Home
  •  

Microsoft AD RMS 2008 Universal Principal Name Claim Is Not Present Event Rule

Microsoft.ADRMS.2008.UniversalPrincipalNameClaimIsNotPresentEvent.Rule (Rule)

Knowledge Base article:

Summary

Universal Principal Name (UPN) claim is not present in the request.

Resolutions

Enable AD FS UPN claim.

External

http://technet.microsoft.com/en-us/library/cc726165(WS.10).aspx

Element properties:

TargetMicrosoft.ADRMS.2008.Server
CategoryAlert
EnabledFalse
Event_ID174
Event SourceActive Directory Rights Management Services
Alert GenerateTrue
Alert SeverityError
Alert PriorityNormal
RemotableTrue
Alert Message
Microsoft AD RMS 2008 Universal Principal Name Claim Is Not Present Event Rule
Event Description: {0}
Event LogApplication

Member Modules:

ID Module Type TypeId RunAs 
Event DataSource Microsoft.Windows.EventProvider Default
Alert WriteAction System.Health.GenerateAlert Default

Source Code:

<Rule ID="Microsoft.ADRMS.2008.UniversalPrincipalNameClaimIsNotPresentEvent.Rule" Enabled="false" Target="MicrosoftADRMS2008Discovery!Microsoft.ADRMS.2008.Server" ConfirmDelivery="true" Remotable="true" Priority="Normal" DiscardLevel="100">

  <Category>Alert</Category>

  <DataSources>

    <DataSource ID="Event" TypeID="Windows!Microsoft.Windows.EventProvider">

      <ComputerName>$Target/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>

      <LogName>Application</LogName>

      <Expression>

        <And>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value Type="UnsignedInteger">174</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

          <Expression>

            <SimpleExpression>

              <ValueExpression>

                <XPathQuery Type="String">PublisherName</XPathQuery>

              </ValueExpression>

              <Operator>Equal</Operator>

              <ValueExpression>

                <Value Type="String">Active Directory Rights Management Services</Value>

              </ValueExpression>

            </SimpleExpression>

          </Expression>

        </And>

      </Expression>

    </DataSource>

  </DataSources>

  <WriteActions>

    <WriteAction ID="Alert" TypeID="Health!System.Health.GenerateAlert">

      <Priority>1</Priority>

      <Severity>2</Severity>

      <AlertOwner/>

      <AlertMessageId>$MPElement[Name="Microsoft.ADRMS.2008.UniversalPrincipalNameClaimIsNotPresentEvent.Rule.AlertMessage"]$</AlertMessageId>

      <AlertParameters>

        <AlertParameter1>$Data/EventDescription$</AlertParameter1>

      </AlertParameters>

      <Suppression>

        <SuppressionValue>$Data/EventDisplayNumber$</SuppressionValue>

        <SuppressionValue>$Data/PublisherName$</SuppressionValue>

        <SuppressionValue>$Data/EventDescription$</SuppressionValue>

      </Suppression>

      <Custom1/>

      <Custom2/>

      <Custom3/>

      <Custom4/>

      <Custom5/>

      <Custom6/>

      <Custom7/>

      <Custom8/>

      <Custom9/>

      <Custom10/>

    </WriteAction>

  </WriteActions>

</Rule>