Troubleshooting Authentication in Client Logs

The authentication log file for each Endpoint Security client is located on the client computer:

%DADIR%\logs\Authentication.log

A normal log looks like this:

[KERBEROS_CLIENT(KerberosLogger_Events)] : Credentials acquired for John@ACME-DOM.COM
[KERBEROS_MESSAGE(KerberosLogger_Events)] : Message is Empty.
[KERBEROS_CLIENT(KerberosLogger_Events)] : Security context is not yet established.continue needed.
  • If the Authentication.log file on the client shows:

    No authority could be contacted for authentication.

    The Endpoint Agent cannot find a Domain Controller to supply credentials.

    To fix this:

    1. Make sure that the client is in the domain and has connectivity to your Domain Controller.

    2. To authenticate with user credentials, log off and then log in again.

      To authenticate with device credentials, restart the computer.

  • If the Authentication.log file on the client shows:

    The specified target is unknown or unreachable.

    Check the service name. Make sure that there are no typing errors and that the format is correct.

    If there was an error, correct it on the Check Point Endpoint Security Management Server.