SspiMessages
SspiMessages.Instance (HResult.SSPI) contains Microsoft's HResult code descriptions for Security API layer (SSPI facility).
| HResult | Key | Text | Exception |
|---|---|---|---|
| 0x00090312 | SSPI.SEC_I_CONTINUE_NEEDED | The function completed successfully, but it must be called again to complete the context. | |
| 0x00090313 | SSPI.SEC_I_COMPLETE_NEEDED | The function completed successfully, but CompleteToken must be called. | |
| 0x00090314 | SSPI.SEC_I_COMPLETE_AND_CONTINUE | The function completed successfully, but both CompleteToken and this function must be called to complete the context. | |
| 0x00090315 | SSPI.SEC_I_LOCAL_LOGON | The logon was completed, but no network authority was available. The logon was made using locally known information. | |
| 0x00090317 | SSPI.SEC_I_CONTEXT_EXPIRED | The context has expired and can no longer be used. | |
| 0x00090320 | SSPI.SEC_I_INCOMPLETE_CREDENTIALS | The credentials supplied were not complete and could not be verified. Additional information can be returned from the context. | |
| 0x00090321 | SSPI.SEC_I_RENEGOTIATE | The context data must be renegotiated with the peer. | |
| 0x00090323 | SSPI.SEC_I_NO_LSA_CONTEXT | There is no LSA mode context associated with this context. | |
| 0x0009035C | SSPI.SEC_I_SIGNATURE_NEEDED | A signature operation must be performed before the user can authenticate. | |
| 0x00091012 | SSPI.CRYPT_I_NEW_PROTECTION_REQUIRED | The protected data needs to be reprotected. | |
| 0x80090001 | SSPI.NTE_BAD_UID | Bad UID. | |
| 0x80090002 | SSPI.NTE_BAD_HASH | Bad hash. | |
| 0x80090003 | SSPI.NTE_BAD_KEY | Bad key. | |
| 0x80090004 | SSPI.NTE_BAD_LEN | Bad length. | |
| 0x80090005 | SSPI.NTE_BAD_DATA | Bad data. | |
| 0x80090006 | SSPI.NTE_BAD_SIGNATURE | Invalid signature. | |
| 0x80090007 | SSPI.NTE_BAD_VER | Bad version of provider. | |
| 0x80090008 | SSPI.NTE_BAD_ALGID | Invalid algorithm specified. | |
| 0x80090009 | SSPI.NTE_BAD_FLAGS | Invalid flags specified. | |
| 0x8009000A | SSPI.NTE_BAD_TYPE | Invalid type specified. | |
| 0x8009000B | SSPI.NTE_BAD_KEY_STATE | Key not valid for use in specified state. | |
| 0x8009000C | SSPI.NTE_BAD_HASH_STATE | Hash not valid for use in specified state. | |
| 0x8009000D | SSPI.NTE_NO_KEY | Key does not exist. | |
| 0x8009000E | SSPI.NTE_NO_MEMORY | Insufficient memory available for the operation. | |
| 0x8009000F | SSPI.NTE_EXISTS | Object already exists. | |
| 0x80090010 | SSPI.NTE_PERM | Access denied. | |
| 0x80090011 | SSPI.NTE_NOT_FOUND | Object was not found. | |
| 0x80090012 | SSPI.NTE_DOUBLE_ENCRYPT | Data already encrypted. | |
| 0x80090013 | SSPI.NTE_BAD_PROVIDER | Invalid provider specified. | |
| 0x80090014 | SSPI.NTE_BAD_PROV_TYPE | Invalid provider type specified. | |
| 0x80090015 | SSPI.NTE_BAD_PUBLIC_KEY | Provider's public key is invalid. | |
| 0x80090016 | SSPI.NTE_BAD_KEYSET | Key set does not exist. | |
| 0x80090017 | SSPI.NTE_PROV_TYPE_NOT_DEF | Provider type not defined. | |
| 0x80090018 | SSPI.NTE_PROV_TYPE_ENTRY_BAD | The provider type, as registered, is invalid. | |
| 0x80090019 | SSPI.NTE_KEYSET_NOT_DEF | The key set is not defined. | |
| 0x8009001A | SSPI.NTE_KEYSET_ENTRY_BAD | The key set, as registered, is invalid. | |
| 0x8009001B | SSPI.NTE_PROV_TYPE_NO_MATCH | Provider type does not match registered value. | |
| 0x8009001C | SSPI.NTE_SIGNATURE_FILE_BAD | The digital signature file is corrupt. | |
| 0x8009001D | SSPI.NTE_PROVIDER_DLL_FAIL | Provider DLL failed to initialize correctly. | |
| 0x8009001E | SSPI.NTE_PROV_DLL_NOT_FOUND | Provider DLL could not be found. | |
| 0x8009001F | SSPI.NTE_BAD_KEYSET_PARAM | The keyset parameter is invalid. | |
| 0x80090020 | SSPI.NTE_FAIL | An internal error occurred. | |
| 0x80090021 | SSPI.NTE_SYS_ERR | A base error occurred. | |
| 0x80090022 | SSPI.NTE_SILENT_CONTEXT | Provider could not perform the action because the context was acquired as silent. | |
| 0x80090023 | SSPI.NTE_TOKEN_KEYSET_STORAGE_FULL | The security token does not have storage space available for an additional container. | |
| 0x80090024 | SSPI.NTE_TEMPORARY_PROFILE | The profile for the user is a temporary profile. | |
| 0x80090025 | SSPI.NTE_FIXEDPARAMETER | The key parameters could not be set because the configuration service provider (CSP) uses fixed parameters. | |
| 0x80090026 | SSPI.NTE_INVALID_HANDLE | The supplied handle is invalid. | |
| 0x80090027 | SSPI.NTE_INVALID_PARAMETER | The parameter is incorrect. | |
| 0x80090028 | SSPI.NTE_BUFFER_TOO_SMALL | The buffer supplied to a function was too small. | |
