The following errors are filling up disk in OpenLDAP logs located at
/opt/apigee/var/log/apigee-openldap/apigee-openldap.log
5919e670 <= bdb_equality_candidates: (o) not indexed 5919e670 <= bdb_equality_candidates: (labeledURI) not indexed 599760bc <= bdb_equality_candidates: (entryUUID) not indexed 599760bc <= bdb_inequality_candidates: (entryCSN) not indexed
Solution:
1. check to see what is currently configured for indexing:
ldapsearch -H ldap://localhost:10389 -xLLL -b cn=config -D cn=admin,cn=config -W olcDatabase={2}bdb olcDbIndex
The output may look similar to the following:
dn: olcDatabase={2}bdb,cn=config olcDbIndex: objectClass pres,eq olcDbIndex: cn pres,eq,sub olcDbIndex: uid pres,eq,sub olcDbIndex: uidNumber pres,eq olcDbIndex: gidNumber pres,eq olcDbIndex: mail pres,eq,sub olcDbIndex: ou pres,eq,sub olcDbIndex: loginShell pres,eq olcDbIndex: sn pres,eq,sub olcDbIndex: givenName pres,eq,sub olcDbIndex: memberUid pres,eq,sub olcDbIndex: nisMapName pres,eq,sub olcDbIndex: nisMapEntry pres,eq,sub olcDbIndex: roleOccupant eq
2. Create a new file /tmp/new_index.ldif with the following content:
dn: olcDatabase={2}bdb,cn=config changetype:modify add: olcDbIndex olcDbIndex: o eq olcDbIndex: labeledURI eq olcDbIndex: entryUUID eq olcDbIndex: entryCSN eq
3. Run the following ldapmodify to update the indexing configuration to add the indexing for each missing entry:
ldapmodify -x -H ldap://localhost:10389 -D "cn=admin,cn=config" -W -f /tmp/new_index.ldif
I'm having this exact issue. I've followed the steps on both of the ldap hosts; master and the replica. I'm not seeing anything in the logs on either host that shows the logs are being processed. Should I restart the components? Will the two hosts just start consuming and clearing the log.00000 files over time?