I'm trying to configure IPsec communications via group policy - I've enabled Server (Request Security) and am getting a lot of these messages. I've been able to find little information on why the "Local Computer" would be timing out. Thanks for any assistance! Drew Code Snippet Log Name: SecuritySource: Microsoft-Windows-Security-AuditingDate: 9/9/2008 10:52:35 AMEvent ID: 4653Task Category: IPsec Main ModeLevel: InformationKeywords: Audit FailureUser: N/AComputer: drewd820.vt1.xxx.comDescription:An IPsec Main Mode negotiation failed. Local Endpoint:Local Principal Name:-Network Address:Keying Module Port:500 Remote Endpoint:Principal Name:-Network Address:Keying Module Port:500 Additional Information:Keying Module Name:IKEAuthentication Method:Unknown authenticationRole:InitiatorImpersonation State:Not enabledMain Mode Filter ID:71864 Failure Information:Failure Point:Local computerFailure Reason:Negotiation timed out State:Sent first (SA) payloadInitiator Cookie:2a63dc067f907496Responder Cookie:0000000000000000Event Xml:<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-a5ba-3e3b0328c30d}" /> <EventID>4653</EventID> <Version>0</Version> <Level>0</Level> <Task>12547</Task> <Opcode>0</Opcode> <Keywords>0x8010000000000000</Keywords> <TimeCreated SystemTime="2008-09-09T14:52:35.846Z" /> <EventRecordID>135396</EventRecordID> <Correlation /> <Execution ProcessID="736" ThreadID="5556" /> <Channel>Security</Channel> <Computer>drewd820.vt1.xxx.com</Computer> <Security /> </System> <EventData> <Data Name="LocalMMPrincipalName">-</Data> <Data Name="RemoteMMPrincipalName">-</Data> <Data Name="LocalAddress"> </Data> <Data Name="LocalKeyModPort">500</Data> <Data Name="RemoteAddress"> </Data> <Data Name="RemoteKeyModPort">500</Data> <Data Name="KeyModName">%%8222</Data> <Data Name="FailurePoint">%%8199</Data> <Data Name="FailureReason">Negotiation timed out</Data> <Data Name="MMAuthMethod">%%8194</Data> <Data Name="State">%%8202</Data> <Data Name="Role">%%8205</Data> <Data Name="MMImpersonationState">%%8217</Data> <Data Name="MMFilterID">71864</Data> <Data Name="InitiatorCookie">2a63dc067f907496</Data> <Data Name="ResponderCookie">0000000000000000</Data> </EventData></Event>

Hi, This message indicates negotiation is failed. Mostly, this issue is caused by setting up IPsec communications problem, the computer cannot receive message from server. To resolve this issue, we may need to capture the network packets from computers to troubleshoot. As analyze/troubleshoot this kind of issue may be time consuming, I'd like to recommend that you contact Microsoft Customer Support Service (CSS) for assistance so that this problem can be resolved efficiently. To obtain the phone numbers for specific technology request please take a look at the web site listed below: http://support.microsoft.com/default.aspx?scid=fh;EN-US;PHONENUMBERS If you are outside the US please see http://support.microsoft.com for regional support phone numbers.