| 0x80090029 | SSPI.NTE_NOT_SUPPORTED | The requested operation is not supported. | |
| 0x8009002A | SSPI.NTE_NO_MORE_ITEMS | No more data is available. | |
| 0x8009002B | SSPI.NTE_BUFFERS_OVERLAP | The supplied buffers overlap incorrectly. | |
| 0x8009002C | SSPI.NTE_DECRYPTION_FAILURE | The specified data could not be decrypted. | |
| 0x8009002D | SSPI.NTE_INTERNAL_ERROR | An internal consistency check failed. | |
| 0x8009002E | SSPI.NTE_UI_REQUIRED | This operation requires input from the user. | |
| 0x8009002F | SSPI.NTE_HMAC_NOT_SUPPORTED | The cryptographic provider does not support Hash Message Authentication Code (HMAC). | |
| 0x80090300 | SSPI.SEC_E_INSUFFICIENT_MEMORY | Not enough memory is available to complete this request. | |
| 0x80090301 | SSPI.SEC_E_INVALID_HANDLE | The handle specified is invalid. | |
| 0x80090302 | SSPI.SEC_E_UNSUPPORTED_FUNCTION | The function requested is not supported. | |
| 0x80090303 | SSPI.SEC_E_TARGET_UNKNOWN | The specified target is unknown or unreachable. | |
| 0x80090304 | SSPI.SEC_E_INTERNAL_ERROR | The Local Security Authority (LSA) cannot be contacted. | |
| 0x80090305 | SSPI.SEC_E_SECPKG_NOT_FOUND | The requested security package does not exist. | |
| 0x80090306 | SSPI.SEC_E_NOT_OWNER | The caller is not the owner of the desired credentials. | |
| 0x80090307 | SSPI.SEC_E_CANNOT_INSTALL | The security package failed to initialize and cannot be installed. | |
| 0x80090308 | SSPI.SEC_E_INVALID_TOKEN | The token supplied to the function is invalid. | |
| 0x80090309 | SSPI.SEC_E_CANNOT_PACK | The security package is not able to marshal the logon buffer, so the logon attempt has failed. | |
| 0x8009030A | SSPI.SEC_E_QOP_NOT_SUPPORTED | The per-message quality of protection is not supported by the security package. | |
| 0x8009030B | SSPI.SEC_E_NO_IMPERSONATION | The security context does not allow impersonation of the client. | |
| 0x8009030C | SSPI.SEC_E_LOGON_DENIED | The logon attempt failed. | |
| 0x8009030D | SSPI.SEC_E_UNKNOWN_CREDENTIALS | The credentials supplied to the package were not recognized. | |
| 0x8009030E | SSPI.SEC_E_NO_CREDENTIALS | No credentials are available in the security package. | |
| 0x8009030F | SSPI.SEC_E_MESSAGE_ALTERED | The message or signature supplied for verification has been altered. | |
| 0x80090310 | SSPI.SEC_E_OUT_OF_SEQUENCE | The message supplied for verification is out of sequence. | |
| 0x80090311 | SSPI.SEC_E_NO_AUTHENTICATING_AUTHORITY | No authority could be contacted for authentication. | |
| 0x80090316 | SSPI.SEC_E_BAD_PKGID | The requested security package does not exist. | |
| 0x80090317 | SSPI.SEC_E_CONTEXT_EXPIRED | The context has expired and can no longer be used. | |
| 0x80090318 | SSPI.SEC_E_INCOMPLETE_MESSAGE | The supplied message is incomplete. The signature was not verified. | |
| 0x80090320 | SSPI.SEC_E_INCOMPLETE_CREDENTIALS | The credentials supplied were not complete and could not be verified. The context could not be initialized. | |
| 0x80090321 | SSPI.SEC_E_BUFFER_TOO_SMALL | The buffers supplied to a function was too small. | |
| 0x80090322 | SSPI.SEC_E_WRONG_PRINCIPAL | The target principal name is incorrect. | |
| 0x80090324 | SSPI.SEC_E_TIME_SKEW | The clocks on the client and server machines are skewed. | |
| 0x80090325 | SSPI.SEC_E_UNTRUSTED_ROOT | The certificate chain was issued by an authority that is not trusted. | |
| 0x80090326 | SSPI.SEC_E_ILLEGAL_MESSAGE | The message received was unexpected or badly formatted. | |
| 0x80090327 | SSPI.SEC_E_CERT_UNKNOWN | An unknown error occurred while processing the certificate. | |
| 0x80090328 | SSPI.SEC_E_CERT_EXPIRED | The received certificate has expired. | |
| 0x80090329 | SSPI.SEC_E_ENCRYPT_FAILURE | The specified data could not be encrypted. | |
| 0x80090330 | SSPI.SEC_E_DECRYPT_FAILURE | The specified data could not be decrypted. | |
| 0x80090331 | SSPI.SEC_E_ALGORITHM_MISMATCH | The client and server cannot communicate because they do not possess a common algorithm. | |
| 0x80090332 | SSPI.SEC_E_SECURITY_QOS_FAILED | The security context could not be established due to a failure in the requested quality of service (for example, mutual authentication or delegation). | |
| 0x80090333 | SSPI.SEC_E_UNFINISHED_CONTEXT_DELETED | A security context was deleted before the context was completed. This is considered a logon failure. | |
| 0x80090334 | SSPI.SEC_E_NO_TGT_REPLY | The client is trying to negotiate a context and the server requires user-to-user but did not send a ticket granting ticket (TGT) reply. | |
