User Event Monitor Messages for the Cloud Authentication Service

Document created by RSA Information Design and Development on Jul 14, 2016Last modified by RSA Information Design and Development on Sep 15, 2017
Version 17Show Document
  • View in full screen mode
 

The following messages are triggered by user events and appear in the User Event Monitor.

                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
Event Code Level Type Category Description
2 notice user Authentication Method now locked.
3noticeuserAuthenticationMethod unlocked - User successfully authenticated.
20 error user Authentication Method enrollment failed - Required parameter missing.
21 error user Authentication Method enrollment failed - User does not exist.
22 error user Authentication Method enrollment failed - User account inactive.
23 error user Authentication Method enrollment failed - Sign-in device not registered to user.
24 error user Authentication Method enrollment failed - Provider type not found.
30 error user Authentication Authentication failed - Required parameter missing.
31 error user Authentication Authentication failed - User does not exist.
32 error user Authentication Authentication failed - User account inactive.
33 error user Authentication Authentication failed - Application not found.
34 error user Authentication Authentication failed - Rule not found.
35 error user Authentication Authentication failed - Method locked.
36 error user Authentication Authentication failed - Device not registered or authentication method not enrolled.
51 error user Authentication Authentication failed - Device not registered.
52 error user Authentication Authentication failed - Cannot push notification to device.
53 error user Authentication Authentication failed - Internal verification interrupted.
101 notice user Authentication Authenticate Tokencode enrollment succeeded.
102 error user Authentication Authenticate Tokencode enrollment failed - Authentication device not registered to user.
103 notice user Authentication Authenticate Tokencode authentication succeeded.
104 error user Authentication Authenticate Tokencode authentication failed - Invalid tokencode.
105 error user Authentication Authenticate Tokencode authentication failed - Previously used tokencode detected.
106noticeuserAuthenticationIdentity router API tokencode request sent to hosted service.
107noticeuserAuthenticationIdentity router API tokencode response received - Authentication succeeded.
108erroruserAuthenticationIdentity router API tokencode response received - Authentication failed.
109erroruserAuthenticationIdentity router API tokencode authentication failed - User not found in identity source.
110erroruserAuthenticationIdentity router API tokencode authentication failed - Username is associated with multiple user accounts.
111erroruserAuthenticationIdentity router API tokencode authentication failed - User account disabled in identity source.
112erroruserAuthenticationIdentity router API tokencode authentication failed - User email address not found in identity source.
113erroruserAuthenticationIdentity router API tokencode authentication failed - Identity source unreachable.
114erroruserAuthenticationIdentity router API tokencode authentication failed - Hosted service unreachable.
115erroruserUser StatusIdentity router API user status check - User not found in identity source.
116erroruserUser StatusIdentity router API user status check - Username is associated with multiple user accounts.
117erroruserUser StatusIdentity router API user status check - Identity source unreachable.
201 notice user Authentication LDAP password authentication succeeded.
202 error user Authentication LDAP password authentication failed - Unknown cause.
203 error user Authentication LDAP password authentication failed - Request timed out or identity router is not connected.
204 error user Authentication LDAP password authentication provider enrollment failed - Missing email or password.
205 error user Authentication LDAP password authentication provider enrollment failed - Unknown cause.
206 error user Authentication LDAP password authentication failed - Provider configuration in the Cloud Authentication Service is incorrect for this user.
207 error user Authentication LDAP password authentication failed - Provider configuration in the Cloud Authentication Service is incorrect for this user.
208 error user Authentication LDAP password authentication failed - Missing email or password.
211 error user Authentication LDAP password authentication failed - LDAP server host unreachable. Invalid port or server is not running.
212 error user Authentication LDAP password authentication failed - LDAP server host unresolvable.
213 error user Authentication LDAP password authentication failed - Cannot establish a trusted SSL connection with the LDAP directory server. Check for invalid certificate.
215 error user Authentication LDAP password authentication failed - Sign-in failure: unknown username or invalid password.
216 error user Authentication LDAP password authentication failed - LDAP account restriction, for example sign-in time or policy restriction is enforced.
217 error user Authentication LDAP password authentication failed - Time restriction prevents sign-in for this LDAP account.
218 error user Authentication LDAP password authentication failed - LDAP account not permitted to authenticate through this identity router.
219 error user Authentication LDAP password authentication failed - LDAP password expired.
220 error user Authentication LDAP password authentication failed - LDAP account disabled.
221 error user Authentication LDAP password authentication failed - LDAP account configuration prevents sign-in.
222 error user Authentication LDAP password authentication failed - LDAP account expired.
223 error user Authentication LDAP password authentication failed - LDAP password must be changed using your company's internal procedures.
224 error user Authentication LDAP password authentication failed - LDAP account locked out.

