HP LaserJet Enterprise, HP PageWide Enterprise - HP Security Event Logging Messaging Reference (white paper)

ManualsBrandsHP ManualsDesktopsHP LaserJet Enterprise M506x

101

102

103

104

105

106

107

108

109

110

Chapter 2 – Enhanced security event logging 101

Explanation:

An Online Certificate Status Protocol URL was added for Kerberos server certificate validation.

Variables:

<device type> - see Table 2-2.

<timestamp> - see Table 2-2.

<user> - Authenticated user who added the Online Certificate Status Protocol URL. If an

unauthenticated user added the Online Certificate Status Protocol URL, the user key-value pair is

not contained within the message.

<client computer IP address> - IP address of the client computer that sent the request to add the

Online Certificate Status Protocol URL.

Message:

<device type>: Online Certificate Status Protocol URL deleted; time="<timestamp>" user=”<user>”

source_IP="<client computer IP address>" outcome=success

Interface(s):

EWS

Syslog severity:

Informational

Explanation:

An Online Certificate Status Protocol URL for Kerberos server certificate validation was deleted.

Variables:

<device type> - see Table 2-2.

<timestamp> - see Table 2-2.

<user> - Authenticated user who deleted the Online Certificate Status Protocol URL. If an

unauthenticated user deleted the Online Certificate Status Protocol URL, the user key-value pair is

not contained within the message.

<client computer IP address> - IP address of the client computer that sent the request to delete

the Online Certificate Status Protocol URL.

Message:

<device type>: Certification Validation settings modified; time="<timestamp>" user=”<user>”

source_IP="<client computer IP address>" outcome=success

Interface(s):

EWS

Syslog severity:

Informational

Explanation:

A certificate validation setting for Kerberos server certificate validation was modified.

This message is generated when any one of the following setting modifications are made:

• Switching between “Do not validate server certificate”, “Perform OCSP Validation On the

certificate trust chain”, and “Perform CDP Validation on the certificate trust chain.”

• Enabling or disabling the “Treat unknown certificate status as valid” function.

Variables:

<device type> - see Table 2-2.

<timestamp> - see Table 2-2.

<user> - Authenticated user who modified the certificate validation setting. If an unauthenticated

user modified the certificate validation setting, the user key-value pair is not contained within the

message.

<client computer IP address> - IP address of the client computer that sent the request to modify

the certificate validation setting.

HP Connection Inspector

Message:

<device type>: HP Connection Inspector enabled; time=”<timestamp>” user=”<user>”

source_IP=”<client computer IP address>” outcome=success interface=<interface>

Interface(s):

EWS

Syslog severity:

Informational