| 0x80090335 | SSPI.SEC_E_NO_IP_ADDRESSES | Unable to accomplish the requested task because the local machine does not have an IP addresses. | |
| 0x80090336 | SSPI.SEC_E_WRONG_CREDENTIAL_HANDLE | The supplied credential handle does not match the credential associated with the security context. | |
| 0x80090337 | SSPI.SEC_E_CRYPTO_SYSTEM_INVALID | The cryptographic system or checksum function is invalid because a required function is unavailable. | |
| 0x80090338 | SSPI.SEC_E_MAX_REFERRALS_EXCEEDED | The number of maximum ticket referrals has been exceeded. | |
| 0x80090339 | SSPI.SEC_E_MUST_BE_KDC | The local machine must be a Kerberos domain controller (KDC), and it is not. | |
| 0x8009033A | SSPI.SEC_E_STRONG_CRYPTO_NOT_SUPPORTED | The other end of the security negotiation requires strong cryptographics, but it is not supported on the local machine. | |
| 0x8009033B | SSPI.SEC_E_TOO_MANY_PRINCIPALS | The KDC reply contained more than one principal name. | |
| 0x8009033C | SSPI.SEC_E_NO_PA_DATA | Expected to find PA data for a hint of what etype to use, but it was not found. | |
| 0x8009033D | SSPI.SEC_E_PKINIT_NAME_MISMATCH | The client certificate does not contain a valid user principal name (UPN), or does not match the client name in the logon request. Contact your administrator. | |
| 0x8009033E | SSPI.SEC_E_SMARTCARD_LOGON_REQUIRED | Smart card logon is required and was not used. | |
| 0x8009033F | SSPI.SEC_E_SHUTDOWN_IN_PROGRESS | A system shutdown is in progress. | |
| 0x80090340 | SSPI.SEC_E_KDC_INVALID_REQUEST | An invalid request was sent to the KDC. | |
| 0x80090341 | SSPI.SEC_E_KDC_UNABLE_TO_REFER | The KDC was unable to generate a referral for the service requested. | |
| 0x80090342 | SSPI.SEC_E_KDC_UNKNOWN_ETYPE | The encryption type requested is not supported by the KDC. | |
| 0x80090343 | SSPI.SEC_E_UNSUPPORTED_PREAUTH | An unsupported pre-authentication mechanism was presented to the Kerberos package. | |
| 0x80090345 | SSPI.SEC_E_DELEGATION_REQUIRED | The requested operation cannot be completed. The computer must be trusted for delegation, and the current user account must be configured to allow delegation. | |
| 0x80090346 | SSPI.SEC_E_BAD_BINDINGS | Client's supplied Security Support Provider Interface (SSPI) channel bindings were incorrect. | |
| 0x80090347 | SSPI.SEC_E_MULTIPLE_ACCOUNTS | The received certificate was mapped to multiple accounts. | |
| 0x80090348 | SSPI.SEC_E_NO_KERB_KEY | No Kerberos key was found. | |
| 0x80090349 | SSPI.SEC_E_CERT_WRONG_USAGE | The certificate is not valid for the requested usage. | |
| 0x80090350 | SSPI.SEC_E_DOWNGRADE_DETECTED | The system detected a possible attempt to compromise security. Ensure that you can contact the server that authenticated you. | |
| 0x80090351 | SSPI.SEC_E_SMARTCARD_CERT_REVOKED | The smart card certificate used for authentication has been revoked. Contact your system administrator. The event log might contain additional information. | |
| 0x80090352 | SSPI.SEC_E_ISSUING_CA_UNTRUSTED | An untrusted certification authority (CA) was detected while processing the smart card certificate used for authentication. Contact your system administrator. | |
| 0x80090353 | SSPI.SEC_E_REVOCATION_OFFLINE_C | The revocation status of the smart card certificate used for authentication could not be determined. Contact your system administrator. | |
| 0x80090354 | SSPI.SEC_E_PKINIT_CLIENT_FAILURE | The smart card certificate used for authentication was not trusted. Contact your system administrator. | |
| 0x80090355 | SSPI.SEC_E_SMARTCARD_CERT_EXPIRED | The smart card certificate used for authentication has expired. Contact your system administrator. | |
| 0x80090356 | SSPI.SEC_E_NO_S4U_PROT_SUPPORT | The Kerberos subsystem encountered an error. A service for user protocol requests was made against a domain controller that does not support services for users. | |
| 0x80090357 | SSPI.SEC_E_CROSSREALM_DELEGATION_FAILURE | An attempt was made by this server to make a Kerberos-constrained delegation request for a target outside the server's realm. This is not supported and indicates a misconfiguration on this server's allowed-to-delegate-to list. Contact your administrator. | |
| 0x80090358 | SSPI.SEC_E_REVOCATION_OFFLINE_KDC | The revocation status of the domain controller certificate used for smart card authentication could not be determined. The system event log contains additional information. Contact your system administrator. | |
