentication failed - Missing email or password. |
| 211 | error | user | Authentication | LDAP password authentication failed - LDAP server host unreachable. Invalid port or server is not running. |
| 212 | error | user | Authentication | LDAP password authentication failed - LDAP server host unresolvable. |
| 213 | error | user | Authentication | LDAP password authentication failed - Cannot establish a trusted SSL connection with the LDAP directory server. Check for invalid certificate. |
| 215 | error | user | Authentication | LDAP password authentication failed - Sign-in failure: unknown username or invalid password. |
| 216 | error | user | Authentication | LDAP password authentication failed - LDAP account restriction, for example sign-in time or policy restriction is enforced. |
| 217 | error | user | Authentication | LDAP password authentication failed - Time restriction prevents sign-in for this LDAP account. |
| 218 | error | user | Authentication | LDAP password authentication failed - LDAP account not permitted to authenticate through this identity router. |
| 219 | error | user | Authentication | LDAP password authentication failed - LDAP password expired. |
| 220 | error | user | Authentication | LDAP password authentication failed - LDAP account disabled. |
| 221 | error | user | Authentication | LDAP password authentication failed - LDAP account configuration prevents sign-in. |
| 222 | error | user | Authentication | LDAP password authentication failed - LDAP account expired. |
| 223 | error | user | Authentication | LDAP password authentication failed - LDAP password must be changed using your company's internal procedures. |
| 224 | error | user | Authentication | LDAP password authentication failed - LDAP account locked out. |
| 225 | error | user | Authentication | LDAP password authentication failed - LDAP password locked for specified lockout duration. |
| 300 | notice | user | Authentication | FIDO Token enrollment succeeded. |
| 301 | error | user | Authentication | FIDO Token enrollment failed - User reached maximum token limit. |
| 302 | error | user | Authentication | FIDO Token enrollment failed - FIDO protocol error. |
| 303 | error | user | Authentication | FIDO Token enrollment failed - RSA SecurID Access service error. |
| 304 | error | user | Authentication | FIDO Token enrollment failed - Unknown error. |
| 316 | error | user | Authentication | FIDO Token name update failed – Token name cannot be blank. |
| 317 | error | user | Authentication | FIDO Token name update failed – Token name exceeds 255 characters. |
| 318 | error | user | Authentication | FIDO Token name update failed – Token name is already in use. |
| 340 | notice | user | Authentication | FIDO Token authentication succeeded. |
| 341 | error | user | Authentication | FIDO Token authentication failed - FIDO protocol error. |
| 342 | error | user | Authentication | FIDO Token authentication failed - RSA SecurID Access service error. |
| 343 | error | user | Authentication | FIDO Token authentication failed - Unknown error. |
| 601 | notice | user | Authentication | RSA SecurID user authentication succeeded. |
| 602 | notice | user | Authentication | RSA SecurID user authentication succeeded - New PIN accepted. |
| 603 | notice | user | Authentication | RSA SecurID user authentication - Requires new PIN. |
| 604 | notice | user | Authentication | RSA SecurID user authentication - Requires next tokencode. |
| 605 | error | user | Authentication | RSA SecurID user authentication failed - Invalid passcode. |
| 606 | error | user | Authentication | RSA SecurID user authentication failed - Invalid next tokencode. |
| 607 | error | user | Authentication | RSA SecurID user authentication failed - Invalid PIN. |
| 608 | error | user | Authentication | RSA SecurID user authentication failed - RSA SecurID service is not available. |
| 609 | error | user | Authentication | RSA SecurID user authentication failed - Unknown cause. |
| 701 | notice | user | Authentication | Approve authentication succeeded. |
| 702 | error | user | Authentication | Approve authentication failed - User response timed out. |
| 703 | error | user | Authentication | Approve authentication failed - User denied approval. |
| 704 | error | user | Authentication | Approve enrollment failed. |
| 707 | notice | user | Authentication | Approve enrollment succeeded. |
| 709 | error | user | Authentication | Approve authentication failed - All in-progress authentication requests canceled. |
| 801 | notice | user | Authentication | Fingerprint Verification authentication succeeded. |
| 802 | error | user | Authentication | Fingerprint Verification authentication failed - User response timed out. |
| 803 | error | user | Authentication | Fingerprint Verification authentication failed - User fingerprint verification failed. |
| 804 | error | user | Authentication | RSA SecurID Access enrollment for Fingerprint Verification failed. |
| 805 | error | user | Authentication | Fingerprint Verification authentication failed - Unexpected error. |
| 806 | notice | user | Authentication | RSA SecurID Access enrollment for Fingerprint Verification succeeded. |
| 807 | notice | user | Authentication | RSA SecurID Access unenrollment for Fingerprint Verification succeeded - Device unenrolled. |
| 901 | notice | user | Authentication | Portal sign-in succeeded. |
| 902 | error | user | Authentication | Portal sign-in failed - Authentication failed. |
| 903 | error | user | Authentication | Portal sign-in failed - Credentials are associated with multiple user accounts. |
| 904 | error | user | Authentication | Portal sign-in failed - Internal server error. |
