nfig_LspDbgTraceOptions_description" value="Contains the setting of logging opti
ons for LSA Policy operations" />
<string id="config_LspDbgTraceOptions_displayName" value="Logging option s for LSA Policy operations" /> <string id="description" value="Local Security Authority Subsystem" /> <string id="DiagnosticChannelName" value="Diagnostic" /> <string id="displayName" value="Local Security Authority Subsystem" /> <string id="event_DSROLERES_DEMOTE_SUCCESS" value="This server is no lon ger a Domain Controller." /> <string id="event_DSROLERES_FAIL_DISABLE_AUTO_LOGON" value="Failed to di sable auto logon following the successful upgrade of a domain controller. Unabl e to delete registry key %1. The return code is the data." /> <string id="event_DSROLERES_FAIL_LOGON_DOMAIN" value="Failed to set the default logon domain to %1. The return code is the data." /> <string id="event_DSROLERES_FAIL_SCRIPT_COPY" value="Moving the existing logon scripts from %1 to %2 failed. The return code is the data." /> <string id="event_DSROLERES_FAIL_SET_SECURITY" value="Running the Securi ty Configuration Editor over the Domain Controller encountered a non-fatal error . Further details can be obtained by examining the log file %1. The return cod e is the data." /> <string id="event_DSROLERES_FAILED_CONFIGURE_SERVICE_DEPENDENCY" value=" Dcpromo failed to remove the dependency of %1 on %2 during forced demotion." /> <string id="event_DSROLERES_FAILED_CONFIGURE_SERVICE_STARTTYPE" value="D cpromo failed to configure the new starttype of %1 for the service %2 during for ced demotion." /> <string id="event_DSROLERES_FAILED_STOPPING_NETLOGON" value="The Netlogo n service could not be stopped during force demotion." /> <string id="event_DSROLERES_FAILED_TO_DELETE_TRUST" value="During the de motion operation, the trust object on %1 could not be removed." /> <string id="event_DSROLERES_FAILED_TO_DEMOTE_FRS" value="During the demo tion operation, the File Replication Service reported a non critical error." /> <string id="event_DSROLERES_FORCE_DEMOTE_SUCCESS" value="This server was force demoted. It is no longer a Domain Controller." /> <string id="event_DSROLERES_INCOMPATIBLE_TRUST" value="An existing, inco mpatible trust object was found on the parent server for domain %1. It has been removed and replaced with an updated trust." /> <string id="event_DSROLERES_PROMOTE_SUCCESS" value="This server is now a Domain Controller." /> <string id="event_LOGON_CACHE_DISABLED_MSG" value="Logon cache was disab led. Intermittent authentication failures may result during periods of network l atency or interrupts. Please contact your system administrator." /> <string id="event_LOGON_ENTRY_DELETED_MSG" value="A failed logon attempt has caused a logon cache entry for user %1 to be deleted. The authentication pa ckage was %2, and the error message was %3." /> <string id="event_LOGON_ENTRY_FLUSHED_MSG" value="A logon cache entry fo r user %1 was the oldest entry and was removed. The timestamp of this entry was %2." /> <string id="event_LSA_DOMAIN_RENAME_ERROR1" value="LSA could not update domain information in the registry to match the DS. Error=%1." /> <string id="event_LSA_FOREST_CLAIMED_NEW_TLN" value="The new top level n ame, %1, has been added to the forest %2. Name suffix routing for this new name is disabled because it is not within any currently routed namespace. Objects can not be resolved from this new namespace until name suffix routing is enabled fo r the namespace. To enable name suffix routing, open Domains and Trusts and see help under Name Suffix Routing and Forest Trusts." /> <string id="event_LSA_LOOPBACK_REJECTED" value="The program %2, with the assigned process ID %1, could not authenticate locally by using the target name %3. The target name used is not valid. A target name should refer to one of the local computer names, for example, the DNS host name.%n %n Try a different targ et name." />
<string id="event_LSA_NO_TARGET_NAME" value="The program %2, with the as
