diff --git a/control-plane-operator/controllers/hostedcontrolplane/kas/config.go b/control-plane-operator/controllers/hostedcontrolplane/kas/config.go
index 644566eb88..7a30bddb0f 100644
--- a/control-plane-operator/controllers/hostedcontrolplane/kas/config.go
+++ b/control-plane-operator/controllers/hostedcontrolplane/kas/config.go
@@ -143,8 +143,8 @@ func generateConfig(p KubeAPIServerConfigParams, version semver.Version) *kcpv1.
 	args.Set("anonymous-auth", "true")
 	args.Set("api-audiences", p.ServiceAccountIssuerURL)
 	args.Set("audit-log-format", "json")
-	args.Set("audit-log-maxbackup", "10")
-	args.Set("audit-log-maxsize", "100")
+	args.Set("audit-log-maxbackup", "1")
+	args.Set("audit-log-maxsize", "10")
 	args.Set("audit-log-path", cpath(kasVolumeWorkLogs().Name, AuditLogFile))
 	args.Set("audit-policy-file", cpath(kasVolumeAuditConfig().Name, AuditPolicyConfigMapKey))
 	args.Set("authorization-mode", "Scope", "SystemMasters", "RBAC", "Node")
diff --git a/control-plane-operator/controllers/hostedcontrolplane/oapi/config.go b/control-plane-operator/controllers/hostedcontrolplane/oapi/config.go
index 0e9a86b25b..160a5f1ce7 100644
--- a/control-plane-operator/controllers/hostedcontrolplane/oapi/config.go
+++ b/control-plane-operator/controllers/hostedcontrolplane/oapi/config.go
@@ -58,8 +58,8 @@ func reconcileConfigObject(cfg *openshiftcpv1.OpenShiftAPIServerConfig, auditWeb
 	cfg.APIServerArguments = map[string][]string{
 		"shutdown-delay-duration": {"15s"},
 		"audit-log-format":        {"json"},
-		"audit-log-maxsize":       {"100"},
-		"audit-log-maxbackup":     {"10"},
+		"audit-log-maxsize":       {"10"},
+		"audit-log-maxbackup":     {"1"},
 		"audit-policy-file":       {cpath(oasVolumeAuditConfig().Name, auditPolicyConfigMapKey)},
 		"audit-log-path":          {cpath(oasVolumeWorkLogs().Name, "audit.log")},
 	}
diff --git a/control-plane-operator/controllers/hostedcontrolplane/oapi/oauth_deployment.go b/control-plane-operator/controllers/hostedcontrolplane/oapi/oauth_deployment.go
index afae7fbeff..a83ea2763a 100644
--- a/control-plane-operator/controllers/hostedcontrolplane/oapi/oauth_deployment.go
+++ b/control-plane-operator/controllers/hostedcontrolplane/oapi/oauth_deployment.go
@@ -159,8 +159,8 @@ func buildOAuthContainerMain(p *OAuthDeploymentParams) func(c *corev1.Container)
 			fmt.Sprintf("--api-audiences=%s", p.ServiceAccountIssuerURL),
 			fmt.Sprintf("--audit-log-path=%s", cpath(oauthVolumeWorkLogs().Name, "audit.log")),
 			"--audit-log-format=json",
-			"--audit-log-maxsize=100",
-			"--audit-log-maxbackup=10",
+			"--audit-log-maxsize=10",
+			"--audit-log-maxbackup=1",
 			fmt.Sprintf("--etcd-cafile=%s", cpath(oauthVolumeEtcdClientCA().Name, certs.CASignerCertMapKey)),
 			fmt.Sprintf("--etcd-keyfile=%s", cpath(oauthVolumeEtcdClientCert().Name, pki.EtcdClientKeyKey)),
 			fmt.Sprintf("--etcd-certfile=%s", cpath(oauthVolumeEtcdClientCert().Name, pki.EtcdClientCrtKey)),