HP LaserJet Enterprise, HP PageWide Enterprise - HP Security Event Logging Messaging Reference (white paper)

ManualsBrandsHP ManualsDesktopsHP LaserJet Enterprise M506x

121

122

123

124

125

126

127

128

129

130

Chapter 2 – Enhanced security event logging 121

Message:

<device type>: IPsec policy modified; time="<timestamp>" policy_name="<name>"

item=local_identity_authentication_option value=<value> old_value=<old value>

local_identity_type="<local identity type> " user=”<user>” source_IP="<client computer IP

address>" outcome=success interface=<interface>

Interface(s):

EWS

Syslog severity:

Warning

Explanation:

The local identity authentication option in an IKEv2 IPsec policy was modified.

Variables:

<device type> - see Table 2-2.

<timestamp> - see Table 2-2.

<name> - IPsec policy name.

<value> - Authentication method the IPsec peer will use to authenticate the local device. Possible

values are:

• Pre-shared_key

• Certificates

<old value> - Previous local identity authentication that was used by the IPsec peer to

authentication the local device. Possible values are:

• Pre-shared_key

• Certificates

<local identity type> - Identity type the IPsec peer will use to identify the local device. Possible

values are:

• Distinguished_Name

• FQDN

• E-mail

• IP_Address

• Key-ID

<user> - User who modified the IPsec policy.

<client computer IP address> - IP address of the client computer that sent the request to modify

the IPsec policy.

<interface> - Networking interface on the local device that received the request to modify the

IPsec policy. Possible values are:

• Wired

• AP

• STA

Message:

<device type>: IPsec policy modified; time="<timestamp>" policy_name="<name>"

item=remote_identity_type value="<value>" old_value="<old value>"

remote_identity_authentication_option=<remote identity authentication option> user=”<user>”

source_IP="<client computer IP address>" outcome=success interface=<interface>