Skip to main content
Version: 8.2405.x.x RR

AUTH

The next table lists all error codes related to the SessionManagementFilter and the SecurityRoleFilter.

MajorMinorMessageDetails
AUTH0001The cleanup of the AuthFilterBase failed.Contact support.
0002No session available.Check the logs for further information. Is your session management engine configured correctly? You have to configure either a dynamic session management (with the SessionManagementFilter) or a legacy one (in the servlet container).
0003Unhandled state.Contact support.
0004Too many transitions.The identification state of the request could not be determined. Check the logs for further information.
0005Received unknown status (session invalidated).nevisAuth sent an unknown authentification status. Check your nevisAuth configuration.
0006parsing ch.nevis.session.inactiveInterval failedParsing the inactiveInterval sent by nevisAuth failed. Check your nevisAuth configuration.
0007parsing ch.nevis.session.reauthInterval failedParsing the reauthInterval sent by nevisAuth failed. Check your nevisAuth configuration.
0008parsing <parameter name> failedParsing the value sent by nevisAuth for the parameter RecheckAuthentication failed. Check the configuration for the parameter RecheckAuthentication and for nevisAuth.
0010renegotiateAfterAuthentication: failedError during the renew identification process. Check the logs for further information.
0011expected peer certificate fingerprint=<...> not found.HINT: Set the init param CheckAlwaysClientCert of this IdentityCreationFilter or SecurityRoleFilter to "false".
0012wrong certificate fingerprint found, expected cert fingerprint=<...>, found fingerprint=<...>The client presented an invalid certificate.
0013requesting peer certificate failedRequesting the peer certificate failed during the SSL renegotiation. Check the logs for further information.
0014removeState failedRemoving the virtual session failed. Check the logs for further information.
0015found parent key='<...>' ownerName='<...>' but no parentKeyContact support.
0016not registered by parent key='<...>' ownerName='<...>'Contact support.
0017misconfiguration: registered parent key='<...>' ownerName='<...>' does not match parentKey='<...>'Contact support.
0018storeState failedStoring the state failed, due to a lack of memory.HINT: Consider increasing the value of the parameter StoreInterceptedRequest.MaxSize or setting the parameter StoreInterceptedRequest of this IdentityCreationFilter or SecurityRoleFilter to "false'".
0019removeSecRoles failedContact support.
0020attribute found with key='<...>' not of type SecurityRolesContact support.
0021no IdentityCreationState bound to the requestContact support.
0022attribute found with key='<...>' not of type IdentityCreationStateContact support.
0023No servlet name configured. check your configurationThe servlet name is missing, check your configuration.
0024servlet '<...>' not found. check your configurationThe servlet was referenced, but its configuration was not found. HINT: Make sure that the parameters AuthenticationServlet and LoginRendererServlet of the IdentityCreationFilter or SecurityRoleFilter refer to a servlet that is configured and available.
0025Probable XSS injection attack on nevis transfer mechanismThe request transfer was aborted, because a probable XSS injection attack was detected.
0026Cleanup of IdentityCreationFilter failedContact support.
0028caught SecurityException invalidating sessionID=<...>The IdentityCreationFilter could not handle the request because of a security exception. The session was invalidated. Check the logs for further information.
0030received unknown status='<...>' (session invalidated)The IdentityCreationFilter received an unknown session status from nevisAuth. The session was invalidated. Check your IdentityCreationFilter and your nevisAuth configurations.
0031received corrupted SecToken: changed userID,sessionIDThe user was already authenticated, and the new SecToken has a different user ID and/or session ID than the previous one.
0032received corrupted SecToken: missing attributesThe SecToken was incomplete. Either the user ID, the session ID, the realm or the entry ID were missing.
0033received corrupted SecToken: wrong realmThe realm of the SecToken did not match the one of the IdentityCreationFilter.
0034illegal: intercepted request uri='<...>' actual request uri='<...>', ignoring intercepted requestThe stored intercepted request was ignored, because its URI did not match the URI of the actual request. Check the logs for further information.
0035corrupted query: encoded='<...>' decoded='<...>'The stored request could not be decoded for the redirection (which involves a client certificate). Check the logs for further information.
0036cloning request failedThe IdentityCreationFilter could not store the intercepted request into the session. Contact support.
0037limitUserLogins failed for sessionID=<...>Limiting the number of authenticated sessions for a specific user failed. Check the logs for further information. Also note that this feature is deprecated. Refer to the Reference Guide for alternatives.
0038limitUserLogins failedLimiting the number of authenticated sessions per user failed. Check the logs for further information. Also note that this feature is deprecated. Refer to the Reference Guide for alternatives.
0039Cleanup of the SecurityRoleFilter failedContact support.
0040no valid authentication has been doneThe user must be authenticated before performing a step-up. Check the logs for further information. Also check your configuration.HINT: Check that an IdentityCreationFilter is mapped before the SecurityRoleFilter on the current path.
0041The SecurityRoleFilter could not handle the request.Check the logs for further information
0042received unknown status (session invalidated)The authentication failed because nevisAuth sent an unknown state. The session was invalidated. Check your nevisAuth configuration.
0043received no SecRolesThe SecurityRoleFilter did not receive any roles from nevisAuth. Check the logs for further information.
