Cisco IOS XR System Error Message Reference Guide, Release 3.6
Security Messages
Downloads: This chapterpdf (PDF - 679.0KB) The complete bookPDF (PDF - 40.65MB) | Feedback

Security Messages

Table Of Contents

Security Messages

aaa_task Messages

AAA Messages

ACCTD Messages

ACE_GRP Messages

ACE_LC Messages

ACE_TSB_LC Messages

CEPKI Messages

COND_DEB_RP Messages

IKE_CLIENT Messages

IKE Messages

IKEv2 Messages

IMP Messages

IPP Messages

KEYCHAIN Messages

login Messages

MPP Messages

PKI Messages

RADIUSD Messages

SAM Messages

sIMP Messages

SPM Messages

SSHD Messages

TACACSD Messages

VFW Messages


Security Messages


This section contains all Security related System Error Messages, such as AAA, IPSec and related protocols, and so forth. The following facility codes are represented in this module:

aaa_task Messages

AAA Messages

ACCTD Messages

ACE_GRP Messages

ACE_LC Messages

ACE_TSB_LC Messages

CEPKI Messages

COND_DEB_RP Messages

IKE_CLIENT Messages

IKE Messages

IKEv2 Messages

IMP Messages

IPP Messages

KEYCHAIN Messages

login Messages

MPP Messages

PKI Messages

RADIUSD Messages

SAM Messages

sIMP Messages

SPM Messages

SSHD Messages

TACACSD Messages

VFW Messages

aaa_task Messages

Error Message     
 
    
    
   

%SECURITY-aaa_task-3-DEBUG_ERROR [chars]: [chars]

Explanation    Error message from AAA task debug module

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-aaa_task-3-DLLMAIN_ERROR Error encountered in dllmain for [chars]: [chars]

Explanation    Error message from debug module

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-aaa_task-3-INVALID_AAA_TASK_DEBUG_FLAG AAA task debug flag [dec] does not exist

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-aaa_task-7-GENERIC_ERROR [chars]: [chars]

Explanation    Internal debugging message.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

AAA Messages

Error Message     
 
    
    
   

%SECURITY-AAA-3-DEBUG_ERROR [chars]: [chars]

Explanation    Encountered an error in debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-DEBUG_ERROR [chars]: [chars]

Explanation    Error encountered in debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-DES_INIT_FAIL [chars]: DES initialization failed

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-DLL_INIT_ERROR [chars]: [chars]

Explanation    Error encountered while initializing AAA client library DLL.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-DLLMAIN_ERROR Error encountered while initializing DLL for [chars]: [chars]

Explanation    Error message from DLL initialization module

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-ERR_SERVER_GROUP [chars]

Explanation    None at this time

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-ERROR_NO_MEM Not enough memory available while [chars]

Explanation    Failed to allocate necessary memory.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-INVALID_DEBUG_FLAG The AAA debug flag [dec] does not exist

Explanation    The debug flag specified is not supported.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-LIB_UTIL_ERROR_NO_MEM Not enough memory available while [chars]

Explanation    Failed to allocate memory.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-3-SYSDB_BIND_ERROR sysdb_bind returned error :[chars] in function :[chars]

Explanation    Error while trying to bind to sysdb.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-4-WHITESPACE_TRUNCATED_IN_SERVER_KEY WARNING: The server key contained trailing whitespace and was truncated

Explanation    Whitespace is not allowed at the end of a server key.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-7-ERR_ECM Failed to open event connection for a [chars]: [chars]

Explanation    The initial connection failed, but a retry has been successfully rescheduled.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-AAA-7-ERR_SYSDB [chars] path [chars]: [chars]

Explanation    'Failed to execute a SysDB operation'

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

ACCTD Messages

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-AMBIGUOUS_PASSWD Password which is a single digit is not permitted

Explanation    Single digit passwords are not allowed.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-BAG_ENCODE_ERR Failed to encode [chars] bag: [chars]

Explanation    Failed to encode a bag.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-BAGS_UNREG_ERR Failed to unregister [chars] bag: [chars]

Explanation    Failed to unregister a bag.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-DB_CLEAR_FAILED Clearing the [chars] DB failed. DB state is unknown

Explanation    Error encountered when attempting to clear the DB. DB might be in any state now & so usage of hat DB might fail with unexpected results.

Recommended Action    Collect the output of show logging and inform Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. Also, restarting the acctd DB process might help recover.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-DEBUG_ERROR [chars]: [chars]

Explanation    Error encountered in debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-EDM_INIT_ERR Failed to register EDM - [chars]

Explanation    Failed to initialize EDM.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-ERR_INVALID_GROUP [chars]: [chars]

Explanation    AAA failed to recognize the specified server group name. It may be undefined.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-ERR_THREAD_FN [chars]: pthread [chars] failed: [chars]

Explanation    The call to pthread functions, such as pthread_create, lock/unlock a mutex or wait on a condition, failed. The error is displayed in the message.

Recommended Action    *SH_TECH*

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-ERR_UNSUPPORTED_GROUP Group [chars] is not valid for [chars]

Explanation    RADIUS does not support command authorization and command accounting.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-INSUFFICIENT_BUFFER_SIZE Buffer size is insufficient to hold the required data: [chars]

Explanation    A buffer is required in order to fill a certain data but the buffer size was too small.

Recommended Action    Collect the output of show logging and inform Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-LIST_UNDEFINED Method list [chars] is not defined

Explanation    Trying to configure a method list in the line configuration that is not defined in AAA

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-LWA_ADD_DIR_FAIL Failed to add the username [chars] to lightweight authentication password database - [chars]. (Please remove/rename the file '/disk0:/AAA', which is in conflict with the directory '/disk0:/aaa/'.)

Explanation    A file with the same name as aaa directory detected.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-LWA_ADD_FAIL Failed to add the username [chars] to lightweight authentication password database: [chars]

Explanation    Failed to enable this user to log into ksh.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-LWA_REM_FAIL Failed to remove the username [chars] from lightweight authentication password database - [chars]

Explanation    Failed to remove a username from the LWA DB.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-MEMORY Failed to malloc [unsigned int] bytes

Explanation    acctd failed to allocate the required amount of memory.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-MSG_ERROR [chars]: [chars]

Explanation    Error encountered while handling messages received by acctd.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-MSG_SIZE_ERR [chars]: Size ([dec]) - [chars]

Explanation    An internal error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-PLANE_MISMATCH The username '[chars]' is already configured in the other plane (Admin/LR), please choose a different one

Explanation    The username has to be unique across the Admin and LR plane.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-RED_STATE_ERROR Error on changing redundancy state to [chars]: [chars]

Explanation    Error encountered during redundancy state transistion.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-ROOT_USERDB_INIT_FAIL [chars]: path [chars], error: [chars]

Explanation    Accounting daemon failed to create/remove the root user database on the disk0. This will affect authentication to ksh since it refers to this database.

Recommended Action    As a workaround an admin could create this directory in disk0 himself. This should get around the problem.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-ROOT_USERDB_LOCK_ERR Failed lock operation '[chars]'. Error: [chars]

Explanation    A lock operation on shared resource, called by acctd lwDB failed due to the mentioned error.

