locked
Many security events have been identified by the proxy stack in OCS server RRS feed

  • Question

  • Hi, I have 5 Front End servers in a Enterprise pool OCS 2007 R1 installation. Things seem to work fine, except that i frequently get a event id 14425 in all front end servers

    Node          : xyz.abc.com
    Node Type     : Intel/AMD x86(HTTPS)
    Severity      : warning
    Message       : Many security events have been identified by the proxy stack.  In the past 1 seconds, 30 security

    events have been identified by the proxy stack. A large number of security events could indicate that the server is

    under attack. Resolution: Enable SECURITY tracing in the Administrator Log and review the security events reported

    there.
    Msg Group     : Application
    Application   : OCS2007
    Object        : EvtID:14425
    Event Type    : OCS

    how to enable e SECURITY tracing in the Administrator Log and review the security events (where to enable this)

    Kindly let me know how to fix this issue

    Thanks in Advacne
    Iliyas

    Monday, January 11, 2010 12:55 PM

All replies

  • I would expect other events to be occurring along with this but I will offer one suggestion for expired certificates.
    Tom Laciano Microsoft Program Manager UC Customer and Partner Deployment Readiness
    Wednesday, October 27, 2010 8:58 PM