Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This topic lists all exceptions generated by IdentityModel.
Exception List
| Resource Code | Current String |
|---|---|
ValueMustBeOf2Types |
The value of this argument must be one of these two types. |
SAMLSubjectNameIdentifierRequiresNameValue |
The 'Name' specified for a SamlNameIdentifier cannot be null or of length 0. |
TraceCodeIssuanceTokenProviderEndSecurityNegotiation |
The IssuanceTokenProvider has completed the security negotiation. |
TraceCodeSecurityNewServerSessionKeyIssued |
A new security session key was issued by the server. |
SAMLAttributeMissingNameAttributeOnRead |
The 'Name' for the SamlAttribute being read is missing or is of length 0. |
UnknownICryptoType |
The ICrypto implementation is not supported. |
TraceCodeSecurityTokenProviderClosed |
Security Token Provider was closed. |
SAMLUnableToLoadAdvice |
Failed to load the <saml:advice> element. |
SAMLAuthenticationStatementMissingAuthenticationMethodOnRead |
The 'AuthenticationMethod' attribute being read for a SamlAuthenticationStatement is missing or of length 0. |
UnsupportedTransformAlgorithm |
Unsupported transform or canonicalization algorithm. |
SAMLAudienceRestrictionShouldHaveOneAudience |
A SamlAudienceRestrictionCondition must contain at least one Audience (URI). |
SAMLEvidenceShouldHaveOneAssertion |
SamlEvidence must reference at least one SamlAssertion either by Id or reference. |
SAMLAudienceRestrictionInvalidAudienceValueOnRead |
The SamlAudienceRestrictionCondition being read is missing a value in the 'Audience' element. |
X509ChainBuildFail |
The specific X.509 certificate chain building failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. |
XDCannotFindValueInDictionaryString |
The specific value id not found in the dictionary string. |
TraceCodeImportSecurityChannelBindingEntry |
Starting Security ImportChannelBinding. |
PrivateKeyExchangeNotSupported |
The private key does not support the exchange KeySpec. |
TokenProviderUnableToGetToken |
The specific token provider was unable to provide a security token. |
SAMLEntityCannotBeNullOrEmpty |
The specific SamlAssertion entity cannot be null or empty. |
SAMLAssertionRequireOneStatement |
A SamlAssertion requires at least one statement. Ensure that you have added at least one SamlStatement to the SamlAssertion you are creating. |
AESInvalidInputBlockSize |
The input size must be a multiple of specific bytes. |
AESCryptAcquireContextFailed |
Failed to acquire the CSP context. |
SAMLAssertionRequireOneStatementOnRead |
The SamlAssertion being read did not contain any SamlStatement. A SamlAssertion must contain at least one SamlStatement. |
TraceCodeSecuritySessionClosedFaultReceived |
The client security session received a session closed fault from the server. |
TraceCodeIssuanceTokenProviderRedirectApplied |
IssuanceTokenProvider applied a redirection header. |
TraceCodeSecuritySessionClosedFaultSendFailure |
A failure occurred when sending a security session closed fault to the client. |
ValueMustBeZero |
The value of this argument must be 0. |
SAMLUnableToResolveSignatureKey |
Unable to resolve SecurityKeyIdentifier found in the SamlAssertion signature. The SamlAssertion signature cannot be validated for the specific Issuer. |
X509IsNotInTrustedStore |
The specific X.509 certificate is not in the trusted people store. |
SAMLElementNotRecognized |
The specific element is not supported. |
SAMLAuthorizationDecisionStatementMissingResourceAttributeOnRead |
The 'Resource' attribute for the SamlAuthorizationDecisionStatement being read is missing or of length 0. |
SamlTokenMissingSignature |
The SamlAssertion is not signed. SamlAssertions can be signed by setting the SigningCredentials. |
ExpectedElementMissing |
The expected element with the specific namespace is missing. |
NoKeyIdentifierClauseFound |