Recommended Action    Collect the output of show logging and inform Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-SETPRIO_FAILED Changing priority of acctd failed: [chars]

Explanation    Changing acctd priority failed.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-SHMWIN_INIT_FAILURE Failed to initialize shared memory used for AAA configuration - [chars]

Explanation    Failed to initialize shared memory window

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-SHUTDOWN_ERROR [chars]: [chars]

Explanation    acctd process failed to shutdown properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-SIGEVENT_SEND_FAIL Failed to send sigevent to [chars] - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-STARTUP_ERROR [chars]: [chars]

Explanation    acctd process failed to startup properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-3-STBY_INIT_ERR Failed to initialize standby - [chars]

Explanation    Failed to initialize acctd on standby node.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-ACCT_FAILURE Failed to send the accounting record for request id [dec] - [chars]

Explanation    Failed to send an accounting record to RADIUS or TACACS+ server

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-ACCT_TIMEOUT_FAILURE Failed to handle timeout for sending an accounting record (request id [dec]) - [chars]

Explanation    Failed to send an accounting record to RADIUS or TACACS+ server

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-CERR_REGISTER [chars]: [chars]

Explanation    acctd failed to register error codes.

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-CHKPT_REGISTER_FAILURE Error encountered while registering the checkpoint table [chars] - [chars]

Explanation    Encountered a checkpoint register failure

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-CHKPT_RESTORE_FAILURE Error encountered while recovering from checkpoint table [chars] - [chars]

Explanation    Encountered a checkpoint recovery failure

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-CHKPT_SAVE_FAILURE Error encountered while saving to checkpoint table [chars] - [chars]

Explanation    Encountered a checkpoint save failure

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-PASSWD_ALREADY_EXISTS Warning: The password is configured too for user '[chars]'

Explanation    An internal software error has occurred

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-4-SECRET_ALREADY_EXISTS Warning: The secret is configured too for user '[chars]'

Explanation    An internal software error has occurred

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-7-ERR_SYSDB_FD [chars] [chars]: [chars]

Explanation    Error encountered while using the System Database.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-7-ERR_TTYMGMT_FD [chars]: [chars]

Explanation    Error encountered while using TTY management library.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-ACCTD-7-GENERIC_ERROR [chars]: [chars]

Explanation    Generic error message used for internal debugging.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

ACE_GRP Messages

Error Message     
 
    
    
   

%SECURITY-ACE_GRP-3-ERROR [chars]: [chars]

Explanation    An error occurred in ace_grp dll

Recommended Action    *SH_TECH*

ACE_LC Messages

Error Message     
 
    
    
   

%SECURITY-ACE_LC-0-ACE_SYSLOG_EMERG [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-1-ACE_SYSLOG_ALERT [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-2-ACE_SYSLOG_CRIT [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-2-ACE_SYSLOG_ERR [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-3-ERR [chars]: [chars]

Explanation    ACE Driver Fatal Error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-4-ACE_SYSLOG_WARNING [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-4-WARNING [chars]: [chars]

Explanation    ACE driver warning message.

Recommended Action    'If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-5-ACE_SYSLOG_NOTICE [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'No action is required.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-6-ACE_SYSLOG_INFO [[dec]][chars]

Explanation    ACE SPA SYSLOG message

Recommended Action    'No action is required.'

Error Message     
 
    
    
   

%SECURITY-ACE_LC-6-INFO [chars]: [chars]

Explanation    ACE driver Informational message

Recommended Action    'No action is required.'

ACE_TSB_LC Messages

Error Message     
 
    
    
   

%SECURITY-ACE_TSB_LC-3-ERR [chars]

Explanation    ACE TSB Fatal Error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_TSB_LC-6-INFO [chars]: [chars]

Explanation    ACE TSB Informational message

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_TSB_LC-6-WARNING [chars]: [chars]

Explanation    ACE TSB warning message.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-ACE_TSB_LC-7-DEBUG [chars]: [chars]

Explanation    ACE TSB Debug Information

Recommended Action    'No action is required.'

CEPKI Messages

Error Message     
 
    
    
   

%SECURITY-CEPKI-6-ERR [chars]

Explanation    CEPKI general error message with one prameter.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-CEPKI-6-ERR_2 [chars] [chars]

Explanation    CEPKI general error message with two prameters.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-CEPKI-6-INFO [chars]

Explanation    CEPKI general info message with one prameter.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-CEPKI-6-WARNING [chars]

Explanation    CEPKI general warning message.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

COND_DEB_RP Messages

Error Message     
 
    
    
   

%SECURITY-COND_DEB_RP-3-INSUFMEM Failed to allocate memory

Explanation    The requested operation could not be accomplished because of a low memory condition.

Recommended Action    Reduce other system activity to ease memory demands. If conditions warrant, upgrade to a larger memory configuration.

Error Message     
 
    
    
   

%SECURITY-COND_DEB_RP-3-NOCONDDBG Crypto conditional debug does not work.

Explanation    The request to use condition for a crypto debug message could not be accomplish.

Recommended Action    If displaying of crypto debug messages is needed, please use regular crypto debug mechanism instead of conditional crypto debug mechanism.

Error Message     
 
    
    
   

%SECURITY-COND_DEB_RP-3-NOIPCONDDBG Crypto conditional debug using IP address does not work.

Explanation    The request to use using IP address as condition for a crypto debug message could not be accomplish.

Recommended Action    If displaying of crypto debug messages is needed, please use regular crypto debug mechanism instead of conditional crypto debug mechanism.

Error Message     
 
    
    
   

%SECURITY-COND_DEB_RP-6-ILLIPVAL Illegal IP-address/IP-mask was configured.

Explanation    Illegal IP-address and/or IP-mask were configuring as condition to crypto debug message.

Recommended Action    Fix the values of IP-address and/or IP-mask in the 'ìdeugb condition crypto IPv4...' Öî command.

IKE_CLIENT Messages

Error Message     
 
    
    
   

%SECURITY-IKE_CLIENT-3-MQ_SEND_FAIL [chars]:Failed to send IPC using mq_send. reason: [chars]

Explanation    Failed to send IPC message to IKE process. Most likely casue the process is too busy

Recommended Action    'contact Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. with the exact error message seen'

Error Message     
 
    
    
   

%SECURITY-IKE_CLIENT-4-WARNING [chars]

Explanation    Internal Warning.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

IKE Messages

Error Message     
 
    
    
   

%SECURITY-IKE-2-ERR_NO_MEMORY Failed to allocate memory.

Explanation    A memory allocation failure has occurred from which the process cannot automatically recover.

Recommended Action    'The process must be restarted to ensure correct operation. If memory is repeatedly exhausted upgrade to a larger memory configuration.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-ACCT_MSG_TX_FAILURE Failed to send an Accounting record of type: [chars], error: [chars]

Explanation    An error occurred while attempting to send an accounting record to the external AAA server

Recommended Action    'Check AAA connectivity, otherwise contact Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. with the exact error message seen'

Error Message     
 
    
    
   

%SECURITY-IKE-3-ADD_KEY_FAIL IKE detects failure adding key, name [chars], ip address [unsigned int]

Explanation    IKE found failure when adding key

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-AUTHENTICATION_FAILED [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Authentication method [dec] failed with peer.

Explanation    The IKE process was unable to authenticate its security association with its remote peer.

Recommended Action    'Contact the remote peer's administrator.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-BAD_CERT_USE IKE detects bad certificate was used, [chars], [chars]

Explanation    IKE found bad certificate was used

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-BAD_DOI_NOTIFY IKE detects bad DOI notify, DOI is [dec], address is [unsigned int]

Explanation    IKE found bad DOI notify

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-BADMAGIC Bad [chars] magic number ([hex]).

