Event ID 5453 — IPsec Service Initialization
Applies To: Windows Server 2008 R2
.jpg)
The IKE and AuthIP IPsec Keying Modules (IKEEXT) service must be running for Internet Protocol security (IPsec) to provide authentication and encryption services. This service implements the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) protocols. These keying modules support the authentication and key exchange features required by Internet Protocol security (IPsec).
When appropriate auditing events are enabled (https://go.microsoft.com/fwlink/?linkid=92666), Windows reports successes and failures in starting the service, or when the service stops operating due to a failure.
Event Details
| Product: | Windows Operating System |
| ID: | 5453 |
| Source: | Microsoft-Windows-Security-Auditing |
| Version: | 6.1 |
| Symbolic Name: | SE_AUDITID_ETW_IPSEC_BFE_IKEEXT_NOT_STARTED |
| Message: | An IPsec negotiation with a remote computer failed because the IKE and AuthIP IPsec Keying Modules (IKEEXT) service is not started. |
Resolve
Restart the IKE and AuthIP Keying Modules Service (IKEEXT) service
Windows logs an error if the IKE and AuthIP IPsec Keying Modules service or its driver fails to start, or if they unexpectedly terminate.
To restart the IKE and AuthIP IPsec Keying Modules service:
To perform this procedure, you must have membership in the local Administrators group, or you must have been delegated the appropriate authority.
- Restart the service. You can do this from a command prompt or from the Services Microsoft Management Console (MMC) snap-in. Do either of the following:
- Start an administrative command prompt. Click Start, click All Programs, click Accessories, right-click Command Prompt, and then click Run as administrator. At that command prompt, run the command net start ikeext.
- Click Start, type services.msc in the Start Search box, and then press ENTER. In the Name column of the Services snap-in, right-click IKE and AuthIP IPsec Keying Modules, and then click Start.
- If the attempt to restart the service fails, then restart the computer. This forces all related and dependent services to restart.
- If the error persists after the computer restarts, then the executable files for the driver or service might be corrupted, and the operating system must be reinstalled.
Verify
You can verify that the IKE and AuthIP IPsec Keying Modules (IKEEXT) service is running by using the Services Microsoft Management Console (MMC) snap-in or the net start command-line tool.
To verify that the IKE and AuthIP IPsec Keying Modules service is running:
Check the status by using the Services MMC snap-in
To perform this procedure, you must have membership in the local Administrators group, or you must have been delegated the appropriate authority.
- Click Start, type services.msc in the Start Search box, and then press ENTER.
- In the Services MMC snap-in, find IKE and AuthIP IPsec Keying Modules, and then confirm that Started appears in the Status column.
Check the status by using the net start command-line tool
- At a command prompt, type net start, and then verify that IKE and AuthIP IPsec Keying Modules is listed as one of the services currently running on the computer.