Microsoft KB Archive/278000

= 1016 Security Audit Logged for Every Exchange 2000 Push Message Sent by Mobile Information Server =

Article ID: 278000

Article Last Modified on 10/28/2006

-

APPLIES TO


 * Microsoft Mobile Information Server 2001 Enterprise Edition

-



This article was previously published under Q278000





SYMPTOMS
When you are using Mobile Information Server to send &quot;Push&quot; notifications to Exchange 2000 users, the following event is logged in the Application log of the Exchange 2000 server for each Push message:

Event ID: 1016

Category: Logons

Source: MSExchangeIS Mailbox

Description: Windows 2000 User DOMAIN\ENTEVENTSOURCE logged on to User@domain.com mailbox, and is not the primary Windows 2000 account on this mailbox.



CAUSE
This behavior is by design. This behavior occurs as a result of the security auditing features of Exchange 2000. When a user who is not the primary account associated with a particular mailbox logs on to that mailbox, this event is logged to prevent unauthorized users from accessing private mailbox data.

Additional query words: exch2kp2w

Keywords: kbprb KB278000

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.