A memory leak occurs in the Wspsrv.exe process when you use the Negotiate (NTLM/Kerberos) delegation in ISA Server 2006

Consider the following scenario:

• In Microsoft Internet Security and Acceleration (ISA) Server 2006, you configure a Web publishing rule.
• You set the delegation to "Negotiate (NTLM/Kerberos)."

In this scenario, each request that is forwarded to the published Web server can leak dozens of bytes of memory in the Wspsrv.exe process. Depending on the number of forwarded requests, the leak causes the Wspsrv.exe process to increase the number of memory used. In this situation, the Wspsrv.exe process eventually stops responding and you have to restart the firewall service.

To resolve this problem, apply the hotfix rollup package that is described in the following Microsoft Knowledge Base article:

To work around this problem, use the NTLM delegation or the Kerberos constrained delegation.

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base: