Event ID 613 – IPSec Policy Agent Started
Event ID 613 is logged when the IPSec Policy Agent starts running.
An example of how a 613 log looks:
IPSec Services started: %1
Policy Source: %2
Why does event ID 613 need to be monitored?
As IPsec supports network-level peer authentication, data confidentiality, data integrity and replay protection, it is prudent to monitor this event.
ADAudit Plus helps you avoid the GPOs monitoring complexities with real-time pre-configured reports and auditing of the changes along with alerts within a Domain & OU. The advanced Group Policy settings real-time audit reports highlight the elusive change details, and also provide the old and new values of the modified attributes.
Event 613 applies to the following operating systems:
- Windows Server 2000
- Windows 2003 and XP
Corresponding event ID in Windows 2008 and Windows Vista is 4709.