UACL_AUTHORIZATION (101)
The event is generated when a Universal Agent component was denied access by a Universal Access Control List entry.
The conditions under which the event is generated include:
A Broker or Server component finds that a client request matched a UACL entry that denies access to the protected resource.
UACL_AUTHORIZATION Event Header
Field Name | Description |
---|---|
eventCategory | Security |
eventSeverity | Major |
eventTopic | UACL |
eventType | 101 |
(Source Fields) | Universal Agent component denying access based on the UACL entry. |
(Reporter Fields) |
UACL_AUTHORIZATION Event Body
Field Name | Notes | Description |
---|---|---|
clientCertIssuer | 1, 2, 5 | Issuer field of the digital certificate provided by the client. |
clientCertSerialNo | 1, 2, 5 | Serial number of the digital certificate provided by the client. |
clientCertSubject | 1, 2, 5 | Subject field of the digital certificate provided by the client. |
clientIpAddr | 1 | IP address from which the client's socket connection was established. |
clientUserId | 1, 3, 4, 5 | User identifier of the client. |
clientWorkId | 1, 5 | Work identifier of the client. |
uaclEntryNumber | Entry number of the UACL entry that denied access to the resource. | |
uaclEntryRule | Rule of the UACL entry that denied access to the resource. | |
uaclEntryType | Type of UACL entry that denied access to the resource. | |
uaclResource | UACL resource name to which access was denied. |
Notes
- Client fields identify the client that requested access to the UACL protected resource.
- Digital certificate information is only provided if the client provided a digital certificate.
- A case-dependent value.
- A case-dependent value, but for pre-3.2 clients, the value is always considered case sensitive.
- The field is not provided when the uaclEntryType is ubroker_access.