Event ID - 4983

Event Id4983
SourceMicrosoft-Windows-Security-Auditing
DescriptionAn IPsec Extended Mode negotiation failed. The corresponding Main Mode security association has been deleted.

Local Endpoint:
      Principal Name: <Principal Name>
      Network Address:<Network Address>
      Keying Module Port: <Keying Module Port>     

Local Certificate:
      SHA Thumbprint: <SHA Thumbprint>
      Issuing CA:<Issuing CA>
      Root CA:<Root CA>     

Remote Endpoint:
      Principal Name: <Principal Name>
      Network Address: <Network Address>
      Keying Module Port: <Keying Module Port>     

Remote Certificate:
      SHA Thumbprint: <SHA Thumbprint>
      Issuing CA: <Issuing CA>
      Root CA: <Root CA>     

Additional Information:
      Keying Module Name: <Keying Module Name>
      Authentication Method: <Authentication Method>
      Role: <Role>
      Impersonation State:<Impersonation State>
      Main Mode Filter ID: <Main Mode Filter ID>     

Failure Information:
      Failure Point: <Failure Point>
      Failure Reason: <Failure Reason>
      State: <State>     
Event InformationCause :
This event is logged when an IPSec Extended mode negotiation failed.
Reference Links

Catch threats immediately

We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.

See what we caught

Did this information help you to resolve the problem?

Yes: My problem was resolved.
No: The information was not helpful / Partially helpful.
 Refresh