nfig_LspDbgTraceOptions_description" value="Contains the setting of logging opti

ons for LSA Policy operations" />

<string id="config_LspDbgTraceOptions_displayName" value="Logging option
s for LSA Policy operations" />
<string id="description" value="Local Security Authority Subsystem" />
<string id="DiagnosticChannelName" value="Diagnostic" />
<string id="displayName" value="Local Security Authority Subsystem" />
<string id="event_DSROLERES_DEMOTE_SUCCESS" value="This server is no lon
ger a Domain Controller." />
<string id="event_DSROLERES_FAIL_DISABLE_AUTO_LOGON" value="Failed to di
sable auto logon following the successful upgrade of a domain controller. Unabl
e to delete registry key %1. The return code is the data." />
<string id="event_DSROLERES_FAIL_LOGON_DOMAIN" value="Failed to set the
default logon domain to %1. The return code is the data." />
<string id="event_DSROLERES_FAIL_SCRIPT_COPY" value="Moving the existing
logon scripts from %1 to %2 failed. The return code is the data." />
<string id="event_DSROLERES_FAIL_SET_SECURITY" value="Running the Securi
ty Configuration Editor over the Domain Controller encountered a non-fatal error
. Further details can be obtained by examining the log file %1. The return cod
e is the data." />
<string id="event_DSROLERES_FAILED_CONFIGURE_SERVICE_DEPENDENCY" value="
Dcpromo failed to remove the dependency of %1 on %2 during forced demotion." />
<string id="event_DSROLERES_FAILED_CONFIGURE_SERVICE_STARTTYPE" value="D
cpromo failed to configure the new starttype of %1 for the service %2 during for
ced demotion." />
<string id="event_DSROLERES_FAILED_STOPPING_NETLOGON" value="The Netlogo
n service could not be stopped during force demotion." />
<string id="event_DSROLERES_FAILED_TO_DELETE_TRUST" value="During the de
motion operation, the trust object on %1 could not be removed." />
<string id="event_DSROLERES_FAILED_TO_DEMOTE_FRS" value="During the demo
tion operation, the File Replication Service reported a non critical error." />
<string id="event_DSROLERES_FORCE_DEMOTE_SUCCESS" value="This server was
force demoted. It is no longer a Domain Controller." />
<string id="event_DSROLERES_INCOMPATIBLE_TRUST" value="An existing, inco
mpatible trust object was found on the parent server for domain %1. It has been
removed and replaced with an updated trust." />
<string id="event_DSROLERES_PROMOTE_SUCCESS" value="This server is now a
Domain Controller." />
<string id="event_LOGON_CACHE_DISABLED_MSG" value="Logon cache was disab
led. Intermittent authentication failures may result during periods of network l
atency or interrupts. Please contact your system administrator." />
<string id="event_LOGON_ENTRY_DELETED_MSG" value="A failed logon attempt
has caused a logon cache entry for user %1 to be deleted. The authentication pa
ckage was %2, and the error message was %3." />
<string id="event_LOGON_ENTRY_FLUSHED_MSG" value="A logon cache entry fo
r user %1 was the oldest entry and was removed. The timestamp of this entry was
%2." />
<string id="event_LSA_DOMAIN_RENAME_ERROR1" value="LSA could not update
domain information in the registry to match the DS. Error=%1." />
<string id="event_LSA_FOREST_CLAIMED_NEW_TLN" value="The new top level n
ame, %1, has been added to the forest %2. Name suffix routing for this new name
is disabled because it is not within any currently routed namespace. Objects can
not be resolved from this new namespace until name suffix routing is enabled fo
r the namespace. To enable name suffix routing, open Domains and Trusts and see
help under Name Suffix Routing and Forest Trusts." />
<string id="event_LSA_LOOPBACK_REJECTED" value="The program %2, with the
assigned process ID %1, could not authenticate locally by using the target name
%3. The target name used is not valid. A target name should refer to one of the
local computer names, for example, the DNS host name.%n %n Try a different targ
et name." />

