|Applies To||ClearTrust 5.5.3|
Agent connection to the dispatchers and aservers is done via authenticated SSL.
A webserver agent's SSL certificate has expired.
|Issue||Java OutOfMemoryErrors appear in the dispatcher logs|
ClearTrust agents will be unable to connect to the dispatcher to retrieve a list of aservers.
Users will receive HTTP 500 errors when they try to access protected content.
|Cause||Due to a problem with the way that the dispatcher handled SSL connections, the agent with the expired certificate creates several hundred connetions to the dispatcher.|
These connection are never properly torn down, and the dispatcher eventually simply runs out of resources - in this case memory.
|Resolution||This issue has been fixed in hotfix 18.104.22.168 for ClearTrust. Please contact RSA Technical Support to request this hotifx.|
|Legacy Article ID||a35504|