HP LaserJet Enterprise, HP PageWide Enterprise - HP Security Event Logging Messaging Reference (white paper)
Chapter 2 – Enhanced security event logging 122
• Key-ID
<old value> - Previous identity type the local device used to identify the IPsec peer. Possible
values are:
• Distinguished_Name
• FQDN
• E-mail
• IP_Address
• Key-ID
<remote identity authentication option> - Authentication method the local device will use to
authentication the IPsec peer. Possible values are:
• Certificates
• Pre-Shared_Key
<user> - User who modified the IPsec policy.
<client computer IP address> - IP address of the client computer that sent the request to modify
the IPsec policy.
<interface> - Networking interface on the local device that received the request to modify the
IPsec policy. Possible values are:
• Wired
• AP
• STA
Message:
<device type>: IPsec policy modified; time="<timestamp>" policy_name="<name>" item=Identity
remote_identity_authentication_option=<remote identity authentication option>
remote_identity_type="<remote identity type>" user=”<user>” source_IP="<client computer IP
address>" outcome=success interface=<interface>
Interface(s):
EWS
Syslog severity:
Warning
Explanation:
The remote identity in an IKEv2 IPsec policy was modified.
Variables:
<device type> - see Table 2-2.
<timestamp> - see Table 2-2.
<name> - IPsec policy name.
<remote identity authentication option> - Authentication method the local device will use to
authentication the IPsec peer. Possible values are:
• Certificates
• Pre-Shared_Key
<remote identity type> - Identity type the local device will use to authenticate the IPsec peer.
Possible values are:
• Distinguished_Name
• FQDN
• E-mail
• IP_Address
• Key-ID
<user> - User who modified the IPsec policy.
<client computer IP address> - IP address of the client computer that sent the request to modify
the IPsec policy.
<interface> - Networking interface on the local device that received the request to modify the
IPsec policy. Possible values are:
• Wired
• AP