RSA Authentication Manager Log Messages (20001-20060)
The following table lists AM log messages based on the event category and action ID. It also lists the corresponding action key, description, and log message. The log message has placeholders in the “{number}” format, which represents actual data in the logs and Activity Monitor.
Use this table to understand simple network management protocol (SNMP) trap information captured by a network management system. For more information on the information displayed by the object identifier structure (OID) in the SNMP trap, see RSA Authentication Manager SNMP.
Event Category | Action ID | Action Key | Description | Message |
eventAdmin | 20001 | CREATE_AM_PRINCIPAL | Create Principal | Administrator “{0}” attempted to create principal “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20002 | UPDATE_AM_PRINCIPAL | Update Principal | User “{0}” attempted to update principal “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20003 | DELETE_AM_PRINCIPAL | Delete Principal | Administrator “{0}” attempted to delete principal “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20004 | READ_AM_PRINCIPAL | Read Principal Emergency Access Info | Administrator “{0}” attempted to read principal emergency access info “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20005 | CLEARBADPASSCODES | Clear Bad Passcodes | Administrator “{0}” attempted to clear bad passcodes “{4}” managed in security domain “{5}” |
eventAdmin | 20006 | READ_AM_TOKEN_OFFLINE | Read Token Offline Emergency Access Info | Administrator “{0}” attempted to read offline emergency access info for token “{4}” managed in security domain “{5}” |
eventAdmin | 20007 | READ_AM_TOKEN_ONLINE | Read Token Online Emergency Access Info | Administrator “{0}” attempted to read online emergency access info for token “{4}” managed in security domain “{5}” |
eventAdmin | 20008 | UPDATE_AM_TOKEN_ONLINE_EMERGENCY_ACCESS_INFO | Update Token Online Emergency Access Info | Administrator “{0}” attempted to update online emergency access info for token “{4}” managed in security domain “{5}” |
eventAdmin | 20009 | AM_TOKEN_ENABLED | Enable Token | Administrator “{0}” attempted to enable token “{4}” managed in security domain “{5}”. |
eventAdmin | 20010 | AM_TOKEN_DISABLED | Disable Token | Administrator “{0}” attempted to disable token “{4}” managed in security domain “{5}” |
eventAdmin | 20011 | AM_CLEAR_TOKEN_PIN | Clear Token Pin | Administrator “{0}” attempted to clear pin for token “{4}” managed in security domain “{5}” |
eventAdmin | 20012 | AM_SET_NEW_PIN_MODE | Set New Pin Mode | Administrator “{0}” attempted to set new pin mode for token “{4}” managed in security domain “{5}” |
eventAdmin | 20013 | AM_RESET_PIN | Reset Token Pin | Administrator “{0}” attempted to reset token pin “{4}” managed in security domain “{5}” |
eventAdmin | 20014 | AUTHMGR_AGENT_CREATE | Create Agent | Administrator “{0}” attempted to create agent “{4}” managed in security domain “{5}” |
eventAdmin | 20015 | AM_ASSIGN_FIXED | Assign Fixed Passcode | Administrator “{0}” attempted to assign a fixed passcode for token “{4}” managed in security domain “{5}” |
eventAdmin | 20016 | AM_UNASSIGN_FIXED | Unassign Fixed Passcode | Administrator “{0}” attempted to unassign a fixed passcode for token “{4}” managed in security domain “{5}” |
eventAdmin | 20017 | AUTHMGR_AGENT_DELETE | Delete Agent | Administrator “{0}” attempted to delete agent “{4}” managed in security domain “{5}” |
eventAdmin | 20018 | AUTHMGR_AGENT_ENABLE | Enable Agent | Administrator “{0}” attempted to enable agent “{4}” managed in security domain “{5}” |
eventAdmin | 20019 | AUTHMGR_AGENT_READ | Read Agent | Administrator “{0}” attempted to read agent “{4}” managed in security domain “{5}” |
eventAdmin | 20020 | AUTHMGR_AGENT_UPDATE | Update Agent | Administrator “{0}” attempted to update agent “{4}” managed in security domain “{5}” |
eventAdmin | 20021 | AUTHMGR_AGENT_LINK | Link Agent and Agent Protocol Server List | Administrator “{0}” attempted to link agent “{4}” managed in security domain “{5}” with agent protocol server list “{8}” managed in security domain “{9}” |
eventAdmin | 20024 | READ_AM_PRINCIPAL | Read Principal | Administrator “{0}” attempted to read principal “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20025 | IMPORT_TOKEN | Import Token | Administrator “{0}” attempted to import token “{4}” managed in security domain “{5}” |
eventAdmin | 20026 | CREATE_AM_TOKEN | Create Token | Administrator “{0}” attempted to create token “{4}” managed in security domain “{5}” |
eventAdmin | 20027 | UPDATE_AM_TOKEN | Update Token | Administrator “{0}” attempted to update token “{4}” managed in security domain “{5}” |
eventAdmin | 20028 | DELETE_AM_TOKEN | Delete Token | Administrator “{0}” attempted to delete token “{4}” managed in security domain “{5}” |
eventAdmin | 20029 | SEARCH_AM_TOKEN | Search Token | Administrator “{0}” attempted to search for tokens managed in security domain “{5}” |
eventAdmin | 20030 | NEXT_AVAILABLE_AM | Get Next Available Token | Administrator “{0}” attempted to get the next available token managed in security domain “{5}” |
eventAdmin | 20031 | AUTHMGR_TOKEN | Delete Token Attribute | Administrator “{0}” attempted to delete attribute token “{4}” managed in security domain “{5}” |
eventAdmin | 20032 | AUTHMGR_TOKEN | Create Token Attribute | Administrator “{0}” attempted to create attribute for token “{4}” managed in security domain “{5}” |