Explanation    'An internal software error.'

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-CRYPTO_FAILURE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: EN/DE-crypto services failure, [chars] during [chars].

Explanation    IKE found failure returned from encryption/decryption service.

Recommended Action    'Contact remote peer's administrator.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-ERR_2_PARAM [chars], [chars]

Explanation    IKE general error message with two prameters.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-ERR_EMPTY_SESSION Session node empty (no ipsec/ike SAs) DB maybe inconsisten. Peer [chars]/[dec] vrf [chars]

Explanation    Internal error, Session node does not include any ipsec and ike SAs, This indicates an internal data structure inconsistency.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-ERROR [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-FAILED_TO_CREATE_SKEYID [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Failed to compute SKEYSEED.

Explanation    Failed to generate SKEYID.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-GROUP_AUTHOR_FAILED [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars]. grpname equals [chars].

Explanation    Group authorization failed.

Recommended Action    'Check AAA connectivity'

Error Message     
 
    
    
   

%SECURITY-IKE-3-GROUP_CONFIG_UPLOAD_LOCAL_AAA_FAILED Failed to upload the IKE groups from the running config to the local AAA server. rc equals [dec], errpr equals [chars]

Explanation    An error occured while the IKE process was uploading its localy configured groups to the localy running AAA server. This means that the system is in inconsistent state. the IKE groups that are seen in the running config are not configured in the local AAA DB that can be seen using 'show aaa ikegroups'.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-IKE-3-IKEINIT [chars]

Explanation    An IKE initialization error

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-INTF_PARAMS_FAILURE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars] Interface: [chars].

Explanation    [1] When an interface is configured with a VRF that is not configured globally, it is treated as invalid VRF. SAs should not be created on this interface. [2] When an interface state is not UP SAs should not be created on this interface.

Recommended Action    [1] 'Make sure to use interfaces with valid VRF' [2] 'Make sure to use interfaces with state UP'

Error Message     
 
    
    
   

%SECURITY-IKE-3-INVALID_CERT [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: IKE detects invalid certificate - [chars].

Explanation    The certificate given by remote peer has either been revoked or expired (certificate invalid) or the signature check on the certificate failed (bad signature).

Recommended Action    'Contact the CA of the remote peer. Possibly bad CA certificate.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-IP_AP_NOTIFY_INUSE_ADDRESS_FAILED Failed to notify about a used IP address to the Address Pool component. pool equals [chars], vrf equals [chars], IP equals [chars], err equals [chars]

Explanation    An error occurred while attempting to notify IP local Address Pool about used addresses

Recommended Action    'Try to disable ipsec-chkpt and restart IKE process'

Error Message     
 
    
    
   

%SECURITY-IKE-3-IP_POOL_FREE_FAILURE Failed to free a local pool IP address : poolname equals [chars], ip equals [chars]

Explanation    An error occurred while attempting to free an IP address back to the local pool

Recommended Action    'It may be possible to rectify the problem by restarting ip_ap process.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-KEY_NOT_FOUND_IN_PROFILE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Key not found in ISAKMP profile '[chars]'.

Explanation    In Main Mode, The ID payloads are exchanged only in MM5 and MM6. Since keyring material is needed in earlier stages of the negotiation, it is looked up based on peer address. This error is seen when the selected keyring appears to not match the keyring configured under the ISAKMP profile for that peer.'

Recommended Action    'Make sure that the keyring in which the key exist is attached to the ISAKMP profile'

Error Message     
 
    
    
   

%SECURITY-IKE-3-LOCAL_ADDRESS_FAILURE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars]. grpname equals [chars], username equals [chars], pool equals [chars].

Explanation    Failed to allocate IP address for client.

Recommended Action    'Make sure ip local pool is defined and has at least one free address ('show local pool'), also make sure that the specific pool is assigned to the proper ISAKMP profile ('show crypto isakmp profile'), otherwise contact Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. with the exact log message received.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-MALFORMED_MESSAGE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: IKE message failed its sanity check or is malformed.

Explanation    A quick sanity check is done on all received ISAKMP messages to verify that all component payload types are valid, and that the sum of their individual lengths equals the total length of the received message. This message failed the sanity check. This continous bad messages could imply denial of service attack

Recommended Action    'Contact the remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-MQ_FAIL [chars]:Failed on [chars]:[chars]

Explanation    An internal software error occurred.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-MQ_SEND_FAIL [chars]:Failed to send IPC using mq_send. reason: [chars]

Explanation    Failed to send IPC message to IKE process. Most likely casue the process is too busy

Recommended Action    'contact Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. with the exact error message seen'

Error Message     
 
    
    
   

%SECURITY-IKE-3-NO_POLICY_FOUND [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: No cert, encryption key or pre-shared address key with peer.

Explanation    Failed to derive peer key through either of the following ways: pre-shared keys, RSA keys, or certiifcates. Applies only to initiator mode.

Recommended Action    'Contact administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-PACKET_PROCESS_FAILURE [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Failed to process the packet, probably results from internal error.

Explanation    This error message implies a severe error condition, likely as result of internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-PHASE2_PROPOSAL_NOT_CHOSEN [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Phase-II: peer proposal rejected.

Explanation    Phase-II parameters negotiation failed with peer.

Recommended Action    'Contact the remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-POLICY_MISMATCH [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: No offers accepted.

Explanation    Phase I policy parameters negotiation failed with peer.

Recommended Action    'Contact the remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-PRESHARED_KEY_NOT_FOUND [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Failed to find pre-shared key. grpname equals [chars], username equals [chars].

Explanation    Failed to find pre-shared key.

Recommended Action    'Contact administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-PROFILE_NOT_FOUND [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars] [chars].

Explanation    [1] No ISAKMP profile found matching peer identity. applicable to RESPONDER mode only. [2] No ISAKMP profile found matching interface name. applicable only to INITIATOR mode. [3] Peer identity doesn't match the ISAKMP profile associated with the interface. applicable only to INITIATOR mode.

Recommended Action    [1] 'Make sure an ISAKMP profile exists for peer match-id' [2] 'Make sure that the ISAKMP profile is attached to the proper interface' [3] 'Make sure that the ISAKMP profile attached to the interface matches peers identity'

Error Message     
 
    
    
   

%SECURITY-IKE-3-QUICK_MODE_TIMER_EXPIRED [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Timer to complete phase-I has expired.

Explanation    We can't wait forever before we start quick-mode and initiate phase II.

Recommended Action    'The most likely reason for failing to start phase2 is that the process failed to complete phase1. In this case, it should have also logged another message which should appear immediately before this one.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-RETRANSMISSION_LIMIT [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Retransmission limit exceeded.

Explanation    Retransmission limit exceeded.

Recommended Action    'Contact administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-3-RSA_PUBLIC_KEY_NOT_FOUND [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars].

Explanation    Failed to query RSA key.

Recommended Action    'Check the subject name in the certificate.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-SA_NOT_AUTH [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: Cannot accept Quick Mode exchange if SA is not authenticated.

Explanation    The IKE security association with the remote peer was not authenticated; yet the peer attempted to begin a Quick Mode exchange. This exchange must only be done with an authenticated security association.