No clause of the specific type was found in the SecurityKeyIdentifier. |
MissingPrivateKey |
The private key is not present in the X.509 certificate. |
UnexpectedEOFFromReader |
Unexpected EOF from XML reader. |
UnsupportedKeyDerivationAlgorithm |
The specific key derivation algorithm is not supported. |
TokenDoesNotSupportKeyIdentifierClauseCreation |
The specific token does not support the specific key identifier clause creation. |
LastMessageNumberExceeded |
A violation of sequence number protocol has been detected. |
SymmetricKeyLengthTooShort |
The length of the symmetric key specified is too short. |
SAMLAuthorityBindingMissingAuthorityKindOnRead |
The SamlAuthorityBinding being read was found to contain an 'AuthorityKind' that was missing or of length 0. This is not allowed. |
XmlTokenBufferIsEmpty |
XmlTokenBuffer is empty. |
InvalidXmlQualifiedName |
An Xml qualified name was expected, but an invalid name was found. |
SAMLAuthorityKindMissingName |
The XmlQualifiedName that represents the 'AuthorityKind' in the SamlAuthorityBinding cannot be null or of length 0. |
AESCryptEncryptFailed |
Failed to encrypt the specific data. |
AuthorizationContextCreated |
Authorization Context with the specific id is created. |
SamlSerializerUnableToReadSecurityKeyIdentifier |
The SamlSerializer does not contain a SecurityTokenSerializer capable of reading the SecurityKeyIdentifier. If you are using a custom SecurityKeyIdentifier, you must provide a custom SecurityTokenSerializer. |
TraceCodeIssuanceTokenProviderServiceTokenCacheFull |
IssuanceTokenProvider reduced the service token cache. |
TraceCodeSecurityTokenProviderOpened |
Security Token Provider was opened. |
PublicKeyNotRSA |
The public key is not an RSA key. |
InvalidReaderState |
The specific state is invalid for the supplied input reader. |
UnableToResolveReferenceUriForSignature |
Unable to resolve the specific URI in the signature to compute the digest. |
EmptyBase64Attribute |
An empty value was found for the required base64 attribute name and namespace. |
SAMLSubjectRequiresConfirmationMethodWhenConfirmationDataOrKeyInfoIsSpecified |
The SAML SubjectConfirmation requires a Confirmation method when the Confirmation Data or KeyInfo is specified. |
SAMLAudienceRestrictionShouldHaveOneAudienceOnRead |
The SamlAudienceRestrictionCondition being read must contain at least one 'Audience' value. None were found. |
TokenProviderUnableToRenewToken |
The specific token provider was unable to renew the security token. |
AESIVLengthNotSupported |
The specific bits IV is not supported. Only 128 bits IV is supported. |
SAMLAuthorityBindingMissingAuthorityKind |
A SamlAuthorityBinding must contain an 'AuthorityKind' that is not null. |
TraceCodeSecuritySessionDemuxFailure |
The incoming message is not part of an existing security session. |
TokenRenewalNotSupported |
The specific token provider does not support token renewal. |
AtLeastOneReferenceRequired |
At least one reference is required in a signature. |
SAMLSignatureAlreadyRead |
The signature is already read in the SAML assertion. |
AlgorithmAndPrivateKeyMisMatch |
The algorithm specified and the private key do not match. |
EmptyTransformChainNotSupported |
The empty transform chain is not supported. |
SspiWrapperEncryptDecryptAssert1 |
SSPIWrapper::EncryptDecryptHelper|'offset' is out of range. |
SspiWrapperEncryptDecryptAssert2 |
SSPIWrapper::EncryptDecryptHelper|'size' is out of range. SecurityTokenManagerCannotCreateAuthenticatorForRequirement=The security token manager cannot create a token authenticator for the specific requirement. |
UnableToCreateKeyedHashAlgorithm |
Unable to create a KeyedHashAlgorithm from the specific value for the specific signature algorithm. |
SAMLUnableToLoadAssertion |
The <saml:assertion> element failed to load. |
X509FindValueMismatchMulti |
The specific X509FindType requires the type of the argument findValue to be one of the 2 values. The argument findValue is of another type. |
