Windows Security Log Events



(LOGbinder for SharePoint)
(LOGbinder for SQL Server)
(LOGbinder for Exchange)
(MS Sysinternals Sysmon)
Windows Audit Categories:

Subcategories:

Windows Versions:

Required when sub-category selected.
Category: Logon/Logoff
Subcategory: IPsec Main Mode
Windows 4646 IKE DoS-prevention mode started
Windows 4650 An IPsec Main Mode security association was established
Windows 4651 An IPsec Main Mode security association was established
Windows 4652 An IPsec Main Mode negotiation failed
Windows 4653 An IPsec Main Mode negotiation failed
Windows 4655 An IPsec Main Mode security association ended
Windows 4976 During Main Mode negotiation, IPsec received an invalid negotiation packet.
Windows 4979 IPsec Main Mode and Extended Mode security associations were established.
Windows 4980 IPsec Main Mode and Extended Mode security associations were established
Windows 4981 IPsec Main Mode and Extended Mode security associations were established
Windows 4982 IPsec Main Mode and Extended Mode security associations were established
Windows 4983 An IPsec Extended Mode negotiation failed
Windows 4984 An IPsec Extended Mode negotiation failed
Windows 5453 An IPsec negotiation with a remote computer failed because the IKE and AuthIP IPsec Keying Modules (IKEEXT) service is not started

Stay up-to-date on the Latest in Cybersecurity
Sign up for the Ultimate IT Security newsletter to hear about the latest webinars, patches, CVEs, attacks, and more.
Work Email:

 

Upcoming Webinars
Additional Resources