Recommended Action    'Contact remote peer's administrator.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-SA_NOT_OFFERED IKE detects SA not being offered [unsigned int], [chars]

Explanation    IKE found SA not offered

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-3-USER_AUTHEN_REJECTED [[chars] ([char]) failed with peer:[chars] fvrf:[chars]] Reason: [chars]. grpname equals [chars], username equals [chars].

Explanation    Processing of phase 1.5 (xauth) with peer failed.

Recommended Action    'Make sure the password delivered is indeed matching the client, otherwise contact Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information. with the exact log message received'

Error Message     
 
    
    
   

%SECURITY-IKE-4-BAD_DOI_SA [[chars] ([char]) with peer:[chars] fvrf:[chars]] Invalid DOI value: [dec] in a SA offer.

Explanation    The DOI field in a SA offer is needed for message parsing. SA offer with unknown DOI can't be parsed.

Recommended Action    'If this situation persists contact the remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-4-CERT_DOESNT_MATCH_ID [[chars] ([char]) with peer:[chars] fvrf:[chars]] Certificate doesn't match [chars] ID:[chars], id_type:[dec] ,cert:[chars].

Explanation    Peers claimed identity doesn't match what we can glean from the certificate.

Recommended Action    'Contact remote peer and/or his administrator if session doesn't come up'

Error Message     
 
    
    
   

%SECURITY-IKE-4-CERT_ISNT_TRUSTED_ROOT [[chars] ([char]) with peer:[chars] fvrf:[chars]] Certificate issuer name:[chars] is not a trusted root.

Explanation    During IKE phase-I signature verification, the initiator will send a list of its CA certificates. This warning will be printed by the responder if none of the CAs in the list is a trusted root. Note this is not necessarily an error, as there may be multiple cert-req payloads

Recommended Action    'Contact remote peer and/or his administrator if session doesn't come up'

Error Message     
 
    
    
   

%SECURITY-IKE-4-INCOMING_PKT_TOO_BIG ISAKMP packet from [chars] is larger ([dec]) than the maximum size permitted.

Explanation    The packet size is limited to 32K, in case that peer sends out long length info forcing large buffer allocation (DOS).

Recommended Action    'Contact the remote peer and/or his administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-4-IPV4_ROUTES_TOO_MANY [[chars] ([char]) with peer:[chars] fvrf:[chars]] Too many IPV4 routes from spoke, got [dec], max routes supported [dec]

Explanation    Spoke sent too many IPV4 routes during negotiation.

Recommended Action    'configure spoke with less routes'

Error Message     
 
    
    
   

%SECURITY-IKE-4-MESSAGE_NOT_PROCESSED Message is not processed, ike is disabled.

Explanation    Trying to initiate a tunnel while ike is disabled. The request message for establishing the tunnel is not processed and dropped.

Recommended Action    'Enable ike by configuring crypto isakmp command'

Error Message     
 
    
    
   

%SECURITY-IKE-4-NO_SA No SA found for peer (src:[chars] fvrf:[chars]) and it is not an initial offer.

Explanation    No security association exists for this packet and it is not an initial offer from the peer to establish one. These errors could imply denial of service attack.

Recommended Action    'Contact the remote peer and/or his administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-4-OUTGOING_PKT_TOO_BIG ISAKMP packet is too long. Size:[dec] bytes, max allowed:[dec] bytes.

Explanation    Trying to send an ISAKMP packet that is above the maximum UDP packet size allowed. That can happen if an inordinately large number of IKE policies were being proposed by the initiator.

Recommended Action    'Try to reduce the number of ISAKMP policies configured'

Error Message     
 
    
    
   

%SECURITY-IKE-4-PACKET_NOT_ENCRYPTED [[chars] ([char]) with peer:[chars] fvrf:[chars]] IKE Packet wasn't encrypted and it should have been.

Explanation    Received packet should have been encrypted by peer but wasn't.

Recommended Action    'Contact remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-4-UNKNOWN_EXCHANGE_TYPE [[chars] ([char]) with peer:[chars] fvrf:[chars]] Received message with unknown exchange [dec].

Explanation    IKE performs actions on messages based on defined exchanges. A message received with an unknown exchange.

Recommended Action    'If the problem appears to be more than a transient one, contact the peer's administrator.'

Error Message     
 
    
    
   

%SECURITY-IKE-4-UNRELIABLE_INFO_MSG [[chars] ([char]) with peer:[chars] fvrf:[chars]] Received INFO message before peer has been authenticated.

Explanation    Received INFO message before peer has been authenticated that is why it is called unreliable.

Recommended Action    'Contact the remote peer's administrator'

Error Message     
 
    
    
   

%SECURITY-IKE-4-WARNING [chars]

Explanation    Internal Warning.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-4-WARNING2 [chars], [chars]

Explanation    Internal Warning.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKE-6-CAC_DROPS [chars]

Explanation    Call admission control policy is configured on the device. Consequently an IKE SA request was denied due to the reason described in the error message.

Recommended Action    'Depending on the reason that the request was denied, either reduce the load on the system so that it can handle new IKE SA requests, or increase the maximum allowed IKE sessions if more are needed'

Error Message     
 
    
    
   

%SECURITY-IKE-6-CRYPTO_TUNNEL_STATUS Crypto tunnel is [chars]. Peer [chars]:[dec] [chars] [chars] [chars] [chars] [chars] [chars] [chars] [chars]

Explanation    Report tunnel status.

Recommended Action    None.

Error Message     
 
    
    
   

%SECURITY-IKE-6-DEFAULT_POLICY_ACCEPTED [[chars] ([char]) with peer:[chars] fvrf:[chars]] IKE default policy was matched and is being used.

Explanation    The default policy is being used because the local configured policies did not match with the peer's policies.

Recommended Action    'Check if this is indeed the desired ISAKMP policy to use. To avoid using the default policy, reconfigure the local policy to match with peer's policy'

Error Message     
 
    
    
   

%SECURITY-IKE-6-MODE_FAILURE Processing of [chars] mode failed with peer at [chars]

Explanation    Negotiation with the remote peer failed.

Recommended Action    'If this situation persists contact the remote peer'

IKEv2 Messages

Error Message     
 
    
    
   

%SECURITY-IKEv2-3-ERROR [chars] [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKEv2-4-WARNING [chars]

Explanation    Internal Warning.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IKEv2-4-WARNING2 [chars], [chars]

Explanation    Internal Warning.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

IMP Messages

Error Message     
 
    
    
   

%SECURITY-IMP-3-CONFIG_ERR [chars]

Explanation    Crypto Configuration (SAs/ACLs) failed

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-IMP-3-FATAL_ERR [chars]

Explanation    An internal software fatal error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-IMP-3-MQ_FAIL [chars]:Failed on [chars]:[chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-IMP-3-SVI_TUNNEL_TYPE_ERR [chars]

Explanation    SVI has already tunnel with type different from the one that is trying to be established. Single sa tunnel can't be on the same svi as regular tunnel. first tunnel type determines the SVI type

Recommended Action    verify all client are from same type

Error Message     
 
    
    
   

%SECURITY-IMP-4-MSG_WARN [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

IPP Messages

Error Message     
 
    
    
   

%SECURITY-IPP-3-ERR_GENERAL [chars] [chars]

Explanation    Error description, error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IPP-3-ERR_MALLOC Cannot allocate memory in function [chars]()

Explanation    Internal error. System is out of memory - malloc failed.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-IPP-6-INFO_GENERAL [chars]

Explanation    The IPSec IPP encountered some problem in genric nature or plain information.