TraceCodeSecurityIdentityDeterminationSuccess |
Identity was determined for an EndpointAddress. |
UndefinedUseOfPrefixAtElement |
The specific prefix that is used at the element has no namespace defined. |
TraceCodeSecuritySessionResponderOperationFailure |
Security session operation failed at the server. |
CannotFindCert |
Unable to find the X.509 certificate using the specific search criteria: StoreName , StoreLocation, FindType, FindValue. |
X509InvalidUsageTime |
The specific X.509 certificate usage time is invalid. The usage time does not fall between the required NotBefore time and NotAfter time. |
TraceCodeSecurityIdentityDeterminationFailure |
Identity cannot be determined for an EndpointAddress. |
AsyncObjectAlreadyEnded |
The End method has already been called on this asynchronous result object. |
ExternalDictionaryDoesNotContainAllRequiredStrings |
The external dictionary does not contain definitions for all the required strings. The specific string is not available in the remote dictionary. |
TraceCodeSecuritySessionKeyRenewalFaultReceived |
The client security session received a key renewal fault from the server. |
SAMLActionNameRequired |
The string that represents the SamlAction cannot be null or of length 0. |
SignatureVerificationFailed |
The signature verification failed. |
TraceCodeSecurityContextTokenCacheFull |
The SecurityContextSecurityToken cache is full. |
SAMLAssertionMissingMajorVersionAttributeOnRead |
The MajorVersion for the SamlAssertion being read is missing or is of length 0. |
SamlAttributeClaimRightShouldBePossessProperty |
This SamlAttribute constructor requires that the Right of the Claim have the value System.IdentityModel.Claims.Rights.PossessProperty. |
AuthorizationPolicyEvaluated |
Policy with the specific id is evaluated. |
SAMLUnableToLoadCondtions |
The <saml:conditions> element failed to load. |
AESKeyLengthNotSupported |
The specific bits key is not supported. Only 128, 192 and 256 bits key is supported. |
UserNameCannotBeEmpty |
The username cannot be empty. |
AlgorithmAndPublicKeyMisMatch |
The algorithm specified and the public key do not match. |
SAMLUnableToLoadCondtion |
The <saml:conditions> element failed to load. |
SamlAssertionMissingSigningCredentials |
SigningCredentials have not been set on the SamlAssertion. SamlAssertions must be signed, please set a valid SigningCredentials on the SamlAssertion to proceed. |
SspiPayloadNotEncrypted |
The binary data was not encrypted with the SSPI security context. |
SAMLAuthorizationDecisionShouldHaveOneActionOnRead |
The SamlAuthorizationDecisionStatement that is being read does not contain any SamlAction. |
TraceCodeSecurityBindingSecureOutgoingMessageFailure |
The security protocol cannot secure the outgoing message. |
UndefinedUseOfPrefixAtAttribute |
The specific prefix used at the specific attribute has no namespace defined. |
NoInputIsSetForCanonicalization |
No input is set for writing canonicalized output. |
TraceCodeSecurityPendingServerSessionAdded |
A pending security session is added to the server. |
AsyncCallbackException |
An AsyncCallback threw an exception. |
PrivateKeyNotRSA |
The private key is not a RSA key. |
TraceCodeSecurityClientSessionKeyRenewed |
The client security session renewed the session key. |
SAMLAuthorizationDecisionStatementMissingDecisionAttributeOnRead |
The 'Decision' for the SamlAuthorizationDecisionStatement being read is missing or of length 0. |
SAMLAttributeNameAttributeRequired |
The 'Name' specified for a SamlAttribute cannot be null or of length 0. |
SamlSerializerRequiresExternalSerializers |
The SamlSerializer requires a SecurityTokenSerializer to serialize the SecurityKeyIdentifier present in the token. |
UnableToResolveKeyReference |
The token resolver is unable to resolve the specific security key reference. |