| 905 | error | user | Authentication | Portal sign-in failed - Concurrent session limit reached. |
| 906 | error | user | Authentication | Portal sign-in failed - Password reset required. |
| 907 | notice | user | Authentication | Portal sign-out succeeded. |
| 908 | notice | user | Authentication | Protected application authentication attempt made. |
| 909 | notice | user | Authentication | Protected application authentication succeeded. |
| 910 | error | user | Authentication | Protected application authentication failed. |
| 911 | notice | user | Authentication | Step-up authentication initiated. |
| 912 | notice | user | Authentication | Step-up authentication succeeded. |
| 913 | error | user | Authentication | Step-up authentication failed. |
| 932 | error | user | Authentication | Step-up authentication failed - User account inactive. |
| 933 | error | user | Authentication | Password authentication succeeded - Client does not support required additional authentication methods - Access denied. |
| 934 | notice | user | Authentication | Password authentication succeeded. |
| 935 | error | user | Authentication | Unsuccessful password authentication – Access denied. |
| 936 | error | user | Authentication | Unsuccessful password authentication - Credentials are associated with multiple user accounts. |
| 937 | error | user | Authentication | Unsuccessful password authentication - Internal server error. |
| 938 | error | user | Authentication | Unsuccessful password authentication - Concurrent session limit reached. |
| 939 | notice | user | Authorization | Password authentication succeeded - Policy does not require additional authentication - Access granted. |
| 940 | error | user | Authorization | Password authentication succeeded - User prohibited by policy settings - Access denied. |
| 941 | error | user | Authorization | Password authentication succeeded - Access prohibited by conditional policy settings - Access denied. |
| 3000 | notice | user | Device Management | Device registration succeeded. |
| 3001 | error | user | Device Management | Device registration failed. |
| 3002 | error | user | Device Management | Device registration unsuccessful. Maximum limit (1) for devices reached. |
| 5107 | notice | user | Authentication | RSA SecurID Access admin password changed. |
| 20201 | notice | user | Authentication | Eyeprint Verification authentication succeeded. |
| 20202 | error | user | Authentication | Eyeprint Verification authentication failed - User response timed out. |
| 20203 | error | user | Authentication | Eyeprint Verification authentication failed - User Eyeprint verification failed. |
| 20204 | error | user | Authentication | RSA SecurID Access enrollment for Eyeprint Verification failed. |
| 20205 | error | user | Authentication | Eyeprint Verification authentication failed - Unexpected error. |
| 20206 | notice | user | Authentication | RSA SecurID Access enrollment for Eyeprint ID succeeded. |
| 20207 | notice | user | Authentication | RSA SecurID Access unenrollment for Eyeprint ID succeeded. |
| 20208 | notice | user | Authentication | RSA SecurID Access rule-retrieved for Eyeprint. |
| 20209 | notice | user | Authentication | RSA SecurID Access unenrollment for Eyeprint failed. |
| 20400 | notice | user | Authentication | SAML IdP - Authentication request received. |
| 20401 | notice | user | Authentication | SAML IdP - Assertion sent for successful user authentication. |
| 20402 | error | user | Authentication | SAML IdP - Response sent for unsuccessful user authentication. |
| 20403 | error | user | Authentication | SAML IdP - Error response sent. |
| 20601 | error | user | Authentication | RADIUS - LDAP authentication succeeded - Policy contains no RADIUS-compatible methods for additional authentication - Access denied. |
| 20602 | error | user | Authentication | RADIUS - LDAP authentication succeeded - No user device registered for required additional authentication methods - Access denied. |
| 20603 | error | user | Authentication | RADIUS - Invalid format for additional authentication request - Access denied. |
| 20604 | error | user | Authentication | RADIUS - Invalid checklist attributes - Access denied. |
| 20605 | error | user | Authentication | RADIUS - Hosted Authentication Service unreachable - Access denied. |
| 20606 | error | user | Authentication | RADIUS – Approve authentication failed – Method timeout. |
| 20607 | error | user | Authentication | RADIUS - Eyeprint ID authentication failed - Method timeout. |
| 20608 | error | user | Authentication | RADIUS - Fingerprint authentication failed - Method timeout. |
| 20609 | error | user | Authentication | RADIUS - Authentication failed - Internal error. |
| 20701 | error | user | Authentication | Access denied – User not a member of any identity source in access policy. |
| 20702 | error | user | Authentication | Access denied – User does not match rule set in access policy. |
| 20703 | error | user | Authentication | Access denied – Policy authentication conditions deny access. |
| 20801 | error | user | Authentication | SMS Tokencode message succeeded. |
| 20802 | error | user | Authentication | SMS Tokencode message failed - Invalid phone number. |
| 20803 | error | user | Authentication | SMS Tokencode message failed - Error. |
| 20804 | error | user | Authentication | SMS Tokencode regenerated. |
| 21901 | notice | user | Authentication | SMS Tokencode verification succeeded. |
| 21902 | error | user | Authentication | SMS Tokencode verification failed. |
Previous Topic:Monitor User Events in the Administration Console
Next Topic:Identity Router Logging
You are here
Table of Contents > Logging > User Event Monitor Messages for the Cloud Authentication Service