Symantec Endpoint Encryption for BitLocker - Windows Event Log IDs
search cancel

Symantec Endpoint Encryption for BitLocker - Windows Event Log IDs

book

Article ID: 150211

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

 

Resolution

This article provides details about the various Windows Event Log IDs that are generated for Symantec Endpoint Encryption for BitLocker.

Windows Event Logs for Symantec Endpoint Encryption for BitLocker are enabled by default. You do not need to create a registry key to enable event logs. Event logs reside on the local client computer. You can view these event logs through the Windows Event Viewer. 

For more information about the logs for Symantec Endpoint Encryption for BitLocker, Symantec Endpoint Encryption Management Server, Drive Encryption, and Removable Media Encryption, including information on enabling the logs, creating registry keys, and viewing logging levels, see the following knowledge base article:

Enabling Logging and Debug Logging in Symantec Endpoint Encryption v11.

Symantec Endpoint Encryption for BitLocker event log IDs

This section lists the Symantec Endpoint Encryption for BitLocker client event log IDs with their severity and message. 

  • Message ID: 5101
    Severity: Informational
    Message: Encryption started on volume <drive letter>.
     
  • Message ID: 5151
    Severity: Informational
    Message: Decryption started on volume <drive letter>.
     
  • Message ID: 5201
    Severity: Informational
    Message: TPM is not available on the system.
     
  • Message ID: 5202
    Severity: Informational
    Message: TPM is not enabled on the system.
     
  • Message ID: 5204
    Severity: Error
    Message: TPM check has failed, unable to enforce the SEE for BitLocker policy.
     
  • Message ID: 5207
    Severity: Error
    Message: SEE for BitLocker prerequisites are not met for this system.
     
  • Message ID: 5210
    Severity: Informational
    Message: PIN configuration by user <domain\username> or <username> is successful.
     
  • Message ID: 5212
    Severity: Informational
    Message: Password configuration by user <domain\username> or <username> is successful.
     
  • Message ID: 5220
    Severity: Error 
    Message: SEE for BitLocker - Authentication policy information is not available.
     
  • Message ID: 5221
    Severity: Error 
    Message: SEE for BitLocker - Authentication policy is not compliant.
     
  • Message ID: 5222
    Severity: Error 
    Message: SEE for BitLocker - Encryption policy information is not available.
     
  • Message ID: 5223
    Severity: Error 
    Message: SEE for BitLocker - Encryption policy is not compliant.
     
  • Message ID: 5230
    Severity: Informational
    Message: BitLocker Recovery Key is recycled successfully for volume <drive letter>.