FIX: ISA Firewall Causes Handle Leak in LSASS

This article was previously published under Q331068
This article has been archived. It is offered "as is" and will no longer be updated.
Internet Security and Acceleration (ISA) Server Firewall service may slow down or stop responding to client requests.

This behavior occurs under the following configuration:
  • The internal clients are running the ISA Server Firewall client.

  • The ISA Server has access policies defined that require user authentication. This might be Protocol rules or Site and Content rules that apply to specific users or groups.
The ISA Server Firewall service causes a handle leak in the Local Security Authority (LSASS) process.

You can detect the leak by using the System Monitor (Perfmon) tool to analyze the Handle Counter for LSASS Process.
To resolve this problem, obtain the Update Rollup for ISA Server Services.For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
810493 INFO: Update Rollup for ISA Server Services
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

Article ID: 331068 - Last Review: 10/26/2013 17:44:48 - Revision: 1.3

  • Microsoft Internet Security and Acceleration Server 2000 Standard Edition
  • Microsoft Internet Security and Acceleration Server 2000 Service Pack 1
  • kbnosurvey kbarchive kbhotfixserver kbqfe kbqfe kbbug kbfix KB331068