UnsupportedKeyWrapAlgorithm |
The specific key wrap algorithm is not supported. |
SAMLAssertionMissingIssuerAttributeOnRead |
The 'Issuer' for the SamlAssertion being read is missing or is of length 0. |
TraceCodeIssuanceTokenProviderUsingCachedToken |
The IssuanceTokenProvider used the cached service token. |
AESCryptGetKeyParamFailed |
Failed to get the specific key parameter. |
InvalidNamespaceForEmptyPrefix |
The namespace is invalid for the empty prefix. |
AESCipherModeNotSupported |
The specific cipher mode is not supported. Only CBC is supported. |
ArgumentCannotBeEmptyString |
The argument must be a non-empty string. |
SAMLAssertionMissingMinorVersionAttributeOnRead |
The MinorVersion for the SamlAssertion being read is missing or is of length 0. |
SpecifiedStringNotAvailableInDictionary |
The specified string is not an entry in the current dictionary. |
KerberosApReqInvalidOrOutOfMemory |
The AP-REQ is invalid or the system does not have enough memory. |
FailLogonUser |
The LogonUser failed for the specified user. Ensure that the user has a valid Windows account. |
ValueMustBeNonNegative |
The value of this argument must be non-negative. |
X509ValidationFail |
The specified X.509 certificate validation failed. |
TraceCodeSecuritySessionRequestorOperationSuccess |
The security session operation completed successfully at the client. |
SAMLActionNameRequiredOnRead |
The string that is read for the SamlAction is missing or is of length 0. |
KerberosMultilegsNotSupported |
Identity is specified as UPN. Authenticating a service running under a user account requires Kerberos multi-legs, which is unsupported. |
SAMLAssertionIdRequired |
The 'assertionId' for a SamlAssertion cannot be null or empty. |
InvalidOperationForWriterState |
The specified operation is invalid in the specified XmlWriter state. |
CannotValidateSecurityTokenType |
The specified security token authenticator cannot validate a token of the specified type. |
X509FindValueMismatch |
The specified X509FindType requires the type of the argument findValue to be the specified value. The argument findValue is of another type. |
TraceCodeSecurityClientSessionCloseSent |
A Close message was sent by the client security session. |
SuiteDoesNotAcceptAlgorithm |
The specified algorithm is not accepted for the specified operation by the specified algorithm suite |
TraceCodeSecuritySessionRequestorOperationFailure |
The client security session operation failed. |
SAMLUnableToLoadStatement |
Failed to load a SamlStatement. |
InnerReaderMustBeAtElement |
The inner reader must be at the element. |
UnableToCreateTokenReference |
Unable to create a security token reference. |
TraceCodeSecurityBindingIncomingMessageVerified |
The security protocol verified the incoming message. |
ObjectIsReadOnly |
The object is read-only. |
TraceCodeSecurityClientSessionPreviousKeyDiscarded |
The client security session discarded the previous session key. |
SAMLTokenTimeInvalid |
The SamlToken is not time valid. The current time is outside the Effective and Expiration time of the token. |
TraceCodeSecurityIdentityVerificationSuccess |
Identity verification succeeded. |
SigningTokenHasNoKeys |
The specified signing token has no keys. |
TraceCodeSecurityIdentityVerificationFailure |
Identity verification failed. |
AESCryptImportKeyFailed |
Failed to import the key material. |
FailInitializeSecurityContext |
InitializeSecurityContent failed. Ensure the service principal name is correct. |
TraceCodeStreamSecurityUpgradeAccepted |
The stream security upgrade was accepted successfully. |
SAMLAuthorityBindingRequiresLocation |
The 'Location' attribute that is specified on the SamlAuthorityBinding cannot be null or of length 0. |
PublicKeyNotDSA |
The public key is not a DSA key. |
ImpersonationLevelNotSupported |
The authentication modes using Kerberos do not support the specified impersonation level. Specify a valid identification or impersonation level. |