| 0x80090359 | SSPI.SEC_E_ISSUING_CA_UNTRUSTED_KDC | An untrusted CA was detected while processing the domain controller certificate used for authentication. The system event log contains additional information. Contact your system administrator. | |
| 0x8009035A | SSPI.SEC_E_KDC_CERT_EXPIRED | The domain controller certificate used for smart card logon has expired. Contact your system administrator with the contents of your system event log. | |
| 0x8009035B | SSPI.SEC_E_KDC_CERT_REVOKED | The domain controller certificate used for smart card logon has been revoked. Contact your system administrator with the contents of your system event log. | |
| 0x8009035D | SSPI.SEC_E_INVALID_PARAMETER | One or more of the parameters passed to the function were invalid. | |
| 0x8009035E | SSPI.SEC_E_DELEGATION_POLICY | The client policy does not allow credential delegation to the target server. | |
| 0x8009035F | SSPI.SEC_E_POLICY_NLTM_ONLY | The client policy does not allow credential delegation to the target server with NLTM only authentication. | |
| 0x80091001 | SSPI.CRYPT_E_MSG_ERROR | An error occurred while performing an operation on a cryptographic message. | |
| 0x80091002 | SSPI.CRYPT_E_UNKNOWN_ALGO | Unknown cryptographic algorithm. | |
| 0x80091003 | SSPI.CRYPT_E_OID_FORMAT | The object identifier is poorly formatted. | |
| 0x80091004 | SSPI.CRYPT_E_INVALID_MSG_TYPE | Invalid cryptographic message type. | |
| 0x80091005 | SSPI.CRYPT_E_UNEXPECTED_ENCODING | Unexpected cryptographic message encoding. | |
| 0x80091006 | SSPI.CRYPT_E_AUTH_ATTR_MISSING | The cryptographic message does not contain an expected authenticated attribute. | |
| 0x80091007 | SSPI.CRYPT_E_HASH_VALUE | The hash value is not correct. | |
| 0x80091008 | SSPI.CRYPT_E_INVALID_INDEX | The index value is not valid. | |
| 0x80091009 | SSPI.CRYPT_E_ALREADY_DECRYPTED | The content of the cryptographic message has already been decrypted. | |
| 0x8009100A | SSPI.CRYPT_E_NOT_DECRYPTED | The content of the cryptographic message has not been decrypted yet. | |
| 0x8009100B | SSPI.CRYPT_E_RECIPIENT_NOT_FOUND | The enveloped-data message does not contain the specified recipient. | |
| 0x8009100C | SSPI.CRYPT_E_CONTROL_TYPE | Invalid control type. | |
| 0x8009100D | SSPI.CRYPT_E_ISSUER_SERIALNUMBER | Invalid issuer or serial number. | |
| 0x8009100E | SSPI.CRYPT_E_SIGNER_NOT_FOUND | Cannot find the original signer. | |
| 0x8009100F | SSPI.CRYPT_E_ATTRIBUTES_MISSING | The cryptographic message does not contain all of the requested attributes. | |
| 0x80091010 | SSPI.CRYPT_E_STREAM_MSG_NOT_READY | The streamed cryptographic message is not ready to return data. | |
| 0x80091011 | SSPI.CRYPT_E_STREAM_INSUFFICIENT_DATA | The streamed cryptographic message requires more data to complete the decode operation. | |
| 0x80092001 | SSPI.CRYPT_E_BAD_LEN | The length specified for the output data was insufficient. | |
| 0x80092002 | SSPI.CRYPT_E_BAD_ENCODE | An error occurred during the encode or decode operation. | |
| 0x80092003 | SSPI.CRYPT_E_FILE_ERROR | An error occurred while reading or writing to a file. | |
| 0x80092004 | SSPI.CRYPT_E_NOT_FOUND | Cannot find object or property. | |
| 0x80092005 | SSPI.CRYPT_E_EXISTS | The object or property already exists. | |
| 0x80092006 | SSPI.CRYPT_E_NO_PROVIDER | No provider was specified for the store or object. | |
| 0x80092007 | SSPI.CRYPT_E_SELF_SIGNED | The specified certificate is self-signed. | |
| 0x80092008 | SSPI.CRYPT_E_DELETED_PREV | The previous certificate or certificate revocation list (CRL) context was deleted. | |
| 0x80092009 | SSPI.CRYPT_E_NO_MATCH | Cannot find the requested object. | |
| 0x8009200A | SSPI.CRYPT_E_UNEXPECTED_MSG_TYPE | The certificate does not have a property that references a private key. | |
| 0x8009200B | SSPI.CRYPT_E_NO_KEY_PROPERTY | Cannot find the certificate and private key for decryption. | |
| 0x8009200C | SSPI.CRYPT_E_NO_DECRYPT_CERT | Cannot find the certificate and private key to use for decryption. | |
| 0x8009200D | SSPI.CRYPT_E_BAD_MSG | Not a cryptographic message or the cryptographic message is not formatted correctly. | |
| 0x8009200E | SSPI.CRYPT_E_NO_SIGNER | The signed cryptographic message does not have a signer for the specified signer index. | |
| 0x8009200F | SSPI.CRYPT_E_PENDING_CLOSE | Final closure is pending until additional frees or closes. | |
| 0x80092010 | SSPI.CRYPT_E_REVOKED | The certificate is revoked. | |
| 0x80092011 | SSPI.CRYPT_E_NO_REVOCATION_DLL | No DLL or exported function was found to verify revocation. | |
| 0x80092012 | SSPI.CRYPT_E_NO_REVOCATION_CHECK | The revocation function was unable to check revocation for the certificate. | |
