RSA Authentication Manager 8.x requires more disk space
Originally Published: 2016-06-20
Article Number
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.1, 8.2 and above, all AM 8.x
Issue
Resolution
Below are categories that are likely to consume disk space.
Log Archival Data
An RSA Authentication Manager 8.1 primary instance will archive runtime (i. e., authentication), administrative and system activity to /opt/rsa/am/Log_archive. This is configurable from the Security Console by navigating to Administration > Archive Audit Logs > Schedule Log Archival.
NOTE: Information on log settings and log archives can be found in Chapter 14 (starting from page 346) of the RSA Authentication Manager 8.1 Administrator’s Guide.
Where Operating System Access (SSH) is enabled, a secure FTP client could be used to copy this archive data and signature files off the authentication manager instance, reducing disk space.
NOTE: Information on log settings and log archives can be found in Chapter 14 (starting from page 346) of the RSA Authentication Manager 8.1 Administrator’s Guide.
Where Operating System Access (SSH) is enabled, a secure FTP client could be used to copy this archive data and signature files off the authentication manager instance, reducing disk space.
Authentication Manager Backups
An administrator can configure the Operations Console (Maintenance > Backup and Restore > Schedule Backups) to store the backup files locally in /opt/rsa/am/backups. Where the backups are stored locally in the Authentication Manager, it is advised that a maximum number of archived backups is four. This is the default value.
Where Operating System Access (SSH) is enabled, a secure FTP client could be used to copy these backup files from the Authentication Manager instance, reducing disk space.
IMPORTANT: Revise the backup configuration or store the backups in a different location other than the local drive of the Authentication Manager primary instance.
Where Operating System Access (SSH) is enabled, a secure FTP client could be used to copy these backup files from the Authentication Manager instance, reducing disk space.
IMPORTANT: Revise the backup configuration or store the backups in a different location other than the local drive of the Authentication Manager primary instance.
RADIUS Log Data
RSA RADIUS creates a new log file at the beginning of each new day where the log filename is based on that day's date. For example, a log written on 15 June 2016 would be named 20160615.log.
Authentication Manager Log Data
The Authentication Manager instance has a number of running software components and the log files for these components are stored in /opt/rsa/am/server/logs.
Cleaning Up Authentication Manager Log Data
This task generates a new set of log files for the Authentication Manager instance and may require change control
The following steps can be used to stop Authentication Manager services, package up the log files in /opt/rsa/am/server/logs into an archive file, remove the log files and start up authentication manager services where new log files are created.
The following steps can be used to stop Authentication Manager services, package up the log files in /opt/rsa/am/server/logs into an archive file, remove the log files and start up authentication manager services where new log files are created.
- Stop the RSA Authentication Manager services with the command:
/opt/rsa/am/server/rsaserv stop all
- Tar up the /opt/rsa/am/server/logs folder with the command
tar -czvf /tmp/RSA-Logfiles.tgz /opt/rsa/am/server/logs
- Check the tgz file contains the log files with the command
tar -tzvf /tmp/RSA-Logfiles.tgz
- Where Operating System Access (SSH) has been enabled in the Operations Console use a secure FTP client to copy /tmp/RSA-Logfiles.tgz to a secure location.
- Remove the log files from /opt/rsa/am/server/logs with the command
rm -rf /opt/rsa/am/server/logs/*log*
- Start up the RSA Authentication Manager services with the command
/opt/rsa/am/server/rsaserv start all
Finding Large Files
Running the following command as rsaadmin will find log files that are larger than 2MB:
sudo find /opt/rsa/am/ -size +2M -name *.log -type f –print | moreWhen prompted for a password enter the password for the rsaadmin account.
Related Articles
Examining the Disk Space Usage on Authentication Manager 8.x Number of Views RSA Authentication Manager 8.x: Large Disk Space Used by Logs Number of Views Running out of disk space on KCA system Number of Views How to enable Verbose logging without consuming your Disk Space on RSA Authentication Manager 8.x Number of Views Running out of disk space when using RMAN in RSA Identity Governance & Lifecycle Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.7 SP2 Setup and Configuration Guide An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x
Don't see what you're looking for?
