Types of user events – HP Identity Driven Manager Software Series User Manual

B-6

IDM Technical Reference
Types of User Events

Types of User Events

The USER_FAILED_LOGIN event happens whenever RADIUS sends IDM a
message of an unsuccessful login. This can have various sources, which you
can review in the Event Details. It can be either because IAS didn’t let the user
log in (bad username, password, etc.) or because IDM rejected the login.

The IDM reasons for denied access that are currently defined include:

//Port is missing or invalid port

public static int INVALID_PORT = 1;
//Switch information is missing or invalid switch ip address

public static int INVALID_SWITCH_IP = 2;
//User name is missing or invalid user name

public static int INVALID_USER_NAME = 3;
//Unknown Realm for DM

public static int REALM_NOT_FOUND = 4;
//Realm config data is not found in DM cache

public static int REALM_CACHE_NOT_FOUND = 5;
//Access policy group is not found for a user

public static int APG_NOT_FOUND = 6;
//An access policy group doesn't have any policy rules

public static int NO_RULES_IN_APG = 7;
//Time constraint is not satisfied

public static int TIME_DOES_NOT_PERMIT = 8;
//Location constraint is not satisfied

public static int LOCATION_DOES_NOT_PERMIT = 9;
//Unknown user to IDM DM

public static int UNKNOWN_USER = 10;
//No rules in APG can allow user to login to network

public static int NO_RULES_MATCH = 11;
//Reject profile encountered

public static int REJECT_PROFILE = 12;
//Unknown reason

public static int UNKNOWN_REASON = 20;

For additional information, refer to the MS IAS documentation to see what
the possible values are for user logins that are rejected or failed by RADIUS