signed Process ID %1, supplied a NULL or empty target name for the pszTargetName parameter when calling the InitializeSecurityContext API to initiate an outboun d NTLM security context. This is a security risk when mutual authentication is r equired.%n %n To help protect against a malicious attack, make your code more se cure. To do this, change the program so that it specifies a target name in the p szTargetName parameter field, and then recompile the code." /> <string id="event_LSA_OPEN_POLICY_BY_ANONYMOUS_REJECTED" value="An anony mous session connected from %1 has attempted to open an LSA policy handle on thi s machine. The attempt was rejected with STATUS_ACCESS_DENIED to prevent leaking security sensitive information to the anonymous caller.%n The application that made this attempt needs to be fixed. Please contact the application vendor. As a temporary workaround, this security measure can be disabled by setting the \HKE Y_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\TurnOffAnonymousBlock DWORD value to 1.%n This message will be logged at most once a day." /> <string id="event_LSA_PACKAGE_NO_CREDENTIAL" value="The security package does not cache the credentials needed to authenticate to the server.%n%nPackage Name:%t%1%nUser Name:%t%2%nDomain Name:%t%3%nServer Name:%t%4%nProtected User:% t%5%nError Code:%t%6%n" /> <string id="event_LSA_PACKAGE_NOT_CACHE_LOGON_USER" value="The security package does not cache the user's sign on credentials.%n%nPackage Name:%t%1%nUse r Name:%t%2%nDomain Name:%t%3%nProtected User:%t%4%n" /> <string id="event_LSA_PACKAGE_POST_LOGOFF_REQUEST" value="A security pac kage received a network logon request after the logoff completed.%n%nUser Name:% t%1%nDomain Name:%t%2%nLogon ID:%t%3%nLogoff Time:%t%4%nPID:%t%5%nProgram:%t%6%n Principal Name:%t%7%nServer Name:%t%8%nPackage Name:%t%9%nCall Type:%t%10%nError Code:%t%11%n" /> <string id="event_LSA_POSSIBLE_TOKEN_LEAK" value="LogonSession alive aft er interactive user logoff. Indicates a possible token leak in one of the servic es. %nLogon ID:%1%nAccount Name:%2%nDomain Name:%3%n" /> <string id="event_LSA_SECRET_UPGRADE_ERROR" value="Could not upgrade the global secret %1. Please check the status of all services in the system." /> <string id="event_LSA_TOO_MANY_CONTEXT_IDS" value="During a logon attemp t, the user's security context accumulated too many security IDs. This is a very unusual situation. Remove the user from some global or local groups to reduce t he number of security IDs to incorporate into the security context.%nUser's SID is %1%nIf this is the Administrator account, logging on in safe mode will enable Administrator to log on by automatically restricting group memberships." /> <string id="event_LSA_TRUST_INSERT_ERROR" value="The database contains i nvalid information for trusted domain %1." /> <string id="event_LSA_TRUST_UPGRADE_ERROR" value="Could not upgrade the Trusted domain object for domain %1. Please recreate the trust manually." /> <string id="event_LSA_USER_LOGOFF_NOTIFICATION" value="User %1 logged of f notification is received.%n%nLogonId:%t%2%nAuthorityName:%t%3%nAccountName:%t% 4%nTimeout:%t%5 seconds%n" /> <string id="event_LSAEVENT_ITA_FOR_TRUST_NOT_CREATED" value="The interdo main trust account for the domain %1 could not be created. The return code is th e data." /> <string id="event_LSAEVENT_ITA_NOT_DELETED" value="The interdomain trust account for the domain %1 could not be deleted. The return code is the data." / > <string id="event_LSAEVENT_LOOKUP_GC_FAILED" value="A lookup request was made that required a Global Catalog. The LSA was unable to either contact or au thenticate to a Global Catalog and thus failed the lookup request. Please check the connectivity and authentication of this domain controller to a Global Catalo g." /> <string id="event_LSAEVENT_LOOKUP_SC_FAILED" value="A lookup request was made that required connectivity to a domain controller in domain %1. The LSA wa s unable to find a domain controller in the domain and thus failed the request. Please check connectivity and secure channel setup from this domain controller t
o the domain %2." />
<string id="event_LSAEVENT_LOOKUP_SC_HANDLE_FAILED" value="A lookup requ est was made that required connectivity to the domain controller %1. The local L SA was unable to contact the LSA on the remote domain controller. Please check c onnectivity and secure channel setup from this domain controller to the domain c ontroller %2." /> <string id="event_LSAEVENT_LOOKUP_SC_LOOKUP_FAILED" value="A lookup requ est was made that required the lookup services on the remote domain controller % 1. The remote domain controller failed the request thus the local LSA failed the original lookup request. Please check connectivity and secure channel setup fro m this domain controller to the domain controller %2." /> <string id="event_LSAEVENT_LOOKUP_SID_FILTERED" value="The name %1 was t ranslated to SID %2 from the trusted forest %3. The domain portion of the SID is not in the list of acceptable SID's found on the trusted domain object, thus th is name to SID translation has been ignored." /> <string id="event_LSAEVENT_LOOKUP_TCPIP_NOT_INSTALLED" value="The LSA wa s unable to register its RPC interface over the