Recommended Action    'No action is required.'

KEYCHAIN Messages

Error Message     
 
    
    
   

%SECURITY-KEYCHAIN-3-FATAL_ERR [chars]

Explanation    An internal software fatal error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-KEYCHAIN-4-MSG_WARN Receive invalid message type [dec]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

login Messages

Error Message     
 
    
    
   

%SECURITY-login-2-AUTHEN_FAILED Failed authentication attempt by user '[chars]' from '[chars]' on '[chars]'

Explanation    Error message from debug module

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-login-3-DEBUG_ERROR Failed to [chars] debug module: [chars]

Explanation    Failed to initialize or shutdown the debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-login-3-DLLMAIN_ERROR Error encountered while initializing the DLL, path [chars]: [chars]

Explanation    Error message from debug initialization module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-login-3-INVALID_LOGIN_DEBUG_FLAG The login debug flag [dec] does not exist

Explanation    The debug flag specified is not supported.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-login-3-NO_MEMORY Not enough memory was available while [chars]

Explanation    Failed to allocate necessary memory.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

MPP Messages

Error Message     
 
    
    
   

%SECURITY-MPP-3-FATAL_ERR [chars]

Explanation    An internal software fatal error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-MPP-4-MSG_WARN [chars]: [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-MPP-6-MSG_INFO [chars]: [chars]

Explanation    Updated Management Plane configuration.

Recommended Action    'No action is required.'

PKI Messages

Error Message     
 
    
    
   

%SECURITY-PKI-6-ERR_1_PARAM [chars]

Explanation    CEPKI general error message with one prameter.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-PKI-6-ERR_2_PARAM [chars] [chars]

Explanation    CEPKI general error message with two prameters.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-PKI-6-LOG_INFO [chars]

Explanation    CEPKI general error message with one prameter.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

RADIUSD Messages

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ACCT_NOTIFY_FAIL Failed to notify the completion of accounting to sender - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ADD_SYS_IP_ADDR_ATTR_ERR Adding NAS IP address failed, omitted: [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ADD_VSA_FAIL Failed to add VSA av-pair [dec] with [chars] - [chars]

Explanation    Failure encountered while adding a VSA.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_AVPAIR Bad AAA avpair [dec] with length [dec] detected

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_MSG_TYPE Unsupported message type [dec] encountered while [chars]

Explanation    Found an unsupported AAA message type in avlist.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_VSA_FORMAT_BIT Format bit is not set for VSA [chars]

Explanation    Format bit is not set for VSA %s according to table bitmap.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_VSA_LENGTH Inconsistent [chars] VSA length [dec] was encountered

Explanation    VSA format error found in radiusd while translating.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_VSA_TYPE Bad [chars] VSA type [dec] with vendor_id [dec] encountered, possibily out of range

Explanation    VSA format error found in radiusd while translating.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAD_VSA_VENDOR Vendor specified for VSA [chars] is not recognized

Explanation    Vendor specified for the VSA is not recognized according to table bitmap. An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAG_ENCODE_ERR Failed to encode [chars] bag: [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-BAGS_UNREG_ERR Failed to unregister bag [chars]: [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-CONFIG_ERR Encountered configuration error while [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-DEBUG_ERROR [chars]: [chars]

Explanation    Error encountered in debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-EDM_INIT_ERR Failed to register EDM - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ERR_CREATE_SERVER_ENTRY Failed to create a server entry: [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ERR_CREATESG Unable to apply server group '[chars]' configuration: [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ERR_SET_SERVER_ENTRY Error while setting or unsetting a parameter in server entry: [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ERR_SYSDBBIND Failed to bind to SysDB at [chars]: [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ERR_TTY_IFH_PRESENT Both ttyname ([chars]) and ifh ([hex]) are present in the message

Explanation    In the AV pair message recieved from the radiusd clients should have either ttyname or interface handle, not both.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-EVENT_ASYNC_ATTACH_FAIL_ERR Failed to attach handler for async events: [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-IP_ADDR_TOO_LONG_ERR IP address [chars] is too long ([dec])

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-LOCKING Failed to obtain or release [chars] lock (error: [chars])

Explanation    radiusd has either failed to obtain or release a lock.

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-MEMORY Failed to malloc [unsigned int] bytes

Explanation    radiusd has failed to allocate the required amount of memory.

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-MSG_ERROR [chars]: [chars]

Explanation    Error encountered while handling messages received by tacacsd.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-MSG_SIZE_ERR [chars]: size [dec] - [chars]

Explanation    An internal error occurred

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-NOT_VSA The specified attribute [dec] is a non-VSA radius attribute

Explanation    Encountered a non VSA attribute.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-PARAMETER [chars]

Explanation    RADIUS was passed an invalid parameter.

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-RIB_BIND_ERR Binding to RIB failed: [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-RIB_LOCAL_ADDRESS_ERR NAS IP not found; address omitted: [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-SERVER_MUTEX_INIT_FAILED Failed to initialize mutex in radiusd

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-SETPRIO_FAILED Changing priority failed [dec]

Explanation    Attempt to change priority failed.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-SHUTDOWN_ERROR [chars]: [chars]

Explanation    TACACS+ process failed to shutdown properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-STARTUP_ERROR [chars]: [chars]

Explanation    TACACS+ process failed to startup properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_FORMAT_ERR1 daemon VSA [dec] does not match type string in [chars].

Explanation    VSA format error in daemon user config.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_FORMAT_ERR2 Parsing error on daemon VSA '[chars]' (no protocol or type field)

Explanation    VSA format error in daemon user configuration.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_FORMAT_ERR3 Parsing error on daemon VSA '[chars]' (no value field or invalid length)

Explanation    VSA format error in daemon user configuration.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_FORMAT_ERR4 Parsing error on daemon VSA '[chars]', order number [dec] (not 0-254) is not supported

Explanation    VSA format error in daemon user configuration.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_FORMAT_ERR5 Parsing error on daemon VSA '[chars]' (invalid type field)

Explanation    VSA format error in daemon user configuration.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_NOTFOUND VSA [dec] ([chars]) not found in daemon-to-nas tables after string comparing

Explanation    VSA not found in the deamon to NAS mapping table.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-VSA_TABLE_ERROR Table [chars] entry [dec] has inconsistent ignore flag and standard attribute type

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-3-ZERO_TIMER_REPEATEDLY_EXPIRING_ERROR [chars]: [dec] [dec]

Explanation    The deadtimer expiry event repeatedly occured with a deadtime value of zero. This could lead to cpu hogging by radiusd process.

