Hi Dimitri, I can do, we already analyzed it once.
There is a loadbalancer checking the ldap protocol which seems to be seen as fail. Is there a check I can perform on the ldap ports to see if the service is available without generating the errors ? I will post a snippet later on if you have no clue. Thanks, Matt 2015-03-26 23:01 GMT+01:00 Dmitri Pal <d...@redhat.com>: > On 03/26/2015 05:37 PM, Matt . wrote: >> >> Hi Guys, >> >> I'm facing every day a fast filling log of: >> >> /var/log/krb5kdc.log >> /var/log/dirsrv/slapd-DOMAIN/access* >> >> I need to remove the files and restart ipa. The kerberos log is >> filling up most, the access logs are quite fast on 100MB and a new one >> is created. >> >> Now I do some LDAP loging/logout per day, servers that chedck if they >> are registered for SSSD so that it logs it is normal, but I want to >> get rid of it I guess. >> >> I'm throwing out I think about 6GB per day of logs, all loglevels are low. >> >> Any idea ? >> >> It's 3.x on CentOS 6.6 >> >> Any idea ? >> >> Thanks Matt >> > Do you have some services that are repeatedly doing something kerberos > related and failing? > I guess getting a snippet of the kerberos log would give some hint on what > is it logging all the time. > > -- > Thank you, > Dmitri Pal > > Sr. Engineering Manager IdM portfolio > Red Hat, Inc. > > -- > Manage your subscription for the Freeipa-users mailing list: > https://www.redhat.com/mailman/listinfo/freeipa-users > Go to http://freeipa.org for more info on the project -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project