Troubleshooting | Breached Password Protection Event Logging
Specops Breached Password Protection components log their operations to the Applications and Services Logs.
Sentinel Service events
| Event Type | ID | Description |
|---|
| Information | 1001 | Starting Service. |
| Information | 1002 | Service Started. |
| Error | 1003 | Service failed to start. |
| Information | 1004 | Service is stopping. |
| Information | 1005 | Service was stopped. |
| Information | 1007 | Arbiter URLs have loaded. |
| Warning | 1008 | Service configuration could not be found. This means that password Breached Password Protection validation, if configured in a group policy, will not be performed. |
| Warning | 1009 | Failed to load arbiter URLs. |
| Information | 1010 | Password set for user was breached, but user does not need to change it now. |
| Information | 1011 | Password set for user was breached, the user must change their password at next logon. |
| Warning | 1012 | The password set for the user was breached. Attempt to enforce password change at next logon failed. |
| Information | 1013 | Password set for the user was not breached. |
| Information | 1015 | An error occurred on the Arbiter. |
| Warning | 1018 | Failed to delete queue file. |
| Warning | 1021 | Failed to read file from queue. |
| Warning | 1022 | Failed to deserialize file from queue. |
| Warning | 1023 | Failed to unprotect file from queue. |
| Warning | 1024 | Failed to get decision from Arbiter. |
Specops Arbiter events
| Event Type | ID | Description |
|---|
| Information | 2001 | Service starting. |
| Information | 2002 | Service started. |
| Error | 2003 | Service failed to start |
| Information | 2004 | Service stopping. |
| Information | 2005 | Service stopped. |
| Information | 2006 | Custom control message sent to service. |
| Warning | 2008 | An email notification request was not sent for the user. The SPP Breached Password Protection policy settings for the GPO lacks a subject for the email notification. |
| Warning | 2009 | An email notification request was not sent for the user. The SPP Breached Password Protection policy settings for the GPO lacks body text for the email notification. |
| Warning | 2010 | A text message notification request was not sent for the user. The SPP Breached Password Protection policy settings for the GPO lacks text message notification text. |
| Error | 2022 | An email notification failed to send for this email address. The server returned an error code and message. |
| Error | 2014 | Request to the Breached Password Protection API has failed. |
| Error | 2047 | Failed to start WebApiHost. |
| Information | 2048 | WebApiHost starting. |
| Error | 2049 | Unhandled error in WebApiHost application. |