Recommended Action    Restarting radiusd process should get around the problem.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-CERR_REGISTER [chars]: [chars]

Explanation    radiusd failed to register error codes.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-IFHANDLE_NULL WARNING: Cannot obtain handle for the interface [chars]: [chars]

Explanation    Error encountered while obtaining handle for the interface specified as the source interface.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-IP_ADDRESS_NOT_FOUND WARNING: No IP address configured for [chars], using default address instead: [chars]

Explanation    There is no IP address configured for the specified interface.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-NO_IP_ADDRESS WARNING: No IP address has been configured for [chars]

Explanation    There is no IP address configured for the specified interface.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-NOSUCH_INTF WARNING: Specified source interface [chars] is not present: [chars]

Explanation    The interface specified as source interface is not present.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-RADIUS_NOSERV Warning: Server [chars]/[dec]/[dec] is not defined

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-4-SRCINTF_NOTUP WARNING: Specified source interface [chars] is not UP

Explanation    The interface specified as source interface is not UP.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-BAD_ATTR_LENGTH Encountered bad attribute length [dec] (attr [dec]) while [chars], ignored

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-BAD_ATTR_TYPE Encountered bad attribute type [dec] while [chars], ignored

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_ACCT_ID Cannot convert accounting task id to accounting session id: [chars]

Explanation    Accounting task id is probably larger than 2^24 - 1

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_BAD_REPLY_ATTR reply attr size equals [dec] not equal to sum of parts equals [dec]

Explanation    The length of the reply attribute does not equal its parts.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_BAD_SESSID_ATTR Using incorrect AAA attribute for RAD_ACCT_SESSID_ATTR [chars]

Explanation    Check consistancy between radius_table and nas_to_daemon_av_table

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_LEAFTIMER Cannot allocate leaf timer - [chars]

Explanation    None at this time

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_SOCKET_BIND_FAIL Error in binding socket: [chars]

Explanation    None at this time

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-ERR_SOCKETFAIL Error in opening socket: [chars]

Explanation    None at this time

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-EVENT_CONN_DESTROY_FAILED Event connection destroy failed while [chars]: [chars]

Explanation    An internal software error occured

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-EVENT_CONN_INIT_FAILED Failed to initialize event connection for [chars] (error: [chars])

Explanation    An internal software error occured

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-GOT_CISCO_VSA Encountered a Cisco VSA while processing non Cisco VSAs

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-INTRFC_STATE_QUERY_FAILED Cannot query state of interface [chars] (source interface not applied): [chars]

Explanation    An internal software error occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-INVALID_AUTHOR_TYPE Invalid authorization type [dec] encountered while [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-INVALID_VSA Found invalid VSA attr [dec] while [chars], ignored

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-LEN_TOO_LONG Length of attribute [chars] exceeds limit [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-SNPRINTF_FAIL snprintf failed while [chars]: [chars]

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-6-UNSUPPORTED_VENDOR Found unsupported vendor id [dec] while [chars], ignored

Explanation    An internal software error has occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-RADIUSD-7-GENERIC_ERROR [chars]: [chars]

Explanation    Generic error message used for internal debugging.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

SAM Messages

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_COPY_CRL Error copying CRL from [chars] to [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_DEL_CA_CERT Failed to delete CA certificate from SysDB [chars] during merge oper

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_FILE_MD5 Failed in MD5 operation for file: [chars], [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_INVALID_DEVICE Invalid device name '[chars]'

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_NO_DIGESTINDEX_VALUE Installed file, [chars], does not have SAM index entry

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_NO_MEMORY Out of memory

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_OPEN_FILE Failed opening file: [chars], [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_REG_MSGNO Could not register SAM_MSGNO message handler for message id [dec]: [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_RESTORE_LOG_ENCODE Failed to encode bag for log entry [dec] during restore, [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_SYSDB_GET Failed to get item [chars] in SysDB: [hex], [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_SYSDB_SET Failed to set item [chars] in SysDB: [hex], [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-ERR_WR_FILE Failed writing file : [chars], [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-WARN_NVRAM NVRAM is not available, nvram process might have been down.

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-3-WARN_SPM SPM is not available, [chars].

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-4-CAUGHT_SIGNAL server terminating..

Explanation    SAM server caught a signal, and terminated

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-4-NO_BK_LOG SAM log backup file is not present, will try to recover the backup log from SysDB

Explanation    For some reason, the backup file of SAM log has disappeared.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-4-SYSDB_INTEGRITY Cannot guarantee the integrity of SAM SysDB name space, SAM internal tables had been discarded, and will try to recover from backup files.

Explanation    Found digest mistmatch for SAM's SysDB name space, the SAM portion of SysDB had been deleted. If SAM backup files exists, this should not impact SAM's functionality; otherwise, CA root certificate and CRL will be lost

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-4-WARN_CA_CERT_EXPIRED SAM detects the CA certificate had expired, but accepted by user

Explanation    SAM found the expired CA certificate in table had been accepted by user.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-4-WARN_CSS_CERT_EXPIRED SAM detects the PIE certificate had expired, but accepted by user

Explanation    SAM found the expired CSS certificate in table had been accepted by user.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-ERR_1_PARAM [chars]

Explanation    SAM general error message with one prameter.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-ERR_2_PARAM [chars], [chars]

Explanation    SAM general error message with two prameters.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARN_CHANGE_NOT_PERSISTENT SAM found no ENA device with sufficient space to backup the modified SAM table, the change will not be persistent until a successful ENA installation on a flash device.

Explanation    SAM found there is nowhere to backup the modified SAM table.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARN_DIGEST_FILE_MISSING Secure digest file is not found, cannot guarantee the integrity of memory installed files.

Explanation    SAM found digest file in NVRAM is missing, discard the memory packages.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARN_DIGEST_FILE_REINIT Secure digest file not present, SAM will re-init the secure digest file

Explanation    SAM found digest file missing from NVRAM, re-init the file.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARN_INIT_LOG_BACKUP_FILE SAM failed to initialize log backup file

Explanation    SAM failed to initalize log backup file in NVRAM, log entry not backed up

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARN_MEM_DIGEST SAM will remove backup files for memory digest tables and users MUST re-install the memory packages.

Explanation    SAM found MEM digest compare not successful, discard the memory packages.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARNING [chars]

Explanation    SAM general warning message.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARNING_INSECURE_FLASH_FILE [chars] is detected insecure, backup not restored

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SAM-6-WARNING_UNMATCH_DIGEST [chars] has been changed since last installed.

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

sIMP Messages

Error Message     
 
    
    
   

%SECURITY-sIMP-3-FATAL_ERR [chars]

Explanation    An internal software fatal error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-sIMP-4-ITI_WARN [chars] [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-sIMP-4-MSG_WARN [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

SPM Messages

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_CHAN_CONNECT Message chan connect ([chars]) failed

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_ENTRY_FIND Unable to find a delete entry for : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_INVALID_EVENT SPM server received invalid event : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_MALLOC Cannot allocate memory in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_MSG_GEN [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_OPEN_SECURE Error in opening secure file : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_PTHREAD_CREATE pthread create error : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_PTHREAD_INIT pthread attr init error : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_PTHREAD_SET pthread set detach state error : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_PULSE_CODE Unknown pulse code ([dec]) received

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_REG_HANDLER Could not register async handlers : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_REG_MSG Could not register SPM_MSGNO message handler for message id - [dec] : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_REPLY_FAIL Could not reply to client message : [chars]

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SPM-3-ERR_TOKEN_MISMATCH Delete file [chars] token mismatch

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

SSHD Messages

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_DETAILS [chars] [chars] [chars]

Explanation    Error description, client address, error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_ERRNO [chars] [chars]

Explanation    Error description, error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_GENERAL [chars]

Explanation    SSH encounterd some error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_MALLOC Cannot allocate memory in function [chars]()

Explanation    Internal error. System is out of memory - malloc failed.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_SYSDB_BIND Cannot bind to sysdb in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_SYSDB_DATALIST Cannot get datalist in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_SYSDB_DELETE sysdb_item_delete failed for tuple [chars] in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_SYSDB_PACK Cannot pack tuple in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-3-ERR_SYSDB_SET sysdb_item_set failed for tuple [chars] in function [chars]()

Explanation    Internal error.