TCP/IP interface. Please make su re that the protocol is properly installed." /> <string id="event_NEGOTIATE_DOWNGRADE_DETECTED" value="The Security Syst em detected an authentication error for the server %1. The failure code from aut hentication protocol %2 was %3." /> <string id="event_NEGOTIATE_INVALID_SERVER" value="The Security System c ould not establish a secured connection with the server %1. No authentication pr otocol was available." /> <string id="event_NEGOTIATE_MESSAGE_DECODED" value="The Security System has received an authentication attempt, and determined that the protocol %1 pref erred by the client is acceptable." /> <string id="event_NEGOTIATE_MESSAGE_DECODED_NO_TOKEN" value="The Securit y System has received an authentication attempt, and determined that the protoco l %1 is the common protocol." /> <string id="event_NEGOTIATE_PACKAGE_SELECTED" value="The Security System has selected %2 for the authentication protocol to server %1." /> <string id="event_NEGOTIATE_RAW_PACKET" value="The Security System has r eceived an authentication request directly for authentication protocol %1." /> <string id="event_NEGOTIATE_UNBALANCED_EXCHANGE" value="The Security Sys tem was unable to authenticate to the server %1 because the server has completed the authentication, but the client authentication protocol %2 has not." /> <string id="event_NEGOTIATE_UNKNOWN_PACKAGE" value="The Security System received an authentication attempt with an unknown authentication protocol. The request has failed." /> <string id="event_NEGOTIATE_UNKNOWN_PACKET" value="The Security System h as received an authentication request that could not be decoded. The request has failed." /> <string id="event_SPMEVENT_PACKAGE_FAULT" value="The security package %1 generated an exception. The exception information is the data." /> <string id="event_SSLEVENT_BOGUS_CLIENT_CERT" value="The certificate rec eived from the remote client application has not validated correctly. The error code is %1. The attached data contains the client certificate." /> <string id="event_SSLEVENT_BOGUS_SERVER_CERT" value="The certificate rec eived from the remote server has not validated correctly. The error code is %1. The SSL connection request has failed. The attached data contains the server cer tificate." /> <string id="event_SSLEVENT_CERT_MAPPING_FAILURE" value="The certificate received from the remote client application was not successfully mapped to a cli ent system account. The error code is %1. This is not necessarily a fatal error, as the server application may still find the certificate acceptable." /> <string id="event_SSLEVENT_CIPHER_MISMATCH" value="An %1 connection requ est was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connec tion request has failed." />
<string id="event_SSLEVENT_CREATE_CRED" value="Creating an SSL %1 creden
tial." /> <string id="event_SSLEVENT_CREATE_CRED_FAILED" value="A fatal error occu rred while creating an SSL %1 credential. The internal error state is %2." /> <string id="event_SSLEVENT_CRED_ACQUIRE_CONTEXT_FAILED" value="A fatal e rror occurred when attempting to access the SSL %1 credential private key. The e rror code returned from the cryptographic module is %2. The internal error state is %3." /> <string id="event_SSLEVENT_CRED_PROPERTIES" value="The SSL %1 credential 's private key has the following properties:%n%n CSP name: %2%n CSP type: %3 %n Key name: %4%n Key Type: %5%n Key Flags: %6%n%n The attached data conta ins the certificate." /> <string id="event_SSLEVENT_DTLS_COOKIE_VERIFY_FAILED" value="Verificatio n of the DTLS connection request failed." /> <string id="event_SSLEVENT_DTLS_DUPLICATE_RECORD" value="A DTLS record w as rejected because it is a duplicate of a previously received record." /> <string id="event_SSLEVENT_DTLS_RECORD_OUTSIDE_OF_RECV_WINDOW" value="DT LS record was rejected because it is outside of current receive window." /> <string id="event_SSLEVENT_DTLS_RETRANSMIT_REQUESTED" value="The retrans mission of DTLS handshake messages has been requested." /> <string id="event_SSLEVENT_EXPIRED_SERVER_CERT" value="The certificate r eceived from the remote server has either expired or is not yet valid. The SSL c onnection request has failed. The attached data contains the server certificate. " /> <string id="event_SSLEVENT_FAST_MAPPING_FAILURE" value="The certificate received from the remote client application is not suitable for direct mapping t o a client system account, possibly because the authority that issuing the certi ficate is not sufficiently trusted. The error code is %1. The attached data cont ains the client certificate." />