skip to Main Content

Exchange transaction logs growing rapidly

When the Exchange database transaction logs growing rapidly, it can be different issues. It mostly means that there are issues with one of the following: ActiveSync connections, mailboxes are corrupt on that database, or the database itself is corrupt. In this article, you will learn how to check ActiveSync connections and which of the user’s mailbox are the culprit.

Prerequisites before checking Exchange transaction logs

Log Parser 2.2

Download Log Parser 2.2 (Microsoft) or here (direct link). Install it on the Exchange Server if you don’t have it installed. Do that before proceeding to the next step. You also need Windows PowerShell 2.0 installed on the same machine, note that it is installed by default on Windows 7 & Windows 2008 R2 machines.

ActiveSyncReport

Download the following ActiveSyncReport.ps1 PowerShell script on your Exchange Server. Create a folder named scripts on the C:\ drive. Place the PowerShell script in the C:\scripts\ folder.

Exchange transaction logs growing rapidly PowerShell script in folder

Check why Exchange transaction logs growing rapidly

There are a couple of options when using the script. We are going to use the following options:

  • Hits greater than 1000
  • Isolating a single day

Run Exchange Management Shell as administrator. Change the directory to c:\scripts.

Hits greater than 1000

The following command will parse all the IIS Logs in the folder W3SVC1 and only report the hits by users & devices that are greater than 1000. Change the default IIS folder path if you have it placed on a different place then the default path.

Isolating a single day of hits

The following command will parse only the files that match the date 24-12-2019 in the folder W3SVC1 and only report the hits greater than 1000. Change the default IIS folder path if you have it placed on a different place then the default path.

After the export is completed, go to the output folder C:\EASReports. You will find four CSV files.

Exchange transaction logs growing rapidly results

Analyze why Exchange transaction logs growing rapidly

We are interested in the Multiple Files Minimum Hits of 1000 and 24-12-2019 Minimum Hits of 1000.

Usually, if a device is sending over 1000 requests per day, it is considered high usage. If the hits (requests) are above 1500, there could be an issue on the device or environment.

Exchange transaction logs growing rapidly CSV output

You can see that multiple users have more than 1500 hits.

Remove the Outlook configuration on the user’s device and rerun the ActiveSync script after a couple of days. You will see that the database transaction logs file is not growing rapidly anymore.

If you confirmed that the database transaction logs file is not growing rapidly anymore, configure the Outlook profile on the user’s device. Make sure to keep an eye and rerun the ActiveSync script the next days.

Keep reading: Mail.que file growing in Exchange Server »

Conclusion

In this article, you learned why the Exchange database transaction logs growing rapidly. It’s always good having in mind to check the ActiveSync connections. By having such a great script and the proper logging export, you can find why the database transaction log files are growing rapidly and fix the issues.

Did you like this article? You may also like Remove completed move requests Exchange. Don’t forget to follow us and share this article.

ALI TAJRAN

ALI TAJRAN

ALI TAJRAN is a passionate IT Architect, IT Consultant, and Microsoft Certified Trainer. He started Information Technology at a very young age, and his goal is to teach and inspire others. Read more »

This Post Has 0 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Back To Top