0044received none of the required SecRolesThe SecurityRoleFilter did not receive the expected roles from nevisAuth. Check the logs for further information.
0045no security roles bound to the requestThe request does not contain any security roles. HINT: The security roles should be provided by the IdentityCreationFilter. Check if there is a IdentityCreationFilter mapped before the SecurityRoleFilter on the current path.
0046attribute found with key='<...>' not of type SecurityRolesContact support.
0047received a SessionState which was not for meContact support.
0048received a SessionState with an unexpected classContact support.
0052found a VirtualSession (id=<...>) with an invalid response-session typeContact support.
0053found a VirtualSession (id=<...>) with a removed response-sessionContact support.
0054found a VirtualSession (id=<...>) with an existing response-sessionContact support.
0055missing at least one required identifier which was expected to be got from the response-bodyThe virtual session could not be found because some required identifiers were missing in the request. Check the logs for further information.
0056UserInputValidationRules does not contain 'isiwebmethod' required for a logoutContact support.
0057parent state with key='<...>' (request) expected key='<...>' (session)Contact support.
0058parent state with key='<...>' sessionID='<...>' not found (session)Contact support.
0059unregister child='<...>' from parent='<...>' failedContact support.
0060cleanSession for child key='<...>' failedContact support.
0061notify for child key='<...>' failedContact support.
0062unsupported class='<...>' child key='<...>'Contact support.
0063cleanSession of IdentityCreationState failed.Contact support.
0064could not read the full request-body. Still " <...> " byte expected. The body will not be interceptedThe request body could not be intercepted because an error occurred when reading the body. Check the logs for further information.
0065no part with content-id='<...>' found.Contact support.
0066could not find soap-requestContact support.
0067can't buffer the body for validation. Hint: increase the attribute 'BodyReadSize' of this filterThe IdentityCreationFilter or the SecurityRoleFilter could not read the request body because it was too long. HINT: Increase the value of the filter attribute BodyReadSize.
0068parsing soap message failedThe IdentityCreationFilter or the SecurityRoleFilter could not parse the SOAP message in the request header. Check the logs for further information, for example, whether the SOAP message is sent in the request body. HINT: Set the filter's init param OnlySoapHeader to "false".
0069invalid requirement-line '<...>'. Expected: '<nameIn>:<regexp>:<nameOut>:<substitution>' (delimiter ':' must be escaped)Check the configuration of the parameter HeaderBased.AuthResponseHeader (AuthenticationFilter).
0070pattern '<...>' does not match regex '<...>'. Returning an empty stringContact support.
0071the headervalue '<...>'='<...>' could not substitute the rule '<...>'The header was blocked because the header value did not match the rule. Check the logs for further information.
0072the headername '<...>'='<...>' could not substitute the rule '<...>'The header was blocked because the header name did not match the rule. Check the logs for further information.
0073invalid requirement-line '<...>'. Expected: '<source>:<key>:<regexp>' (delimiter ':' must be escaped)One requirement could not be parsed correctly. Check the logs for further information. HINT: Check the parameter Requirements of the AuthenticationFilter, in case you have one configured.
0074Cleanup of the Esauth4ConnectorServlet failedContact support.
0075removing session provider implementation name='<...>' failedContact support.
0076destroying servlet failedContact support.
0077unsupported method '<...>Contact support.
0079illegal m_name='%s' providerName='<...>'Check the log for more details and verify your configuration.
0080kill failedContact support.
0081calling 'authenticate' unknown Status='<...>'Contact support.
0082calling 'unlock' unknown Status='<...>'Contact support.
0083calling 'stepup' unknown Status='<...>'Contact support.
0084serialising for '%s' failedCheck the logs for more details.
0085transport failedThe SOAP message could not be sent. Check the logs for more details.
0086Could not connect to servlet. Is the service running?The servlet could not connect to the authentication service. Check whether this server is available.
0087parsing failedThe response from the authentication service could not be parsed. Check the logs for more details.
0088parsing cookie='<...>' failedCheck the logs for more details.
0089send failedCheck the logs for more details.
0090SOAPFault: Code='<...>' Reason='<...>' Detail='<...>'The SOAP message is ill-formed. Check the logs for more details.
0091number of children must be '1', got '<...>'The SOAP message must contain one element of type "status". Check the logs for more details.
0092unsupported result='<...>'The SOAP message has an unknown status. Check the logs for more details.
0093received duplicated property with name='<...>'Check the logs for more details.
0094missing tag '<...>'The SOAP message lacks a mandatory element. Check the logs for more details.
0095setNameValue failedCheck the logs for more details.
0096no request attribute found (key='<...>')Check the logs for more details.
0097illegal request attribute (key='%s' bc_classname='%s')Check the logs for more details.
0098No servlet name configured.Check your configuration.
0099servlet '<...>' not foundCheck your configuration. HINT: Make sure that the init parameters AuthenticationServlet and LoginRendererServlet of the IdentityCreationFilter or SecurityRoleFilter refer to a servlet that is configured and available .
0101an unexpected exception occurredContact support.
0102an unknown exception occurredContact support.
0103notify failedContact support.
0104the redirection URL contains an unescaped "The redirection URL encoding failed. Contact support.