RequiredTargetNotSigned |
The element with the specified id is required to be signed, but was not. |
SAMLAuthenticationStatementMissingAuthenticationInstanceOnRead |
The 'AuthenticationInstant' attribute being read for a SamlAuthenticationStatement is missing or of length 0. |
SAMLEvidenceShouldHaveOneAssertionOnRead |
The SamlEvidence being read did not contain either a reference to or an embedded SamlAssertion. |
LengthOfArrayToConvertMustGreaterThanZero |
The length of the array to convert to an integer must be greater than 0. |
InvalidAsyncResult |
Invalid AsyncResult. |
TraceCodeIssuanceTokenProviderRemovedCachedToken |
The IssuanceTokenProvider removed the expired service token. |
IncorrectUserNameFormat |
The username is in an invalid format. The username format must be in the form of "username' or 'domain\\username'. |
TraceCodeExportSecurityChannelBindingEntry |
Starting Security ExportChannelBinding. |
UnsupportedInputTypeForTransform |
The specified input type is not supported for the transform. |
CannotFindDocumentRoot |
Cannot find the root of the document. |
XmlBufferQuotaExceeded |
The size necessary to buffer the XML content exceeded the buffer quota. |
TraceCodeSecuritySessionClosedResponseSendFailure |
A failure occurred when sending a security session Close response to the client. |
UnableToResolveReferenceInSamlSignature |
Unable to resolve the specified reference in the SAML signature with AssertionID. |
SAMLSubjectRequiresNameIdentifierOrConfirmationMethod |
A SamlSubject requires that a 'NameIdentifier' or 'ConfirmationMethod' be specified. Both were missing. |
SAMLAttributeMissingNamespaceAttributeOnRead |
The 'Namespace' for the SamlAttribute being read is missing or of length 0. |
SAMLSubjectConfirmationClauseMissingConfirmationMethodOnRead |
A 'ConfirmationMethod' cannot be found on the SamlSubjectConfirmation being read. |
SecurityTokenRequirementHasInvalidTypeForProperty |
The token requirement has an unexpected type for the specified property. The expected property type is of another value. |
TraceCodeNegotiationTokenProviderAttached |
NegotiationTokenProvider was attached. |
TraceCodeSpnegoClientNegotiationCompleted |
SpnegoTokenProvider completed SSPI negotiation. |
SAMLUnableToLoadUnknownElement |
The selected SamlSerializer is unable to deserialize this element. Please register a custom SamlSerializer to deserialize custom elements. |
CreateSequenceRefused |
The create sequence request has been refused by the RM Destination. |
TraceCodeSecuritySessionRedirectApplied |
The client security session was redirected. |
SecurityTokenRequirementDoesNotContainProperty |
The token requirement does not contain the specified property. |
SAMLAttributeValueCannotBeNull |
One of the attributeValues found in the SamlAttribute was found to be a null value. Ensure that lists are not null when creating the SamlAttribute. |
ValueMustBeGreaterThanZero |
The value of this argument must be greater than 0. |
TraceCodeNegotiationAuthenticatorAttached |
NegotiationTokenAuthenticator was attached. |
ValueMustBePositive |
|
SAMLAuthorizationDecisionShouldHaveOneAction |
A SamlAuthorizationDecisionStatement must have at least one SamlAction. |
TraceCodeSecurityTokenAuthenticatorClosed |
Security Token Authenticator was closed. |
TraceCodeSecurityAuditWrittenSuccess |
The security audit log is written successfully. |
PrivateKeyNotDSA |
The private key is not a DSA key. |
MessageNumberRollover |
The maximum sequence number for this sequence has been exceeded. |
AESPaddingModeNotSupported |
The specified padding mode is not supported. Only PKCS7 and ISO10126 is supported. |
SAMLSubjectRequiresNameIdentifierOrConfirmationMethodOnRead |
The required 'NameIdentifier' and the 'ConfirmationMethod' elements are not found for the SamlSubject being read. |