| 0x80092013 | SSPI.CRYPT_E_REVOCATION_OFFLINE | The revocation function was unable to check revocation because the revocation server was offline. | |
| 0x80092014 | SSPI.CRYPT_E_NOT_IN_REVOCATION_DATABASE | The certificate is not in the revocation server's database. | |
| 0x80092020 | SSPI.CRYPT_E_INVALID_NUMERIC_STRING | The string contains a non-numeric character. | |
| 0x80092021 | SSPI.CRYPT_E_INVALID_PRINTABLE_STRING | The string contains a nonprintable character. | |
| 0x80092022 | SSPI.CRYPT_E_INVALID_IA5_STRING | The string contains a character not in the 7-bit ASCII character set. | |
| 0x80092023 | SSPI.CRYPT_E_INVALID_X500_STRING | The string contains an invalid X500 name attribute key, object identifier (OID), value, or delimiter. | |
| 0x80092024 | SSPI.CRYPT_E_NOT_CHAR_STRING | The dwValueType for the CERT_NAME_VALUE is not one of the character strings. Most likely it is either a CERT_RDN_ENCODED_BLOB or CERT_TDN_OCTED_STRING. | |
| 0x80092025 | SSPI.CRYPT_E_FILERESIZED | The Put operation cannot continue. The file needs to be resized. However, there is already a signature present. A complete signing operation must be done. | |
| 0x80092026 | SSPI.CRYPT_E_SECURITY_SETTINGS | The cryptographic operation failed due to a local security option setting. | |
| 0x80092027 | SSPI.CRYPT_E_NO_VERIFY_USAGE_DLL | No DLL or exported function was found to verify subject usage. | |
| 0x80092028 | SSPI.CRYPT_E_NO_VERIFY_USAGE_CHECK | The called function was unable to perform a usage check on the subject. | |
| 0x80092029 | SSPI.CRYPT_E_VERIFY_USAGE_OFFLINE | The called function was unable to complete the usage check because the server was offline. | |
| 0x8009202A | SSPI.CRYPT_E_NOT_IN_CTL | The subject was not found in a certificate trust list (CTL). | |
| 0x8009202B | SSPI.CRYPT_E_NO_TRUSTED_SIGNER | None of the signers of the cryptographic message or certificate trust list is trusted. | |
| 0x8009202C | SSPI.CRYPT_E_MISSING_PUBKEY_PARA | The public key's algorithm parameters are missing. | |
| 0x80093000 | SSPI.CRYPT_E_OSS_ERROR | OSS Certificate encode/decode error code base. | |
| 0x80093001 | SSPI.OSS_MORE_BUF | OSS ASN.1 Error: Output Buffer is too small. | |
| 0x80093002 | SSPI.OSS_NEGATIVE_UINTEGER | OSS ASN.1 Error: Signed integer is encoded as a unsigned integer. | |
| 0x80093003 | SSPI.OSS_PDU_RANGE | OSS ASN.1 Error: Unknown ASN.1 data type. | |
| 0x80093004 | SSPI.OSS_MORE_INPUT | OSS ASN.1 Error: Output buffer is too small; the decoded data has been truncated. | |
| 0x80093005 | SSPI.OSS_DATA_ERROR | OSS ASN.1 Error: Invalid data. | |
| 0x80093006 | SSPI.OSS_BAD_ARG | OSS ASN.1 Error: Invalid argument. | |
| 0x80093007 | SSPI.OSS_BAD_VERSION | OSS ASN.1 Error: Encode/Decode version mismatch. | |
| 0x80093008 | SSPI.OSS_OUT_MEMORY | OSS ASN.1 Error: Out of memory. | |
| 0x80093009 | SSPI.OSS_PDU_MISMATCH | OSS ASN.1 Error: Encode/Decode error. | |
| 0x8009300A | SSPI.OSS_LIMITED | OSS ASN.1 Error: Internal error. | |
| 0x8009300B | SSPI.OSS_BAD_PTR | OSS ASN.1 Error: Invalid data. | |
| 0x8009300C | SSPI.OSS_BAD_TIME | OSS ASN.1 Error: Invalid data. | |
| 0x8009300D | SSPI.OSS_INDEFINITE_NOT_SUPPORTED | OSS ASN.1 Error: Unsupported BER indefinite-length encoding. | |
| 0x8009300E | SSPI.OSS_MEM_ERROR | OSS ASN.1 Error: Access violation. | |
| 0x8009300F | SSPI.OSS_BAD_TABLE | OSS ASN.1 Error: Invalid data. | |
| 0x80093010 | SSPI.OSS_TOO_LONG | OSS ASN.1 Error: Invalid data. | |
| 0x80093011 | SSPI.OSS_CONSTRAINT_VIOLATED | OSS ASN.1 Error: Invalid data. | |
| 0x80093012 | SSPI.OSS_FATAL_ERROR | OSS ASN.1 Error: Internal error. | |
| 0x80093013 | SSPI.OSS_ACCESS_SERIALIZATION_ERROR | OSS ASN.1 Error: Multithreading conflict. | |
| 0x80093014 | SSPI.OSS_NULL_TBL | OSS ASN.1 Error: Invalid data. | |
| 0x80093015 | SSPI.OSS_NULL_FCN | OSS ASN.1 Error: Invalid data. | |
| 0x80093016 | SSPI.OSS_BAD_ENCRULES | OSS ASN.1 Error: Invalid data. | |
| 0x80093017 | SSPI.OSS_UNAVAIL_ENCRULES | OSS ASN.1 Error: Encode/Decode function not implemented. | |
| 0x80093018 | SSPI.OSS_CANT_OPEN_TRACE_WINDOW | OSS ASN.1 Error: Trace file error. | |
| 0x80093019 | SSPI.OSS_UNIMPLEMENTED | OSS ASN.1 Error: Function not implemented. | |
| 0x8009301A | SSPI.OSS_OID_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x8009301B | SSPI.OSS_CANT_OPEN_TRACE_FILE | OSS ASN.1 Error: Trace file error. | |
| 0x8009301C | SSPI.OSS_TRACE_FILE_ALREADY_OPEN | OSS ASN.1 Error: Trace file error. | |
| 0x8009301D | SSPI.OSS_TABLE_MISMATCH | OSS ASN.1 Error: Invalid data. | |