Recommended Action    'Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.'

Error Message     
 
    
    
   

%SECURITY-SSHD-6-INFO_GENERAL [chars]

Explanation    The sshd encountered some problem in genric nature or plain information.

Recommended Action    'No action is required.'

TACACSD Messages

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-BAG_ENCODE_ERR Failed to encode bag information for '[chars]' - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-BAGS_UNREG_ERR Failed to unregister bags - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-DEBUG_ERROR [chars]: [chars]

Explanation    Error encountered in debug module.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-EDM_INIT_ERR Failed to register EDM - [chars]

Explanation    Failed to start the EDM.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_ATTACH_SOCK Unable to attach an event handler for socket [dec] - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_CONFIG_GLOBAL Error while setting or unsetting TACACS+ [chars] configuration - [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_CONFIG_SERVER Error while setting or unsetting [chars] in a server entry - [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_CREATE_SERVER_ENTRY Cannot create a TACACS+ server entry - [chars]

Explanation    Error occured while creating TACACS+ server entry.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_CREATE_SGSERVER Unable to add the server '[chars]' to group '[chars]' - [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_CREATESG Unable to create the server group '[chars]' - [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_DELETE_SGSERVER Unable to delete the server '[chars]' from group '[chars]' - [chars]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_DELETESG Unable to delete the server group '[chars]' - [chars]

Explanation    A configuration error has occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-ERR_SYSDBBIND Failed to bind to SysDB for path [chars] after [dec] retries

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-MEMORY Failed to allocate [unsigned int] bytes while [chars]

Explanation    tacacsd has failed to allocate the required amount of memory

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-MSG_ERROR [chars]: [chars]

Explanation    Error encountered while handling messages received by tacacsd.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-MSG_SIZE_ERR [chars]: size [dec] - [chars]

Explanation    A message with illegal size was received or to be sent.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-PARAMETER [chars]

Explanation    An invalid argument was passed to either the tacacsd or one of its funtions.

Recommended Action    If the message recurs, copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-PROBE_THREAD_CREATE_FAILED Unable to create thread to probe status of TACACS+ server [chars]/[dec]

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-SETPRIO_FAILED Failed to change server priority - [chars]

Explanation    Attempt to change priority failed.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-SHUTDOWN_ERROR [chars]: [chars]

Explanation    TACACS+ process failed to shutdown properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-3-STARTUP_ERROR [chars]: [chars]

Explanation    TACACS+ process failed to startup properly.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-CERR_REGISTER [chars]: [chars]

Explanation    tacacsd failed to register error codes.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-IFHANDLE_NULL WARNING: Cannot obtain handle for the interface [chars]: [chars]

Explanation    Error encountered while obtaining handle for the interface specified as the source interface.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-NO_IP_ADDRESS WARNING: No IP address has been configured for [chars]

Explanation    There is no IP address configured for the specified interface.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-NOSUCH_INTF WARNING: Specified source interface [chars] is not present: [chars]

Explanation    The interface specified as source interface is not present.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-SRCINTF_NOTUP WARNING: Specified source interface [chars] is not UP

Explanation    The interface specified as source interface is not UP.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-4-TACACS_NOSERV Warning: Server [chars] is not configured

Explanation    An internal software error occurred.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-6-NO_CMD No valid command provided for [chars]

Explanation    An internal software error occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-6-NULL_REQ Encountered a NULL request pointer while [chars]

Explanation    An internal software error occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-6-SERVER_DOWN TACACS+ server [chars]/[dec] is DOWN - [chars]

Explanation    TACACS+ server is unreachable or down.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-6-TIMEOUT_IGNORED A time out event has been ignored for context key [chars] (session [hex])

Explanation    An internal software error occured.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-TACACSD-7-GENERIC_ERROR [chars]: [chars]

Explanation    Error message for internal debugging purposes.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

VFW Messages

Error Message     
 
    
    
   

%SECURITY-VFW-3-FAA_FA_CB Error processing service failure action change: [chars]

Explanation    An error occurred in FAA or associated services whilst it was attempting to process the creation, update, or removal of default failure action configuration for a Virtual Firewall. More information on the course of the failure is contained in the message.

Recommended Action    If the error message indicated that a lack of resource was to blame for this error, make more resource available on the indicated node, then restart the rspp_ma process on this node using the 'process restart' command. Otherwise, roll back the configuration change, wait 10 seconds, then re-apply the configuration. If the error is still seen, restart the RSPP MA process on the node indicated using the 'process restart' command.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FMI_NETIO_DROPPED_PACKETS Packets have been dropped in the FMI base capsulation, but no error counts could be updated ([chars]).

Explanation    An error has occured during packet handling in the FMI base capsulation, and no error counters can be updated. If errors are seen for an extended period then it can be assumed that no packets can be forwarded through FMI interfaces. This is likely to be a symptom of a problem in the Packet Forwarding Infrastructure - earlier error messages might indicate the root cause of the problem.

Recommended Action    If the errors stop after a couple of minutes while traffic is still flowing through the FMI then it can be assumed that the problem has resolved itself. If the problem continues, then unconfiguring and reconfiguring the FMI interfaces could fix the issue.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_AVL_DELETE_FAILED The Firewall Controller failed to remove interface [chars] (firewall [chars]) from its database

Explanation    A call into the IOS-XR AVL tree library failed. This may result in the firewall controller unexpectedly restarting after this message is seen.

Recommended Action    If the process unexpectedly restarts, this will clear the problem; otherwise no further action is necessary to recover. In either case, please copy the message exactly as it appears on the console or in the system log, along with any subsequent messages relating to process restart and the information detailed below, and call your Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_DB_CREATE_FAIL The Firewall Controller failed to create an entry for [chars] [chars]%s[chars] in the [chars] database

Explanation    The Firewall Controller has been informed of the existence of a new interface or firewall, but attempts to create an entry for it in the relevant database have failed. The most likely cause of this problem is a lack of memory. This will have left the system in an inconsistent state.

Recommended Action    Try to add memory or free up some by removing configuration. Restart the Firewall Controller process using the 'prcoess restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_FWS_CFG_UPDATE_FAIL The Firewall Controller failed to update configuration following [chars] of [chars] [chars]%s[chars]: [chars]

Explanation    The Firewall Controller has been informed of an interface/firewall create/delete by the firewall application but has failed to update its configuration. This will have left the system in an inconsistent state.

Recommended Action    Restart the Firewall Controller process using the 'process restart' mechanism, the firewall controller should resynchronise.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_FWS_FW_NOTFOUND The Firewall Controller failed to find firewall with id [unsigned int] in the firewall database

Explanation    The Firewall Controller has been told to update firewall information as a result of a firewall state change but has been unable to find the firewall in the firewall database. This indicates that the system is in an inconsistent state.

Recommended Action    Restart the Firewall Controller process using the 'process restart' mechanism, the firewall controller should resynchronise

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_INIT Firewall controller initialisation failed: [chars]: [chars]

Explanation    A failure occurred during the process startup of the firewall controller. This is most likely caused by a failure of some piece of infrastructure used by the firewall controller. The error message may give an indication of the root cause of the failure.

