Symantec Endpoint Encryption Drive Encryption - Windows Event Log IDs
search cancel

Symantec Endpoint Encryption Drive Encryption - Windows Event Log IDs

book

Article ID: 161173

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

This article provides details about the various Windows Event Log IDs that are generated for Drive Encryption.

Resolution

Windows Event Logs for Drive Encryption are enabled by default. You do not need to create a registry key to enable event logs. Event logs are always logged with an appropriate severity. Event logs reside on the local client computer. You can view these event logs through the Windows Event Viewer. 

For more information on enabling the Symantec Endpoint Encryption Management Server, Drive Encryption, and Removable Media Encryption logs, including information on the registry keys and logging levels, see the knowledge base article: Enabling Logging and Debug Logging in Symantec Endpoint Encryption v11.
 

Drive Encryption event log IDs

This section lists the various Drive Encryption client event log IDs with their severity and message

  • Message ID: 3000
    Severity: Error
    Message: An unrecognized error was encountered: <error number>.
     
  • Message ID: 3001
    Severity: Error
    Message: Failed to register client administrator '<client administrator name>'. Error <error number>.
     
  • Message ID: 3002
    Severity: Informational
    Message: Registered client administrator '<client administrator name>'.
     
  • Message ID: 3003
    Severity: Error
    Message: to unregister client administrator <client administrator name>. Error <error number>.
     
  • Message ID: 3004
    Severity: Informational
    Message: Unregistered client administrator <client administrator name>.
     
  • Message ID: 3005
    Severity: Error
    Message: Failed to register user '<username>'. Error <error number>.
     
  • Message ID: 3006
    Severity: Informational
    Message: Registered user '<username>'.
     
  • Message ID: 3007
    Severity: Error
    Message: Failed to unregister auto-encrypt user. Error <error number>.
     
  • Message ID: 3008
    Severity: Informational
    Message: Unregistered auto-encrypt user.
     
  • Message ID: 3009
    Severity: Error
    Message: Failed to update credentials for client administrator '<client administrator name>'. Error <error number>.
     
  • Message ID: 3010
    Severity: Informational
    Message: Updated credentials for client administrator '<client administrator name>'.
     
  • Message ID: 3011
    Severity: Informational
    Message: Failed to register password user <username> due to policy.
     
  • Message ID: 3012
    Severity: Informational
    Message: Failed to register token user <username> due to policy.
     
  • Message ID: 3013
    Severity: Informational
    Message: Failed to register user <username> due to user limit exceeded.
     
  • Message ID: 3020
    Severity: Error
    Message: Drive Encryption service failed to generate report. Error: <error number>.
     
  • Message ID: 3021
    Severity: Error
    Message: <number of failures> failure(s) recorded.
     
  • Message ID: 3022
    Severity: Error
    Message: Uninstall of Drive Encryption attempted with volume(s) still encrypted.
     
  • Message ID: 3023
    Severity: Error
    Message: System locked due to failure to communicate with the server.
     
  • Message ID: 3030
    Severity: Informational
    Message: System recovered from lockout by client administrator authentication.
     
  • Message ID: 3031
    Severity: Informational
    Message: System recovered from lockout by Help Desk authentication.
     
  • Message ID: 3032
    Severity: Informational
    Message: System recovered from lockout by Server Checkin.
     
  • Message ID: 3040
    Severity: Informational
    Message: Encryption started on boot drive by the Drive Encryption service.
     
  • Message ID: 3041
    Severity: Informational
    Message: Encryption started on all volumes by the Drive Encryption service.
     
  • Message ID: 3042
    Severity: Error
    Message: Failed to start encryption. Error: <error number>.
     
  • Message ID: 3043
    Severity: Informational
    Message: Decryption started on boot drive by the Drive Encryption service.
     
  • Message ID: 3044
    Severity: Informational
    Message: Decryption started on all volumes by the Drive Encryption service.
     
  • Message ID: 3045
    Severity: Error
    Message: Failed to start encryption. Error: <error number>.
     
  • Message ID: 3070
    Severity: Informational
    Message: Drive Encryption received a decrypt command from the Management Server.
     
  • Message ID: 3071
    Severity: Informational
    Message: Drive Encryption received an encrypt command from the Management Server.
     
  • Message ID: 3101
    Severity: Informational
    Message: Encryption started on volume <username@computer_name>.
     
  • Message ID: 3102
    Severity: Informational
    Message: Encryption paused on volume <username@computer_name>.
     
  • Message ID: 3103
    Severity: Informational
    Message: Encryption resumed on volume <username@computer_name>.
     
  • Message ID: 3104
    Severity: Informational
    Message: Encryption completed on volume <username@computer_name>.
     
  • Message ID: 3151
    Severity: Informational
    Message: Decryption started on volume <username@computer_name>.
     
  • Message ID: 3152
    Severity: Informational
    Message: Decryption paused on volume <username@computer_name>.
     
  • Message ID: 3153
    Severity: Informational
    Message: Decryption resumed on volume <username@computer_name>.
     
  • Message ID: 3154
    Severity: Informational
    Message: Decryption completed on volume <username@computer_name>.
     
  • Message ID: 3155
    Severity: Error
    Message: Encryption paused due to bad sector on disk.
     
  • Message ID: 3156
    Severity: Error
    Message: Encryption paused. <number of bad sectors> bad sectors found on disk.
     
  • Message ID: 3157
    Severity: Error
    Message: Decryption paused due to bad sector on disk.
     
  • Message ID: 3158
    Severity: Error
    Message: Decryption paused. <number of bad sectors> bad sectors found on disk.
     
  • Message ID: 3159
    Severity:Warning
    Message:Mismatch detected in partition to range mappings for eDrive. The system will be encrypted using software encryption.
     
  • Message ID: 3160
    Severity:Warning
    Message:Your disk or system is not supported for hardware encryption. The disk or system will be encrypted using software encryption.
     
  • Message ID: 3161
    Severity:Warning
    Message:Disk is not an OPAL disk. The system will be encrypted using software encryption.
     
  • Message ID: 3162
    Severity:Error
    Message: Applications are not allowed to partition the disk after Drive Encryption installation.
     
  • Message ID: 3163
    Severity:Informational
    Message: UEFI preboot supports the ATA Pass-Through protocol.
     
  • Message ID: 3164
    Severity:Informational
    Message: UEFI preboot does not support the ATA Pass-Through protocol.
     
  • Message ID: 3201
    Severity:Informational
    Message: User has used Self-Recovery to unlock the disk.
     
  • Message ID: 3202
    Severity:Informational
    Message: User cannot change the password when the system is not connected to the domain. Therefore, allowing the user to access user profile.
     
  • Message ID: 3203
    Severity:Informational
    Message: User has changed the password successfully.
     

 

 

 

Powered by Wolken Software