000020014 - Keon Web PassPort web server hanging with PSD download  requires system reboot

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000020014
Applies ToMicrosoft Windows 2000 SP2
Microsoft Internet Information Server (IIS) 5.0
Lightweight Directory Access Protocol (LDAP)
Trying to restart web server protected by Keon Web PassPort
IssueKeon Web PassPort web server hanging with PSD download, requires system reboot
Keon Web PassPort hangs when downloading virtual cards
CauseThe LDAP repository access management code implements a connection pool of connections to the LDAP directory. During initialization of the DLL, this pool is initialized to contain 8 connections. Once the connection pool is initialized and active, it is assumed to be available for the lifetime of the server.

The problem is that there is a bug in the CKWALdapGetPsds (kwaldapram\ldapgetpsds.cpp) class. Management of LDAP connection is not handled correctly if an error is returned after doing an LDAP operation. Once all connections are used up from pool, the IIS Server will hang during the PSD download process.
ResolutionTo correct this problem, contact RSA Security Technical Support and request hot fix tst00032162. This hot fix contains a new kwaldapram.dll binary. This binary will continue to assume the connection pool has active connections and always puts the connection back on the connection pool even after hard errors. It will also allow processes waiting on resources to time out rather than block forever.

To install the hot fix, perform the following steps:

1. Shut down your Keon Web PassPort Web server

2.  Rename the original <Web PassPort 1.1>\Server\Bin\Ramplugins\kwaldapram.dll file to something else

3. Copy the updated kwaldapram.dll file to the same directory

4. Restart your Web server
Legacy Article IDa13770