eventAdmin | 20033 | AUTHMGR_TOKEN | Update Token Attribute | Administrator “{0}” attempted to update attribute for token “{4}” managed in security domain “{5}” |
eventAdmin | 20034 | AUTHMGR_CR_TRUSTED | Create Trusted Realm | Administrator “{0}” attempted to create trusted realm “{4}” stored in identity source “{6}” managed in security domain “{5}” |
eventAdmin | 20035 | AUTHMGR_CTKIP | Create CTKIP Authcode | Administrator “{0}” attempted to create CTKIP authcode “{4}” managed in security domain “{5}” |
eventAdmin | 20036 | AUTHMGR_CTKIP | Delete CTKIP Authcode | Administrator “{0}” attempted to delete CTKIP authcode “{4}” managed in security domain “{5}” |
eventAdmin | 20037 | AUTHMGR_CTKIP | Read CTKIP Authcode | Administrator “{0}” attempted to read CTKIP authcode “{4}” managed in security domain “{5}” |
eventAdmin | 20038 | AUTHMGR_CTKIP | Manage CTKIP | Administrator “{0}” attempted to manage CTKIP “{4}” managed in security domain “{5}” |
eventAdmin | 20039 | AUTHMGR_TOKEN_SET | Set Tokencode only | Administrator “{0}” attempted to set tokencode only pintype for token “{4}” managed in security domain “{5}” |
eventAdmin | 20040 | AUTHMGR_TOKEN_SET | Set Token Passcode Pin type | Administrator “{0}” attempted to set passcode pin type for token “{4}” in security domain “{5}” |
eventAdmin | 20041 | SYNC_TOKENS | Sync Token | Administrator “{0}” attempted to sync token “{4}” managed in security domain “{5}” |
eventAdmin | 20042 | READ_AM_TOKEN | Read Token Emergency Access Info | Administrator “{0}” attempted to read token emergency access “{4}” info managed in security domain “{5}” |
eventAdmin | 20043 | READ_TOKEN | Read Token | Administrator “{0}” attempted to read token “{4}” managed in security domain “{5}” |
eventAdmin | 20044 | UPDATE_AM_TOKEN | Update Token Offline Emergency Access Info | Administrator “{0}” attempted to update offline emergency acess info for token “{4}” managed in security domain “{5}” |
eventAdmin | 20045 | AM_LINK_TOKEN_PRINCIPAL | Link Token with Principal | Administrator “{0}” attempted to link token “{4}” managed in security domain “{5}” with principal “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20046 | AM_UNLINK_TOKEN | Unlink Token with Principal | Administrator “{0}” attempted to unlink token “{4}” managed in security domain “{5}” with principal “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20047 | AUTHMGR_TOKEN_STAT | Search Token Statistics | Administrator “{0}” attempted to search for token statistics managed in security domain “{5}” with principal “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20048 | AUTHMGR_OFFLINE | Create Offline Authentication Policy | Administrator “{0}” attempted to create offline authentication policy “{4}” managed in security domain “{5}” |
eventAdmin | 20049 | AUTHMGR_OFFLINE_AUTHN | Delete Offline Authentication Policy | Administrator “{0}” attempted to delete offline authentication policy “{4}” managed in security domain “{5}” |
eventAdmin | 20050 | AUTHMGR_OFFLINE_AUTHN | Read Offline Authentication Policy | Administrator “{0}” attempted to read offline authentication policy “{4}” managed in security domain “{5}” |
eventAdmin | 20051 | AUTHMGR_OFFLINE_AUTHN | Update Offline Authentication Policy | Administrator “{0}” attempted to update offline authentication policy “{4}” managed in security domain “{5}” |
eventAdmin | 20052 | AUTHMGR_TOKEN_POLICY | Create Token Policy | Administrator “{0}” attempted to create token policy “{4}” managed in security domain “{5}” |
eventAdmin | 20053 | AUTHMGR_TOKEN_POLICY | Update Token Policy | Administrator “{0}” attempted to update token policy “{4}” managed in security domain “{5}” |
eventAdmin | 20054 | AUTHMGR_TOKEN_POLICY | Delete Token Policy | Administrator “{0}” attempted to delete token policy “{4}” managed in security domain “{5}” |
eventAdmin | 20055 | AUTHMGR_TOKEN_POLICY | Read Token Policy | Administrator “{0}” attempted to read token policy “{4}” managed in security domain “{5}” |
eventAdmin | 20056 | INSUFFICIENT_PRIVILEGE | Insufficient Privilege | Administrator “{0}” attempted an action having insufficient privileges |
eventAdmin | 20057 | AUTHMGR_AGENT_GROUP | Link or Unlink Agent with Group | Administrator “{0}” attempted to link agent “{4}” managed in security domain “{5}” with group “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20058 | AUTHMGR_AGENT_GROUP | Link Agent with Group | Administrator “{0}” attempted to link agent “{4}” managed in security domain “{5}” with group “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20059 | AUTHMGR_AGENT_GROUP | UnLink Agent with Group | Administrator “{0}” attempted to unlink agent “{4}” managed in security domain “{5}” with group “{8}” stored in identity source “{10}” managed in security domain “{9}” |
eventAdmin | 20060 | AUTHMGR_AGENT_DISABLE | Disable Agent | Administrator “{0}” attempted to disable agent “{4}” managed in security domain “{5}” |
Related Articles
Authentication Manager Log Messages (20061-20120) Number of Views Authentication Manager Log Messages (13001-13008) Number of Views Log Messages Number of Views Authentication Manager Log Messages (10001-10060) Number of Views Authentication Manager Log Messages (10061-10250) Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide Artifacts to gather in RSA Identity Governance & Lifecycle