<string id="event_LSA_NO_TARGET_NAME" value="The program %2, with the as

signed Process ID %1, supplied a NULL or empty target name for the pszTargetName
parameter when calling the InitializeSecurityContext API to initiate an outboun
d NTLM security context. This is a security risk when mutual authentication is r
equired.%n %n To help protect against a malicious attack, make your code more se
cure. To do this, change the program so that it specifies a target name in the p
szTargetName parameter field, and then recompile the code." />
<string id="event_LSA_OPEN_POLICY_BY_ANONYMOUS_REJECTED" value="An anony
mous session connected from %1 has attempted to open an LSA policy handle on thi
s machine. The attempt was rejected with STATUS_ACCESS_DENIED to prevent leaking
security sensitive information to the anonymous caller.%n The application that
made this attempt needs to be fixed. Please contact the application vendor. As a
temporary workaround, this security measure can be disabled by setting the \HKE
Y_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\TurnOffAnonymousBlock DWORD
value to 1.%n This message will be logged at most once a day." />
<string id="event_LSA_PACKAGE_NO_CREDENTIAL" value="The security package
does not cache the credentials needed to authenticate to the server.%n%nPackage
Name:%t%1%nUser Name:%t%2%nDomain Name:%t%3%nServer Name:%t%4%nProtected User:%
t%5%nError Code:%t%6%n" />
<string id="event_LSA_PACKAGE_NOT_CACHE_LOGON_USER" value="The security
package does not cache the user's sign on credentials.%n%nPackage Name:%t%1%nUse
r Name:%t%2%nDomain Name:%t%3%nProtected User:%t%4%n" />
<string id="event_LSA_PACKAGE_POST_LOGOFF_REQUEST" value="A security pac
kage received a network logon request after the logoff completed.%n%nUser Name:%
t%1%nDomain Name:%t%2%nLogon ID:%t%3%nLogoff Time:%t%4%nPID:%t%5%nProgram:%t%6%n
Principal Name:%t%7%nServer Name:%t%8%nPackage Name:%t%9%nCall Type:%t%10%nError
Code:%t%11%n" />
<string id="event_LSA_POSSIBLE_TOKEN_LEAK" value="LogonSession alive aft
er interactive user logoff. Indicates a possible token leak in one of the servic
es. %nLogon ID:%1%nAccount Name:%2%nDomain Name:%3%n" />
<string id="event_LSA_SECRET_UPGRADE_ERROR" value="Could not upgrade the
global secret %1. Please check the status of all services in the system." />
<string id="event_LSA_TOO_MANY_CONTEXT_IDS" value="During a logon attemp
t, the user's security context accumulated too many security IDs. This is a very
unusual situation. Remove the user from some global or local groups to reduce t
he number of security IDs to incorporate into the security context.%nUser's SID
is %1%nIf this is the Administrator account, logging on in safe mode will enable
Administrator to log on by automatically restricting group memberships." />
<string id="event_LSA_TRUST_INSERT_ERROR" value="The database contains i
nvalid information for trusted domain %1." />
<string id="event_LSA_TRUST_UPGRADE_ERROR" value="Could not upgrade the
Trusted domain object for domain %1. Please recreate the trust manually." />
<string id="event_LSA_USER_LOGOFF_NOTIFICATION" value="User %1 logged of
f notification is received.%n%nLogonId:%t%2%nAuthorityName:%t%3%nAccountName:%t%
4%nTimeout:%t%5 seconds%n" />
<string id="event_LSAEVENT_ITA_FOR_TRUST_NOT_CREATED" value="The interdo
main trust account for the domain %1 could not be created. The return code is th
e data." />
<string id="event_LSAEVENT_ITA_NOT_DELETED" value="The interdomain trust
account for the domain %1 could not be deleted. The return code is the data." /
>
<string id="event_LSAEVENT_LOOKUP_GC_FAILED" value="A lookup request was
made that required a Global Catalog. The LSA was unable to either contact or au
thenticate to a Global Catalog and thus failed the lookup request. Please check
the connectivity and authentication of this domain controller to a Global Catalo
g." />
<string id="event_LSAEVENT_LOOKUP_SC_FAILED" value="A lookup request was
made that required connectivity to a domain controller in domain %1. The LSA wa
s unable to find a domain controller in the domain and thus failed the request.
Please check connectivity and secure channel setup from this domain controller t

