Edit

Endpoint: Security Validation and Authentication Failures

  • Article

Counter name: Security Validation and Authentication Failures

Description

This counter is incremented whenever a message is rejected due to a security problem not covered by the "Security Calls Not Authorized" counter. Such problems include:

  • Client token cannot be read from the message.

  • Client token has failed authentication (bad password).

  • Signature verification has failed (the message has been tampered).

  • The message is a duplicate from a previous one, which can happen during a replay attack.

  • A decryption failure has occurred.

  • Some required elements (missing timestamp or encrypted data block) are missing from the message.

  • Errors have occurred during TLSNEGO/SPNEGO handshake.