| 0x8009301E | SSPI.OSS_TYPE_NOT_SUPPORTED | OSS ASN.1 Error: Invalid data. | |
| 0x8009301F | SSPI.OSS_REAL_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093020 | SSPI.OSS_REAL_CODE_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093021 | SSPI.OSS_OUT_OF_RANGE | OSS ASN.1 Error: Program link error. | |
| 0x80093022 | SSPI.OSS_COPIER_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093023 | SSPI.OSS_CONSTRAINT_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093024 | SSPI.OSS_COMPARATOR_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093025 | SSPI.OSS_COMPARATOR_CODE_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093026 | SSPI.OSS_MEM_MGR_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093027 | SSPI.OSS_PDV_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093028 | SSPI.OSS_PDV_CODE_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x80093029 | SSPI.OSS_API_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x8009302A | SSPI.OSS_BERDER_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x8009302B | SSPI.OSS_PER_DLL_NOT_LINKED | OSS ASN.1 Error: Program link error. | |
| 0x8009302C | SSPI.OSS_OPEN_TYPE_ERROR | OSS ASN.1 Error: Program link error. | |
| 0x8009302D | SSPI.OSS_MUTEX_NOT_CREATED | OSS ASN.1 Error: System resource error. | |
| 0x8009302E | SSPI.OSS_CANT_CLOSE_TRACE_FILE | OSS ASN.1 Error: Trace file error. | |
| 0x80093100 | SSPI.CRYPT_E_ASN1_ERROR | ASN1 Certificate encode/decode error code base. | |
| 0x80093101 | SSPI.CRYPT_E_ASN1_INTERNAL | ASN1 internal encode or decode error. | |
| 0x80093102 | SSPI.CRYPT_E_ASN1_EOD | ASN1 unexpected end of data. | |
| 0x80093103 | SSPI.CRYPT_E_ASN1_CORRUPT | ASN1 corrupted data. | |
| 0x80093104 | SSPI.CRYPT_E_ASN1_LARGE | ASN1 value too large. | |
| 0x80093105 | SSPI.CRYPT_E_ASN1_CONSTRAINT | ASN1 constraint violated. | |
| 0x80093106 | SSPI.CRYPT_E_ASN1_MEMORY | ASN1 out of memory. | |
| 0x80093107 | SSPI.CRYPT_E_ASN1_OVERFLOW | ASN1 buffer overflow. | |
| 0x80093108 | SSPI.CRYPT_E_ASN1_BADPDU | ASN1 function not supported for this protocol data unit (PDU). | |
| 0x80093109 | SSPI.CRYPT_E_ASN1_BADARGS | ASN1 bad arguments to function call. | |
| 0x8009310A | SSPI.CRYPT_E_ASN1_BADREAL | ASN1 bad real value. | |
| 0x8009310B | SSPI.CRYPT_E_ASN1_BADTAG | ASN1 bad tag value met. | |
| 0x8009310C | SSPI.CRYPT_E_ASN1_CHOICE | ASN1 bad choice value. | |
| 0x8009310D | SSPI.CRYPT_E_ASN1_RULE | ASN1 bad encoding rule. | |
| 0x8009310E | SSPI.CRYPT_E_ASN1_UTF8 | ASN1 bad Unicode (UTF8). | |
| 0x80093133 | SSPI.CRYPT_E_ASN1_PDU_TYPE | ASN1 bad PDU type. | |
| 0x80093134 | SSPI.CRYPT_E_ASN1_NYI | ASN1 not yet implemented. | |
| 0x80093201 | SSPI.CRYPT_E_ASN1_EXTENDED | ASN1 skipped unknown extensions. | |
| 0x80093202 | SSPI.CRYPT_E_ASN1_NOEOD | ASN1 end of data expected. | |
| 0x80094001 | SSPI.CERTSRV_E_BAD_REQUESTSUBJECT | The request subject name is invalid or too long. | |
| 0x80094002 | SSPI.CERTSRV_E_NO_REQUEST | The request does not exist. | |
| 0x80094003 | SSPI.CERTSRV_E_BAD_REQUESTSTATUS | The request's current status does not allow this operation. | |
| 0x80094004 | SSPI.CERTSRV_E_PROPERTY_EMPTY | The requested property value is empty. | |
| 0x80094005 | SSPI.CERTSRV_E_INVALID_CA_CERTIFICATE | The CA's certificate contains invalid data. | |
| 0x80094006 | SSPI.CERTSRV_E_SERVER_SUSPENDED | Certificate service has been suspended for a database restore operation. | |
| 0x80094007 | SSPI.CERTSRV_E_ENCODING_LENGTH | The certificate contains an encoded length that is potentially incompatible with older enrollment software. | |
| 0x80094008 | SSPI.CERTSRV_E_ROLECONFLICT | The operation is denied. The user has multiple roles assigned, and the CA is configured to enforce role separation. | |
| 0x80094009 | SSPI.CERTSRV_E_RESTRICTEDOFFICER | The operation is denied. It can only be performed by a certificate manager that is allowed to manage certificates for the current requester. | |
| 0x8009400A | SSPI.CERTSRV_E_KEY_ARCHIVAL_NOT_CONFIGURED | Cannot archive private key. The CA is not configured for key archival. | |
| 0x8009400B | SSPI.CERTSRV_E_NO_VALID_KRA | Cannot archive private key. The CA could not verify one or more key recovery certificates. | |
| 0x8009400C | SSPI.CERTSRV_E_BAD_REQUEST_KEY_ARCHIVAL | The request is incorrectly formatted. The encrypted private key must be in an unauthenticated attribute in an outermost signature. | |
| 0x8009400D | SSPI.CERTSRV_E_NO_CAADMIN_DEFINED | At least one security principal must have the permission to manage this CA. | |