TraceCodeSecurityAuditWrittenFailure |
A failure occurred while writing to the security audit log. |
UnsupportedCryptoAlgorithm |
The specified crypto algorithm is not supported in this context. |
SigningTokenHasNoKeysSupportingTheAlgorithmSuite |
The signing token has no key that supports the specified algorithm suite. |
SAMLNameIdentifierMissingIdentifierValueOnRead |
The 'Identifier' string for the SamlNameIdentifier being read is missing. |
SAMLSubjectStatementRequiresSubject |
The SAML Subject Statement requires a SAML subject to be specified. |
TraceCodeSslClientCertMissing |
The remote SSL client failed to provide a required certificate. |
SAMLTokenVersionNotSupported |
The specified major version and minor version are not supported. |
TraceCodeConfigurationIsReadOnly |
The configuration is read-only. |
TraceCodeSecuritySessionRenewFaultSendFailure |
A failure occurred when sending a renewal fault on the security session key to the client. |
TraceCodeSecurityInactiveSessionFaulted |
An inactive security session was faulted by the server. |
SAMLUnableToLoadAttribute |
Failed to load a SamlAttribute. |
Psha1KeyLengthInvalid |
The specified PSHA1 key length is invalid. |
KeyIdentifierCannotCreateKey |
This SecurityKeyIdentifier does not have any clause that can create a key. |
X509IsInUntrustedStore |
The specified X.509 certificate is in an untrusted certificate store. |
UnexpectedXmlChildNode |
The specified XML child node of specified type is unexpected for the specified element. |
TokenDoesNotMeetKeySizeRequirements |
The key size requirements for the specified algorithm suite are not met by the specified token. |
TraceCodeSecuritySessionRequestorStartOperation |
A security session operation was started at the client. |
InvalidHexString |
Invalid hexadecimal string format. |
SamlAttributeClaimResourceShouldBeAString |
This SamlAttribute constructor requires that the resource of the claim is of type 'string'. |
SamlSigningTokenNotFound |
The SamlAssertion is signed but the token that signed the SamlAssertion cannot be found. Ensure that the SecurityTokenResolver contains the token that signed the SamlAssertion. |
TraceCodeSecuritySpnToSidMappingFailure |
The ServicePrincipalName could not be mapped to a SecurityIdentifier. |
UnableToCreateSignatureFormatterFromAsymmetricCrypto |
Unable to create a signature formatter for the specified algorithm from the specified asymmetric crypto. |
TraceCodeSecurityServerSessionClosedFaultSent |
The server security session sent a session closed fault to the client. |
UnableToFindPrefix |
Unable to find the prefix for the specified visibly used prefix at the specified element. |
TraceCodeSecurityTokenAuthenticatorOpened |
Security Token Authenticator was opened. |
RequiredAttributeMissing |
The specified attribute is required on the specified element. |
LocalIdCannotBeEmpty |
The localId cannot be empty. Specify a valid 'localId'. |
ValueMustBeInRange |
The value of this argument must fall within the specified range. |
TraceCodeIssuanceTokenProviderBeginSecurityNegotiation |
IssuanceTokenProvider started a new security negotiation. |
InvalidNtMapping |
The specified X.509 certificate cannot be mapped to a Windows account. The UPN subject alternate name is required. |
AESCryptSetKeyParamFailed |
Failed to set the specified key parameter. |
TraceCodeSecuritySessionClosedResponseReceived |
The client security session received a closed response from the server. |
UnableToCreateSignatureDeformatterFromAsymmetricCrypto |
Unable to create a signature deformatter for the specified algorithm from the specified asymmetric crypto. |
TraceCodeIdentityModelAsyncCallbackThrewException |
An asynchronous callback threw an exception. |
LengthMustBeGreaterThanZero |
The length of this argument must be greater than 0. |
FoundMultipleCerts |