o the domain %2." />

<string id="event_LSAEVENT_LOOKUP_SC_HANDLE_FAILED" value="A lookup requ
est was made that required connectivity to the domain controller %1. The local L
SA was unable to contact the LSA on the remote domain controller. Please check c
onnectivity and secure channel setup from this domain controller to the domain c
ontroller %2." />
<string id="event_LSAEVENT_LOOKUP_SC_LOOKUP_FAILED" value="A lookup requ
est was made that required the lookup services on the remote domain controller %
1. The remote domain controller failed the request thus the local LSA failed the
original lookup request. Please check connectivity and secure channel setup fro
m this domain controller to the domain controller %2." />
<string id="event_LSAEVENT_LOOKUP_SID_FILTERED" value="The name %1 was t
ranslated to SID %2 from the trusted forest %3. The domain portion of the SID is
not in the list of acceptable SID's found on the trusted domain object, thus th
is name to SID translation has been ignored." />
<string id="event_LSAEVENT_LOOKUP_TCPIP_NOT_INSTALLED" value="The LSA wa
s unable to register its RPC interface over the TCP/IP interface. Please make su
re that the protocol is properly installed." />
<string id="event_NEGOTIATE_DOWNGRADE_DETECTED" value="The Security Syst
em detected an authentication error for the server %1. The failure code from aut
hentication protocol %2 was %3." />
<string id="event_NEGOTIATE_INVALID_SERVER" value="The Security System c
ould not establish a secured connection with the server %1. No authentication pr
otocol was available." />
<string id="event_NEGOTIATE_MESSAGE_DECODED" value="The Security System
has received an authentication attempt, and determined that the protocol %1 pref
erred by the client is acceptable." />
<string id="event_NEGOTIATE_MESSAGE_DECODED_NO_TOKEN" value="The Securit
y System has received an authentication attempt, and determined that the protoco
l %1 is the common protocol." />
<string id="event_NEGOTIATE_PACKAGE_SELECTED" value="The Security System
has selected %2 for the authentication protocol to server %1." />
<string id="event_NEGOTIATE_RAW_PACKET" value="The Security System has r
eceived an authentication request directly for authentication protocol %1." />
<string id="event_NEGOTIATE_UNBALANCED_EXCHANGE" value="The Security Sys
tem was unable to authenticate to the server %1 because the server has completed
the authentication, but the client authentication protocol %2 has not." />
<string id="event_NEGOTIATE_UNKNOWN_PACKAGE" value="The Security System
received an authentication attempt with an unknown authentication protocol. The
request has failed." />
<string id="event_NEGOTIATE_UNKNOWN_PACKET" value="The Security System h
as received an authentication request that could not be decoded. The request has
failed." />
<string id="event_SPMEVENT_PACKAGE_FAULT" value="The security package %1
generated an exception. The exception information is the data." />
<string id="event_SSLEVENT_BOGUS_CLIENT_CERT" value="The certificate rec
eived from the remote client application has not validated correctly. The error
code is %1. The attached data contains the client certificate." />
<string id="event_SSLEVENT_BOGUS_SERVER_CERT" value="The certificate rec
eived from the remote server has not validated correctly. The error code is %1.
The SSL connection request has failed. The attached data contains the server cer
tificate." />
<string id="event_SSLEVENT_CERT_MAPPING_FAILURE" value="The certificate
received from the remote client application was not successfully mapped to a cli
ent system account. The error code is %1. This is not necessarily a fatal error,
as the server application may still find the certificate acceptable." />
<string id="event_SSLEVENT_CIPHER_MISMATCH" value="An %1 connection requ
est was received from a remote client application, but none of the cipher suites
supported by the client application are supported by the server. The SSL connec
tion request has failed." />

<string id="event_SSLEVENT_CREATE_CRED" value="Creating an SSL %1 creden

tial." />
<string id="event_SSLEVENT_CREATE_CRED_FAILED" value="A fatal error occu
rred while creating an SSL %1 credential. The internal error state is %2." />
<string id="event_SSLEVENT_CRED_ACQUIRE_CONTEXT_FAILED" value="A fatal e
rror occurred when attempting to access the SSL %1 credential private key. The e
rror code returned from the cryptographic module is %2. The internal error state
is %3." />
<string id="event_SSLEVENT_CRED_PROPERTIES" value="The SSL %1 credential
's private key has the following properties:%n%n CSP name: %2%n CSP type: %3
%n Key name: %4%n Key Type: %5%n Key Flags: %6%n%n The attached data conta
ins the certificate." />
<string id="event_SSLEVENT_DTLS_COOKIE_VERIFY_FAILED" value="Verificatio
n of the DTLS connection request failed." />
<string id="event_SSLEVENT_DTLS_DUPLICATE_RECORD" value="A DTLS record w
as rejected because it is a duplicate of a previously received record." />
<string id="event_SSLEVENT_DTLS_RECORD_OUTSIDE_OF_RECV_WINDOW" value="DT
LS record was rejected because it is outside of current receive window." />
<string id="event_SSLEVENT_DTLS_RETRANSMIT_REQUESTED" value="The retrans
mission of DTLS handshake messages has been requested." />
<string id="event_SSLEVENT_EXPIRED_SERVER_CERT" value="The certificate r
eceived from the remote server has either expired or is not yet valid. The SSL c
onnection request has failed. The attached data contains the server certificate.
" />
<string id="event_SSLEVENT_FAST_MAPPING_FAILURE" value="The certificate
received from the remote client application is not suitable for direct mapping t
o a client system account, possibly because the authority that issuing the certi
ficate is not sufficiently trusted. The error code is %1. The attached data cont
ains the client certificate." />