[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessAdvancedAuthentication][Start new request.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmResourceManager::ProcessAdvancedAuthResource][Calling SM_WAF_HTTP_PLUGIN->ProcessAdvancedAuthResource.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::ProcessAdvancedAuthResource][Resolved HTTP_HOST: 'sps.lab.local'.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][][Entered CSmHttpPlugin::ResolveFQServerName sHost: ][sps.lab.local]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::ResolveClientIp][Resolved Client IP address '192.168.100.14'.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmAdvancedAuthCore::parseTargetUrl][Resolved cookie domain '.lab.local'.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmResourceManager::ProcessAdvancedAuthResource][SM_WAF_HTTP_PLUGIN->ProcessAdvancedAuthResource returned SmSuccess.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmResourceManager::ProcessAdvancedAuthResource][Calling SM_WAF_AG_PLUGIN->ProcessAdvancedAuthResource.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmResourceManager::ProcessAdvancedAuthResource][SM_WAF_AG_PLUGIN->ProcessAdvancedAuthResource returned SmNoAction.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][IsResourceProtected][Resource is protected from cache.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][Calling SM_WAF_HTTP_PLUGIN->ProcessResponses.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::ProcessResponses][Processing IsProtected responses.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][SM_WAF_HTTP_PLUGIN->ProcessResponses returned SmSuccess.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][Calling SM_WAF_AG_PLUGIN->ProcessResponses.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][SM_WAF_AG_PLUGIN->ProcessResponses returned SmNoAction.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmCredentialManager::GatherAdvancedAuthCredentials][Calling SM_WAF_HTTP_PLUGIN->ProcessAdvancedAuthCredentials.]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmNtc::getCredentials][user-agent received Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/89.0.4389.114 Safari/537.36 Edg/89.0.774.68]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmNtc::getCredentials][Request for  SSPI NTLM using NTLM Map]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmNtc::getCredentialsNTLMMap][  SMNTLMCOOKIE  Cookie ID 16994fea-7f1a0249-7b9250e1-3d026a88-7b363948-760          ]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmNtc::getCredentialsNTLMMap][ SMNTLMCOOKIE TYPE 3 ]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][][CSmSSPIServer::processNTLMRequest][Calling AcceptSecurityContext with handle: (lower) 1461524721376 (upper) 2142396205232]

[06/27/2023][22:24:12][22:24:12.543][1520][6280][][CSmSSPIServer::processNTLMRequest][Handle is valid]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][][CSmSSPIServer::processNTLMRequest][AcceptSecurityContext returned : 0x00000000]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][][CSmSSPIServer::processNTLMRequest][Returned from AcceptSecurityContext with handle: (lower) 1461524721376]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][][CSmSSPIServer::processNTLMRequest][Returned from AcceptSecurityContext with handle: (upper) 2142396205232]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][SmNtc::getCredentialsNTLMMap][NTLM Authentication request is successfully completed for user SNOW\testuser.]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][HandleCredCollectorReturn][POST preservation, handling return from credential collector.]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][HandleCredCollectorReturn][http response http://sps.lab.local/html/]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmCredentialManager::GatherAdvancedAuthCredentials][SM_WAF_HTTP_PLUGIN->ProcessAdvancedAuthCredentials returned SmSuccess.]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmCredentialManager::GatherAdvancedAuthCredentials][Calling SM_WAF_AG_PLUGIN->ProcessAdvancedAuthCredentials.]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmCredentialManager::GatherAdvancedAuthCredentials][SM_WAF_AG_PLUGIN->ProcessAdvancedAuthCredentials returned SmNoAction.]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][][Sm_AgentApi_Login][Enter function Sm_AgentApi_Login]

[06/27/2023][22:24:12][22:24:12.558][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][Sm_AgentApi_Login][]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][][Sm_AgentApi_Login][Leave function Sm_AgentApi_Login]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][AuthenticateUser][User 'SNOW\testuser' is authenticated by Policy Server.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][][Sm_AgentApi_FreeAttributes][Enter function Sm_AgentApi_FreeAttributes]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][Calling SM_WAF_HTTP_PLUGIN->ProcessResponses.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::ProcessResponses][Processing Authentication responses.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::GenerateNTCChallengeDoneCookie][Generating SMCHALLENGE=NTC_CHALLENGE_DONE set-cookie response header.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][SM_WAF_HTTP_PLUGIN->ProcessResponses returned SmSuccess.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][Calling SM_WAF_AG_PLUGIN->ProcessResponses.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessResponses][SM_WAF_AG_PLUGIN->ProcessResponses returned SmNoAction.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmSessionManager::CreateSession][Calling SM_WAF_HTTP_PLUGIN->CreateSession.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmHttpPlugin::CreateSession][Generated SMSESSION cookie.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmSessionManager::CreateSession][SM_WAF_HTTP_PLUGIN->CreateSession returned SmSuccess.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmSessionManager::CreateSession][Calling SM_WAF_AG_PLUGIN->CreateSession.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][CSmSessionManager::CreateSession][SM_WAF_AG_PLUGIN->CreateSession returned SmNoAction.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProcessAdvancedAuthentication][End new request.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][][ReportHealthData][Accumulating HealthMonitorCtxt.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][Tomcat5SerializedAgentData::doResponse][HTTP Status Code = 302]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProxyValve::invoke][Exit status returned from the agent.]

[06/27/2023][22:24:12][22:24:12.590][1520][6280][17e714fa-bca2668d-6bfb0b33-394cec1e-b56da574-d740][ProxyValve::invoke][Leaving the agent.]

AuthAccept SM2 [27/Jun/2023:22:24:12 -0700] "192.168.100.14 CN=Snow White,OU=TEST,DC=SNOW,DC=MT" "agent.sps GET /html/" [idletime=3600;maxtime=7200;authlevel=5;] [0]  [] [] []

AzAccept SM2 [27/Jun/2023:22:24:12 -0700] "192.168.100.14 CN=Snow White,OU=TEST,DC=SNOW,DC=MT" "agent.sps GET /html/" [17eae8ea-a74cb58e-5bedb1c6-1528200c-06462e44-3cba] [0]  [] [] []