I just love answering my own questions! 😉
So I found out that Apple now packages standard bdb tools with OS X Server. I sort of knew this already but I didn’t know how to use them or what they did. Looking closer, there’s a command called db_archive that will tell you which log files are no longer active. You can use this to automatically delete log files that aren’t needed or you can get a list of which ones are required for catastrophic failures. There are several good options here. Considering I don’t use the archive feature in WGM (I just backup the password server db and rely on replicas for the ldap information) I may start taking snapshots of the bdb files and archiving to the non-active log files to another volume so I can still use it for future db_recover commands as needed.
If anyone has good references for OD backup and maintenance best practices I could probably use a good refresher. It must be scriptable though. Also, if anyone can point me to more information on what each of the files in /var/db/openldap/openldap-data are and how they are used, please post them. I wish Apple provided more documentation on bdb. Even the technician I got through one of my escalated incidents using the Server Software Support: Select agreement said he hadn’t ever used the bdb tools included with OSXS.
.
.
Comments are closed