225

error

user

Authentication

LDAP password authentication failed - LDAP password locked for specified lockout duration.

300noticeuserAuthenticationFIDO Token enrollment succeeded.
301erroruserAuthenticationFIDO Token enrollment failed - User reached maximum token limit.
302erroruserAuthenticationFIDO Token enrollment failed - FIDO protocol error.
303erroruserAuthenticationFIDO Token enrollment failed - RSA SecurID Access service error.
304erroruserAuthenticationFIDO Token enrollment failed - Unknown error.
316erroruserAuthenticationFIDO Token name update failed – Token name cannot be blank.
317erroruserAuthenticationFIDO Token name update failed – Token name exceeds 255 characters.
318erroruserAuthenticationFIDO Token name update failed – Token name is already in use.
340noticeuserAuthenticationFIDO Token authentication succeeded.
341erroruserAuthenticationFIDO Token authentication failed - FIDO protocol error.
342erroruserAuthenticationFIDO Token authentication failed - RSA SecurID Access service error.
343erroruserAuthenticationFIDO Token authentication failed - Unknown error.
601 notice user Authentication RSA SecurID user authentication succeeded.
602 notice user Authentication RSA SecurID user authentication succeeded - New PIN accepted.
603 notice user Authentication RSA SecurID user authentication - Requires new PIN.
604 notice user Authentication RSA SecurID user authentication - Requires next tokencode.
605 error user Authentication RSA SecurID user authentication failed - Invalid passcode.
606 error user Authentication RSA SecurID user authentication failed - Invalid next tokencode.
607 error user Authentication RSA SecurID user authentication failed - Invalid PIN.
608 error user Authentication RSA SecurID user authentication failed - RSA SecurID service is not available.
609 error user Authentication RSA SecurID user authentication failed - Unknown cause.
701 notice user Authentication Approve authentication succeeded.
702 error user Authentication Approve authentication failed - User response timed out.
703 error user Authentication Approve authentication failed - User denied approval.
704 error user Authentication Approve enrollment failed.
707 notice user Authentication Approve enrollment succeeded.

709

error

user

Authentication

Approve authentication failed - All in-progress authentication requests canceled.