| 0x8009400E | SSPI.CERTSRV_E_BAD_RENEWAL_CERT_ATTRIBUTE | The request contains an invalid renewal certificate attribute. | |
| 0x8009400F | SSPI.CERTSRV_E_NO_DB_SESSIONS | An attempt was made to open a CA database session, but there are already too many active sessions. The server needs to be configured to allow additional sessions. | |
| 0x80094010 | SSPI.CERTSRV_E_ALIGNMENT_FAULT | A memory reference caused a data alignment fault. | |
| 0x80094011 | SSPI.CERTSRV_E_ENROLL_DENIED | The permissions on this CA do not allow the current user to enroll for certificates. | |
| 0x80094012 | SSPI.CERTSRV_E_TEMPLATE_DENIED | The permissions on the certificate template do not allow the current user to enroll for this type of certificate. | |
| 0x80094013 | SSPI.CERTSRV_E_DOWNLEVEL_DC_SSL_OR_UPGRADE | The contacted domain controller cannot support signed Lightweight Directory Access Protocol (LDAP) traffic. Update the domain controller or configure Certificate Services to use SSL for Active Directory access. | |
| 0x80094800 | SSPI.CERTSRV_E_UNSUPPORTED_CERT_TYPE | The requested certificate template is not supported by this CA. | |
| 0x80094801 | SSPI.CERTSRV_E_NO_CERT_TYPE | The request contains no certificate template information. | |
| 0x80094802 | SSPI.CERTSRV_E_TEMPLATE_CONFLICT | The request contains conflicting template information. | |
| 0x80094803 | SSPI.CERTSRV_E_SUBJECT_ALT_NAME_REQUIRED | The request is missing a required Subject Alternate name extension. | |
| 0x80094804 | SSPI.CERTSRV_E_ARCHIVED_KEY_REQUIRED | The request is missing a required private key for archival by the server. | |
| 0x80094805 | SSPI.CERTSRV_E_SMIME_REQUIRED | The request is missing a required SMIME capabilities extension. | |
| 0x80094806 | SSPI.CERTSRV_E_BAD_RENEWAL_SUBJECT | The request was made on behalf of a subject other than the caller. The certificate template must be configured to require at least one signature to authorize the request. | |
| 0x80094807 | SSPI.CERTSRV_E_BAD_TEMPLATE_VERSION | The request template version is newer than the supported template version. | |
| 0x80094808 | SSPI.CERTSRV_E_TEMPLATE_POLICY_REQUIRED | The template is missing a required signature policy attribute. | |
| 0x80094809 | SSPI.CERTSRV_E_SIGNATURE_POLICY_REQUIRED | The request is missing required signature policy information. | |
| 0x8009480A | SSPI.CERTSRV_E_SIGNATURE_COUNT | The request is missing one or more required signatures. | |
| 0x8009480B | SSPI.CERTSRV_E_SIGNATURE_REJECTED | One or more signatures did not include the required application or issuance policies. The request is missing one or more required valid signatures. | |
| 0x8009480C | SSPI.CERTSRV_E_ISSUANCE_POLICY_REQUIRED | The request is missing one or more required signature issuance policies. | |
| 0x8009480D | SSPI.CERTSRV_E_SUBJECT_UPN_REQUIRED | The UPN is unavailable and cannot be added to the Subject Alternate name. | |
| 0x8009480E | SSPI.CERTSRV_E_SUBJECT_DIRECTORY_GUID_REQUIRED | The Active Directory GUID is unavailable and cannot be added to the Subject Alternate name. | |
| 0x8009480F | SSPI.CERTSRV_E_SUBJECT_DNS_REQUIRED | The Domain Name System (DNS) name is unavailable and cannot be added to the Subject Alternate name. | |
| 0x80094810 | SSPI.CERTSRV_E_ARCHIVED_KEY_UNEXPECTED | The request includes a private key for archival by the server, but key archival is not enabled for the specified certificate template. | |
| 0x80094811 | SSPI.CERTSRV_E_KEY_LENGTH | The public key does not meet the minimum size required by the specified certificate template. | |
| 0x80094812 | SSPI.CERTSRV_E_SUBJECT_EMAIL_REQUIRED | The email name is unavailable and cannot be added to the Subject or Subject Alternate name. | |
| 0x80094813 | SSPI.CERTSRV_E_UNKNOWN_CERT_TYPE | One or more certificate templates to be enabled on this CA could not be found. | |
| 0x80094814 | SSPI.CERTSRV_E_CERT_TYPE_OVERLAP | The certificate template renewal period is longer than the certificate validity period. The template should be reconfigured or the CA certificate renewed. | |
| 0x80094815 | SSPI.CERTSRV_E_TOO_MANY_SIGNATURES | The certificate template requires too many return authorization (RA) signatures. Only one RA signature is allowed. | |
| 0x80094816 | SSPI.CERTSRV_E_RENEWAL_BAD_PUBLIC_KEY | The key used in a renewal request does not match one of the certificates being renewed. | |
| 0x80094817 | SSPI.CERTSRV_E_INVALID_EK | The endorsement key certificate is not valid. | |
| 0x8009481A | SSPI.CERTSRV_E_KEY_ATTESTATION | Key attestation did not succeed. | |