Found multiple X.509 certificates using the specified search criteria: StoreName, StoreLocation, FindType, FindValue. Provide a more specific find value. |
AtLeastOneTransformRequired |
The Transforms element must contain at least one transform. |
SAMLTokenNotSerialized |
The SamlAssertion could not be serialized to XML. Please see inner exception for details. |
TraceCodeSecurityBindingOutgoingMessageSecured |
The security protocol secured the outgoing message. |
KeyIdentifierClauseDoesNotSupportKeyCreation |
This SecurityKeyIdentifierClause does not support key creation. |
UnableToResolveTokenReference |
The token resolver is unable to resolve the specified token reference. |
UnsupportedEncryptionAlgorithm |
The specified encryption algorithm is not supported. |
SamlSerializerUnableToWriteSecurityKeyIdentifier |
The SamlSerializer does not contain a SecurityTokenSerializer capable of serializing the given SecurityKeyIdentifier. If you are using a custom SecurityKeyIdentifier, you must provide a custom SecurityTokenSerializer. |
SAMLAttributeShouldHaveOneValue |
No attribute values were found. A SamlAttribute attribute must have at least one attribute value. |
TraceCodeSecurityBindingVerifyIncomingMessageFailure |
Security protocol cannot verify the incoming message. |
SamlSigningTokenMissing |
The SamlAssertion passed to the SamlSecurityTokenAuthenticator does not contain a signing token. |
NoPrivateKeyAvailable |
No private key is available. |
ValueMustBeOne |
The value of this argument must be 1. |
TraceCodeSecurityPendingServerSessionRemoved |
A pending security session was made active by the server. |
TraceCodeImportSecurityChannelBindingExit |
Finished Security ImportChannelBinding. |
X509CertStoreLocationNotValid |
The StoreLocation must be either LocalMachine or CurrentUser. |
SettingdMayBeModifiedOnlyWhenTheWriterIsInStartState |
The writer settings may be modified only when the writer is in the Start state. |
ArgumentInvalidCertificate |
The certificate is invalid. |
DigestVerificationFailedForReference |
Digest verification failed for the specified Reference. |
SAMLAuthorityBindingRequiresBinding |
The 'Binding' attribute specified on the SamlAuthorityBinding cannot be null or of length 0. |
AESInsufficientOutputBuffer |
The output buffer must be greater than the specified bytes. |
SAMLAuthorityBindingMissingBindingOnRead |
The 'Binding' attribute for the SamlAuthorityBinding being read is missing or of length 0. |
SAMLAuthorityBindingInvalidAuthorityKind |
The SamlAuthorityBinding being read has an invalid AuthorityKind. The format of the AuthorityKind must be a QName. |
ProvidedNetworkCredentialsForKerberosHasInvalidUserName |
The NetworkCredentials provided for the Kerberos Token does not have a valid UserName. |
SSPIPackageNotSupported |
The specified SSPI package is not supported. |
TokenCancellationNotSupported |
The specified token provider does not support token cancellation. |
UnboundPrefixInQName |
An unbound prefix is used in the specified qualified name. |
SAMLAuthorizationDecisionResourceRequired |
The 'resource' specified to the SamlAuthorizationDecisionStatement cannot be null or of length 0. |
TraceCodeSecurityNegotiationProcessingFailure |
Service security negotiation processing failure. |
SAMLAssertionIssuerRequired |
The 'Issuer' specified for a SamlAssertion cannot be null or empty. |
UnableToCreateHashAlgorithmFromAsymmetricCrypto |
Unable to create a HashAlgorithm for the specified algorithm from the specified asymmetric crypto. |
SamlUnableToExtractSubjectKey |
The SecurityKeyIdentifier that was found in the SamlSubject cannot be resolved to a SecurityToken. The SecurityTokenResolver must contain a SecurityToken that the SecurityKeyIdentifier resolves to. |
ChildNodeTypeMissing |
The specified XML element does not have a child of the specified type. |
TraceCodeSecurityPendingServerSessionClosed |
The pending security session was closed by the server. |