801 notice user Authentication Fingerprint Verification authentication succeeded.
802 error user Authentication Fingerprint Verification authentication failed - User response timed out.
803 error user Authentication Fingerprint Verification authentication failed - User fingerprint verification failed.
804 error user Authentication RSA SecurID Access enrollment for Fingerprint Verification failed.
805 error user Authentication Fingerprint Verification authentication failed - Unexpected error.
806 notice user Authentication RSA SecurID Access enrollment for Fingerprint Verification succeeded.
807 notice user Authentication RSA SecurID Access unenrollment for Fingerprint Verification succeeded - Device unenrolled.
901 notice user Authentication Portal sign-in succeeded.
902 error user Authentication Portal sign-in failed - Authentication failed.
903 error user Authentication Portal sign-in failed - Credentials are associated with multiple user accounts.
904 error user Authentication Portal sign-in failed - Internal server error.
905 error user Authentication Portal sign-in failed - Concurrent session limit reached.
906 error user Authentication Portal sign-in failed - Password reset required.
907 notice user Authentication Portal sign-out succeeded.
908 notice user Authentication Protected application authentication attempt made.
909 notice user Authentication Protected application authentication succeeded.
910 error user Authentication Protected application authentication failed.
911 notice user Authentication Step-up authentication initiated.
912 notice user Authentication Step-up authentication succeeded.
913 error user Authentication Step-up authentication failed.
932 error user Authentication Step-up authentication failed - User account inactive.
933erroruserAuthenticationPassword authentication succeeded - Client does not support required additional authentication methods - Access denied.
934noticeuserAuthenticationPassword authentication succeeded.
935erroruserAuthenticationUnsuccessful password authentication – Access denied.
936erroruserAuthenticationUnsuccessful password authentication - Credentials are associated with multiple user accounts.
937erroruserAuthenticationUnsuccessful password authentication - Internal server error.
938erroruserAuthenticationUnsuccessful password authentication - Concurrent session limit reached.
939noticeuserAuthorizationPassword authentication succeeded - Policy does not require additional authentication - Access granted.
940erroruserAuthorizationPassword authentication succeeded - User prohibited by policy settings - Access denied.
941erroruserAuthorizationPassword authentication succeeded - Access prohibited by conditional policy settings - Access denied.
3000 notice user Device Management Device registration succeeded.
3001 error user Device Management Device registration failed.
3002 error user Device Management Device registration unsuccessful. Maximum limit (1) for devices reached.
5107 notice user Authentication RSA SecurID Access admin password changed.
20201noticeuserAuthenticationEyeprint Verification authentication succeeded.
20202erroruserAuthenticationEyeprint Verification authentication failed - User response timed out.
20203erroruserAuthenticationEyeprint Verification authentication failed - User Eyeprint verification failed.
20204erroruserAuthenticationRSA SecurID Access enrollment for Eyeprint Verification failed.
20205erroruserAuthenticationEyeprint Verification authentication failed - Unexpected error.
20206noticeuserAuthenticationRSA SecurID Access enrollment for Eyeprint ID succeeded.
20207noticeuserAuthenticationRSA SecurID Access unenrollment for Eyeprint ID succeeded.
20208noticeuserAuthenticationRSA SecurID Access rule-retrieved for Eyeprint.
20209noticeuserAuthenticationRSA SecurID Access unenrollment for Eyeprint failed.
20400noticeuserAuthenticationSAML IdP - Authentication request received.
20401noticeuserAuthenticationSAML IdP - Assertion sent for successful user authentication.
20402erroruserAuthenticationSAML IdP - Response sent for unsuccessful user authentication.
20403erroruserAuthentication

SAML IdP - Error response sent.

20601erroruserAuthenticationRADIUS - LDAP authentication succeeded - Policy contains no RADIUS-compatible methods for additional authentication - Access denied.
20602erroruserAuthenticationRADIUS - LDAP authentication succeeded - No user device registered for required additional authentication methods - Access denied.
20603erroruserAuthenticationRADIUS - Invalid format for additional authentication request - Access denied.
20604erroruserAuthenticationRADIUS - Invalid checklist attributes - Access denied.
20605erroruserAuthenticationRADIUS - Hosted Authentication Service unreachable - Access denied.
20606erroruserAuthenticationRADIUS – Approve authentication failed – Method timeout.
20607erroruserAuthentication

RADIUS - Eyeprint ID authentication failed - Method timeout.

20608erroruserAuthenticationRADIUS - Fingerprint authentication failed - Method timeout.
20609erroruserAuthenticationRADIUS - Authentication failed - Internal error.
20701erroruserAuthenticationAccess denied – User not a member of any identity source in access policy.
20702erroruserAuthenticationAccess denied – User does not match rule set in access policy.
20703erroruserAuthenticationAccess denied – Policy authentication conditions deny access.
20801erroruserAuthenticationSMS Tokencode message succeeded.
20802erroruserAuthenticationSMS Tokencode message failed - Invalid phone number.
20803erroruserAuthenticationSMS Tokencode message failed - Error.
20804erroruserAuthenticationSMS Tokencode regenerated.
21901noticeuserAuthenticationSMS Tokencode verification succeeded.
21902erroruserAuthenticationSMS Tokencode verification failed.

 

 

You are here
Table of Contents > Logging > User Event Monitor Messages for the Cloud Authentication Service

Attachments

    Outcomes