| 0x80095000 | SSPI.XENROLL_E_KEY_NOT_EXPORTABLE | The key is not exportable. | |
| 0x80095001 | SSPI.XENROLL_E_CANNOT_ADD_ROOT_CERT | You cannot add the root CA certificate into your local store. | |
| 0x80095002 | SSPI.XENROLL_E_RESPONSE_KA_HASH_NOT_FOUND | The key archival hash attribute was not found in the response. | |
| 0x80095003 | SSPI.XENROLL_E_RESPONSE_UNEXPECTED_KA_HASH | An unexpected key archival hash attribute was found in the response. | |
| 0x80095004 | SSPI.XENROLL_E_RESPONSE_KA_HASH_MISMATCH | There is a key archival hash mismatch between the request and the response. | |
| 0x80095005 | SSPI.XENROLL_E_KEYSPEC_SMIME_MISMATCH | Signing certificate cannot include SMIME extension. | |
| 0x80096001 | SSPI.TRUST_E_SYSTEM_ERROR | A system-level error occurred while verifying trust. | |
| 0x80096002 | SSPI.TRUST_E_NO_SIGNER_CERT | The certificate for the signer of the message is invalid or not found. | |
| 0x80096003 | SSPI.TRUST_E_COUNTER_SIGNER | One of the counter signatures was invalid. | |
| 0x80096004 | SSPI.TRUST_E_CERT_SIGNATURE | The signature of the certificate cannot be verified. | |
| 0x80096005 | SSPI.TRUST_E_TIME_STAMP | The time-stamp signature or certificate could not be verified or is malformed. | |
| 0x80096010 | SSPI.TRUST_E_BAD_DIGEST | The digital signature of the object did not verify. | |
| 0x80096019 | SSPI.TRUST_E_BASIC_CONSTRAINTS | A certificate's basic constraint extension has not been observed. | |
| 0x8009601E | SSPI.TRUST_E_FINANCIAL_CRITERIA | The certificate does not meet or contain the Authenticode financial extensions. | |
| 0x80097001 | SSPI.MSSIPOTF_E_OUTOFMEMRANGE | Tried to reference a part of the file outside the proper range. | |
| 0x80097002 | SSPI.MSSIPOTF_E_CANTGETOBJECT | Could not retrieve an object from the file. | |
| 0x80097003 | SSPI.MSSIPOTF_E_NOHEADTABLE | Could not find the head table in the file. | |
| 0x80097004 | SSPI.MSSIPOTF_E_BAD_MAGICNUMBER | The magic number in the head table is incorrect. | |
| 0x80097005 | SSPI.MSSIPOTF_E_BAD_OFFSET_TABLE | The offset table has incorrect values. | |
| 0x80097006 | SSPI.MSSIPOTF_E_TABLE_TAGORDER | Duplicate table tags or the tags are out of alphabetical order. | |
| 0x80097007 | SSPI.MSSIPOTF_E_TABLE_LONGWORD | A table does not start on a long word boundary. | |
| 0x80097008 | SSPI.MSSIPOTF_E_BAD_FIRST_TABLE_PLACEMENT | First table does not appear after header information. | |
| 0x80097009 | SSPI.MSSIPOTF_E_TABLES_OVERLAP | Two or more tables overlap. | |
| 0x8009700A | SSPI.MSSIPOTF_E_TABLE_PADBYTES | Too many pad bytes between tables, or pad bytes are not 0. | |
| 0x8009700B | SSPI.MSSIPOTF_E_FILETOOSMALL | File is too small to contain the last table. | |
| 0x8009700C | SSPI.MSSIPOTF_E_TABLE_CHECKSUM | A table checksum is incorrect. | |
| 0x8009700D | SSPI.MSSIPOTF_E_FILE_CHECKSUM | The file checksum is incorrect. | |
| 0x80097010 | SSPI.MSSIPOTF_E_FAILED_POLICY | The signature does not have the correct attributes for the policy. | |
| 0x80097011 | SSPI.MSSIPOTF_E_FAILED_HINTS_CHECK | The file did not pass the hints check. | |
| 0x80097012 | SSPI.MSSIPOTF_E_NOT_OPENTYPE | The file is not an OpenType file. | |
| 0x80097013 | SSPI.MSSIPOTF_E_FILE | Failed on a file operation (such as open, map, read, or write). | |
| 0x80097014 | SSPI.MSSIPOTF_E_CRYPT | A call to a CryptoAPI function failed. | |
| 0x80097015 | SSPI.MSSIPOTF_E_BADVERSION | There is a bad version number in the file. | |
| 0x80097016 | SSPI.MSSIPOTF_E_DSIG_STRUCTURE | The structure of the DSIG table is incorrect. | |
| 0x80097017 | SSPI.MSSIPOTF_E_PCONST_CHECK | A check failed in a partially constant table. | |
| 0x80097018 | SSPI.MSSIPOTF_E_STRUCTURE | Some kind of structural error. | |
| 0x80097019 | SSPI.ERROR_CRED_REQUIRES_CONFIRMATION | The requested credential requires confirmation. | |
| 0xC0090001 | SSPI.ERROR_AUDITING_DISABLED | The specified event is currently not being audited. | |
| 0xC0090002 | SSPI.ERROR_ALL_SIDS_FILTERED | The SID filtering operation removed all SIDs. | |
| 0xC0090003 | SSPI.ERROR_BIZRULES_NOT_ENABLED | Business rule scripts are disabled for the calling application. |
This document is partially derived from work with following license.
/*This file is a derivate of a source file that has following license (below). ======================================================================== The MIT License (MIT) Copyright (c) Microsoft Corporation Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ======================================================================*/