Recommended Action    The process will be restarted by the System Manager - no further action is necessary. If the problem occurs repeatedly, copy the error message and gather the other necessary information, and call you Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_INTF_FW_NOTFOUND The Firewall Controller could not find the firewall with ID [unsigned int] for interface [chars] when removing diversions

Explanation    The Firewall Controller has been informed of diversion removal for an interface, but found that the relevant firewall does not exist in the database. This error message indicates an inconsistency in the firewall database, which will cause the Firewall Controller process to restart.

Recommended Action    The Firewall Controller will restart, no user intervention is required. If the problem persists, contact your Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_SPU_CLEAR_FAIL The Firewall Controller failed to write an invalid entry to the the SPU context table on firewall delete

Explanation    The Firewall Controller's attempt to set an invalid entry in the SPU context table following a firewall delete has failed. This will have left the system in an inconsistent state.

Recommended Action    Restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_SSC_UPDATE_FAIL The Firewall Controller failed to update the Service Director when [chars] [chars] [chars]%s[chars]: [chars]

Explanation    The Firewall Controller's attempt to inform the Service Director of a change to either interface/firewall state has failed. This will have left the system in an inconsistent state.

Recommended Action    Restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWC_WAVL_DELETE_FAILED The Firewall Controller failed to remove firewall [chars] from its database

Explanation    A call into the IOS-XR WAVL tree library failed. This may result in the firewall controller unexpectedly restarting after this message is seen.

Recommended Action    If the process unexpectedly restarts, this will clear the problem; otherwise no further action is necessary to recover. In either case, please copy the message exactly as it appears on the console or in the system log, along with any subsequent messages relating to process restart and the information detailed below, and call your Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-3-FWM_INIT Firewall manager initialisation failed: [chars]: [chars]

Explanation    A failure occurred during the process startup of the firewall controller. This is most likely caused by a failure of some piece of infrastructure used by the firewall controller. The error message may give an indication of the root cause of the failure.

Recommended Action    The process will be restarted by the System Manager - no further action is necessary. If the problem occurs repeatedly, copy the error message and gather the other necessary information, and call you Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-4-EXITING [chars] failed to notify SysMgr of intention to exit: [chars]

Explanation    A failure occurred during shutdown of the specified process, and it was unable to notify the System Manager that it was about to exit. In rare cases, this could result in a failure by the System Manager to restart the process when it ought to do so.

Recommended Action    If the process ought to be running and is not, then attempt to restart it using the 'process restart' command. If this fails, deconfigure the process and re-enter the configuration.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_CONFIG_ERR Firewall Controller failed to process configuration change for firewall [chars]: failed to [chars] default-interface: [chars]

Explanation    An error occurred in the firewall controller whilst it was attempting to handle the default-interface configuration for the firewall specified in the message.

Recommended Action    Roll back the configuration change, wait 10 seconds, then re-apply the configuration. If the error is still seen, restart the firewall controller process using the 'process restart' command.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_EVENT_CONN_ERROR_FAIL Firewall controller failed to reset '[chars]' connection: [chars]

Explanation    After detecting an error with the connection to the specified service, the Firewall controller failed to reset that connection. This is an internal error. It requires a restart of the process for recovery.

Recommended Action    Copy the error message exactly as it appears on the console or in the system log, call your Cisco technical support representative and provide the representative with the gathered information.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_FMI_IFH_MISMATCH The Firewall Controller saw an interface handle mismatch when updating FMI information for interface [chars] (firewall [chars]) in its database

Explanation    The Firewall Controller has been informed of the creation of a Firewall Management Interface, but found that the interface handle for the interface differs from the handle in its database. This error message indicates an inconsistency in the firewall database, which may result in unexpected behaviour.

Recommended Action    If this message is seen and the state of firewalls on the router does not match the expected state as a result of configuration, restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_FMI_INFO_UPDATE The Firewall Controller [chars] FMI info already present when updating interface [chars] (firewall [chars]) in its database

Explanation    The Firewall Controller has been informed of the creation of a Firewall Management Interface that already exists, or has received an update about a Firewall Management Interface that does not exist. This error message indicates an inconsistency in the firewall database, which may result in unexpected behaviour.

Recommended Action    If this message is seen and the state of firewalls on the router does not match the expected state as a result of configuration, restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_FW_APP_BAD_VERSION Firewall Controller received a message from the Firewall Application with an unexpected version: expected version [unsigned int], received version [unsigned int]

Explanation    The Firewall Controller received a message from the Firewall Application with an unexpected version. This could indicate a mismatch in software versions between IOS-XR and the Firewall Application as a result of a software upgrade.

Recommended Action    Ensure that compatible versions of the IOS-XR and Firewall Application software are installed. The problem may be cleared by rolling back any recent software install operations.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_FW_APP_RECV_FAILED Failed to process a received message: [chars]

Explanation    The Firewall Controller encountered an error while processing a message received from the Firewall Application, for example a corrupt message. As a result, some virtual firewalls may not operate correctly.

Recommended Action    If some firewalls are not operating correctly after seeing this message, the system can be recovered by restarting the 'fwc' process using the 'process restart' command. If the error occurs repeatedly, contact your Cisco technical support representative.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_INTF_DB_INFO_ALREADY_SET The Firewall Controller found [chars] already present when updating interface [chars] (firewall [chars]) in its database

Explanation    If the interface ID is already present, the Firewall Controller has been informed of a Firewall Application interface create, but found that its database already contains the Firewall Application interface ID. If diversions were already present, the Firewall Controller has been informed of diversion creation for an interface, but found that its database already contains diversion information for the interface. This error message indicates an inconsistency in the firewall database, which may result in unexpected behaviour.

Recommended Action    If this message is seen and the state of firewalls on the router does not match the expected state as a result of configuration, restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_INTF_IFH_MISMATCH The Firewall Controller saw an interface handle mismatch when updating diversions for interface [chars] (firewall [chars]) in its database

Explanation    The Firewall Controller has been informed of diversion creation for an interface, but found that the interface handle for the diversion differs from the handle in its database. This error message indicates an inconsistency in the firewall database, which may result in unexpected behaviour.

Recommended Action    If this message is seen and the state of firewalls on the router does not match the expected state as a result of configuration, restart the Firewall Controller process using the 'process restart' mechanism.

Error Message     
 
    
    
   

%SECURITY-VFW-4-FWC_REMOVE_ATTACHMENT The Firewall Controller failed to remove an attachment for an interface in firewall [chars]

Explanation    The Firewall Controller has tried to remove an attachment as a result of a notification from RSPP, but has failed to do so. This may result in inconsistent data in the firewall controller and unexpected behaviour.

Recommended Action    If the firewall controller behaves unexpectedly, the problem may be resolved by restarting it using the 'process restart' command.

Error Message     
 
    
    
   

%SECURITY-VFW-4-LOST_EVENT Failed to receive an event: [chars]

Explanation    The process failed to receive an event from the Operating System. As a result, some aspects of the process may fail to function correctly.

Recommended Action    If erroneous behaviour is seen, restart the process using the 'process restart' command.

Error Message     
 
    
    
   

%SECURITY-VFW-6-FMI_CONFLICTING_CONFIG Two Firewall Management interfaces of the same type have been configured on the same firewall ([chars]).

Explanation    Two Firewall Management interfaces of the same type (follow-active or follow-standby) have been configured on the specified firewall. Both of the interfaces will be brought down until the conflicting configuration is removed.

Recommended Action    Remove the conflicting configuration from one of the Firewall Management interfaces.