AMT Notification Alert

This alert is preconfigured into the Intel AMT device (by default, this alert is logged into the event log). It is used to notify about configuration errors or an attempt to start a remote access connection.

It allows tracking various device failure codes which can assist local user tools or a remote IT administrator with resolving configuration errors which are reported in the fields of this alert. The Reason Code for the diagnostic alert is 0x2.

This alert is also generated when a user requests a remote connection. The event is issued when remote access and a user initiated trigger are already configured, whether the Intel AMT device is inside or outside the enterprise. The Reason Code for this alert is 0x3. This alert is available starting with Release 4.0.

Trap Definition

Specific Trap Info

Event Sensor Type

C1h (OEM Reserved)

Event Type

71h (OEM Discrete)

Event Offset

00h

Variable Binding Info

Event Source Type

58h (System MNG card)

Event Severity

02h (Information)

Sensor Device

FFh (NS)

Sensor Number

FFh (NS)

Entity

26h (Mgmt Device)

Entity Instance

61h (port #1 (LAN port)) or
62h (port #1 (WLAN port)) or
00h (NS)

EventData

AAh (EventData 2-5 valid),
NN (Report state, byte #0),
NN (Report state, byte #1),
NN (Report state, byte #2),
NN (Report state, byte #3)

Event Data Report State Details-Diagnostic Alert

#Byte

Name

Bits

Description

0

(EventData 2)

Version

0-3

Must be zero

0

(EventData 2)

Reason

4-7

2h – AMT Diagnostic

1

(EventData 3)

ReasonCode

 

0h – Certificate error
1h – TLS Handshake error.
2h – 802.1X error
3h – EAC error
4h… Fh – Reserved.

2-3

(EventData 4-5)

Reason Info

 

Data formatted according to Reason code

Reason Info Details

Reason

#Byte

Name

Bits

Description

Certificate error

0

Notification Code

0-7

0 – General certificate error

1 - Certificate expired

2 - Missing trusted root certificate

3 - Failed to validate certificate chain

4 - Certificate revoked

5 - RSA exponent too big

6 - RSA modulus too big

7 - Unsupported digest

8 - Distinguished name too long

9 - Key usage missing

10…255 - Reserved

1

Reserved

0-7

Reserved

TLS Handshake error

0

Notification Code

0-7

0 – General SSL handshake error

1…255 – Reserved

1

Reserved

0-7

Reserved

802.1X error

0

Notification Code

0-7

0 – General 802.1X error

1…255 – Reserved

1

Reserved

0-7

Reserved

EAC error

0

Notification Code

0-7

0 – General NAC error

1 - Attempt to get a posture while NAC is disabled in Intel AMT device.

3…255 – Reserved

1

Reserved

0-7

Reserved

Event Data Report State Details-User Initiated Alert

#Byte

Name

Bits

Description

0

(EventData 2)

Version

0-3

Must be zero

0

(EventData 2)

Reason

4-7

3h – User initiated alert

1

(EventData 3)

Reserved

0-7

Reserved

2-3

(EventData 4-5)

Reserved

0-7

Reserved

Remarks

A local service that wishes to receive an Intel AMT Notification alert should subscribe for an alert with a PolicyID field equal to 0x87.

Copyright © 2006-2022, Intel Corporation. All rights reserved.