UACL_AUTHORIZATION (101)


The event is generated when a Universal Agent component was denied access by a Universal Access Control List entry.

The conditions under which the event is generated include:

A Broker or Server component finds that a client request matched a UACL entry that denies access to the protected resource.

UACL_AUTHORIZATION Event Header

Field Name

Description

eventCategory

Security

eventSeverity

Major

eventTopic

UACL

eventType

101

(Source Fields)

Universal Agent component denying access based on the UACL entry.

(Reporter Fields)


UACL_AUTHORIZATION Event Body

Field Name

Notes

Description

clientCertIssuer

1, 2, 5

Issuer field of the digital certificate provided by the client.

clientCertSerialNo

1, 2, 5

Serial number of the digital certificate provided by the client.

clientCertSubject

1, 2, 5

Subject field of the digital certificate provided by the client.

clientIpAddr

1

IP address from which the client's socket connection was established.

clientUserId

1, 3, 4, 5

User identifier of the client.

clientWorkId

1, 5

Work identifier of the client.

uaclEntryNumber


Entry number of the UACL entry that denied access to the resource.

uaclEntryRule


Rule of the UACL entry that denied access to the resource.

uaclEntryType


Type of UACL entry that denied access to the resource.

uaclResource


UACL resource name to which access was denied.

Notes

  1. Client fields identify the client that requested access to the UACL protected resource.
  2. Digital certificate information is only provided if the client provided a digital certificate.
  3. A case-dependent value.
  4. A case-dependent value, but for pre-3.2 clients, the value is always considered case sensitive.
  5. The field is not provided when the uaclEntryType is ubroker_access.