The /tmp directory is filling up with hundreds of ccache files even though very few users have actually logged into the server. The format of the file should be krb5cc_{UID} where UID is a numerical value. However, these files typically include non-numeric characters in the UID field.
Here’s a sample list.
-rw------- 1 user1 usergroup 7080 Sep 20 07:33 /tmp/krb5cc_08DoTB
-rw------- 1 user1 usergroup 5793 Sep 20 07:33 /tmp/krb5cc_0AFWzu
-rw------- 1 user1 usergroup 5149 Sep 20 07:33 /tmp/krb5cc_0AuYcN
The root cause of this problem is that when Authentication Services renews credentials a temporary file that was created doesn’t get cleaned up
Workaround:
All ccache files in the /tmp directory which contain non-numeric characters can be safely deleted.
Do not delete files where the UID portion of the filename is numeric only.
Resolution:
The following hotfix fixes the issue.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center