TraceCodeSecuritySessionCloseResponseSent |
The server security session sent a Close response to the client. |
TraceCodeSecurityIdentityHostNameNormalizationFailure |
The HostName portion of an endpoint address cannot be normalized. |
FailAcceptSecurityContext |
The AcceptSecurityContext failed. |
EmptyXmlElementError |
The specified element cannot be empty. |
PrefixNotDefinedForNamespace |
A prefix for the specified namespace is not defined in this context and cannot be declared. |
SAMLAuthorizationDecisionHasMoreThanOneEvidence |
The SamlAuthorizationDecisionStatement being read was found to contain more than one Evidence. This is not allowed. |
SamlTokenAuthenticatorCanOnlyProcessSamlTokens |
The SamlSecurityTokenAuthenticator can only process SamlSecurityTokens. The specified SecurityTokenType was received . |
SAMLAttributeStatementMissingAttributeOnRead |
The SamlAttributeStatement being read does not contain any 'SamlAttribute' elements. This is not allowed. |
CouldNotFindNamespaceForPrefix |
Cannot look up the namespace for the specified prefix. |
TraceCodeExportSecurityChannelBindingExit |
Finished Security ExportChannelBinding. |
AESCryptDecryptFailed |
Failed to decrypt the specified data. |
SAMLAttributeNamespaceAttributeRequired |
The 'Namespace' specified for a SamlAttribute cannot be null or of length 0. |
TraceCodeSpnegoServiceNegotiationCompleted |
SpnegoTokenAuthenticator completed SSPI negotiation. |
TraceCodeSecurityServerSessionRenewalFaultSent |
The server security session sent a key renewal fault to the client. |
AlgorithmMismatchForTransform |
A mismatch occurred on the algorithm for the transform. |
UserNameAuthenticationFailed |
Authentication of a username/password using the specified mechanism failed. User is not authenticated. |
SamlInvalidSigningToken |
The SamlAssertion has been signed with a token that was not validated according to the protocol. If you are using X.509 certificates, examine your validation semantics. |
TraceCodeSecurityServerSessionKeyUpdated |
The security session key was updated by the server. |
TraceCodeSecurityServerSessionCloseReceived |
The server security session received a Close message from the client. |
SAMLAuthenticationStatementMissingSubject |
The SamlAuthenticationStatement is missing the required SamlSubjectStatement. |
UnexpectedEndOfFile |
Unexpected end of file. |
UnsupportedAlgorithmForCryptoOperation |
The specified algorithm is not supported for the specified operation. |
XmlLangAttributeMissing |
The required xml:lang attribute is missing. |
TraceCodeSecurityImpersonationSuccess |
Security Impersonation succeeded at the server. |
SAMLAuthorityBindingMissingLocationOnRead |
The 'Location' attribute for the SamlAuthorityBinding being read is missing or of length 0. |
SAMLAttributeStatementMissingSubjectOnRead |
The 'SamlSubject' element for the SamlAttributeStatement is missing. |
SAMLAuthorizationDecisionStatementMissingSubjectOnRead |
The 'SamlSubject' element for SamlAuthorizationDecisionStatement being read is missing. |
SAMLBadSchema |
While reading a SamlAssertion this specified element was found not to comply with the schema. |
SAMLAssertionIDIsInvalid |
The specified 'assertionId' for a SamlAssertion must start with a letter or '_'. |
TraceCodeSecurityActiveServerSessionRemoved |
An active security session was removed by the server. |
UnableToCreateKeyedHashAlgorithmFromSymmetricCrypto |
Unable to create a keyedHashAlgorithm for the specified algorithm from the specified symmetric crypto. |
SAMLAuthenticationStatementMissingAuthenticationMethod |
The 'AuthenticationMethod' specified for a SamlAuthenticationStatement cannot be null or of length 0. |
TraceCodeSecurityImpersonationFailure |
Security impersonation failed at the server. |
Default |
(Default) |
UnsupportedNodeTypeInReader |
The specified node type with the specified name is not supported. |