Edit

FWPM_NET_EVENT_IKEEXT_EM_FAILURE1 structure (fwpmtypes.h)

  • Article

The FWPM_NET_EVENT_IKEEXT_EM_FAILURE1 structure contains information that describes an IKE Extended mode (EM) failure. FWPM_NET_EVENT_IKEEXT_EM_FAILURE0 is available.

Syntax

typedef struct FWPM_NET_EVENT_IKEEXT_EM_FAILURE1_ {
  UINT32                            failureErrorCode;
  IPSEC_FAILURE_POINT               failurePoint;
  UINT32                            flags;
  IKEEXT_EM_SA_STATE                emState;
  IKEEXT_SA_ROLE                    saRole;
  IKEEXT_AUTHENTICATION_METHOD_TYPE emAuthMethod;
  UINT8                             endCertHash[20];
  UINT64                            mmId;
  UINT64                            qmFilterId;
  wchar_t                           *localPrincipalNameForAuth;
  wchar_t                           *remotePrincipalNameForAuth;
  UINT32                            numLocalPrincipalGroupSids;
  LPWSTR                            *localPrincipalGroupSids;
  UINT32                            numRemotePrincipalGroupSids;
  LPWSTR                            *remotePrincipalGroupSids;
  IPSEC_TRAFFIC_TYPE                saTrafficType;
} FWPM_NET_EVENT_IKEEXT_EM_FAILURE1;

Members

failureErrorCode

Windows error code for the failure.

failurePoint

An IPSEC_FAILURE_POINT value that indicates the IPsec state when the failure occurred.

flags

Flags for the failure event.

Value Meaning
FWPM_NET_EVENT_IKEEXT_EM_FAILURE_FLAG_MULTIPLE Indicates that multiple IKE EM failure events have been reported.
FWPM_NET_EVENT_IKEEXT_EM_FAILURE_FLAG_BENIGN Indicates that IKE EM failure events have been reported, but that the events are benign.

emState

An IKEEXT_EM_SA_STATE value that indicates the EM state when the failure occurred.

saRole

An IKEEXT_SA_ROLE value that specifies the SA role when the failure occurred.

emAuthMethod

An IKEEXT_AUTHENTICATION_METHOD_TYPE value that specifies the authentication method.

endCertHash[20]

SHA thumbprint hash of the end certificate corresponding to the failures that happen during building or validating certificate chains.

IKEEXT_CERT_HASH_LEN maps to 20.

mmId

LUID for the Main Mode (MM) SA.

qmFilterId

Quick Mode (QM) filter ID associated with this failure.

localPrincipalNameForAuth

Name of the EM local security principal.

remotePrincipalNameForAuth

Name of the EM remote security principal.

numLocalPrincipalGroupSids

Number of groups in the local security principal's token.

localPrincipalGroupSids

Groups in the local security principal's token.

numRemotePrincipalGroupSids

Number of groups in the remote security principal's token.

remotePrincipalGroupSids

Groups in the remote security principal's token.

saTrafficType

Type of traffic for which the embedded quick mode was being negotiated.

Requirements

Requirement Value
Minimum supported client Windows 7 [desktop apps only]
Minimum supported server Windows Server 2008 R2 [desktop apps only]
Header fwpmtypes.h

See also

IKEEXT_AUTHENTICATION_METHOD_TYPE

IKEEXT_EM_SA_STATE

IKEEXT_SA_ROLE

IPSEC_FAILURE_POINT

IPSEC_TRAFFIC_TYPE

Windows Filtering Platform API Structures