Loading controls...
Benchmark: PostgreSQL
Description
This benchmark provides a set of controls that detect Terraform Azure PostgreSQL resources deviating from security best practices.
Usage
Browse dashboards and select PostgreSQL:
steampipe dashboardOr run the benchmarks in your terminal:
steampipe check terraform_azure_compliance.benchmark.postgresSnapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share terraform_azure_compliance.benchmark.postgresControls
- Enable connection_throttling on PostgreSQL Servers
- Geo-redundant backup should be enabled for Azure Database for PostgreSQL
- Enable log_checkpoints on PostgreSQL Servers
- Enable log_connections on PostgreSQL Servers
- Enable log_disconnections on PostgreSQL Servers
- Enable log_retention_days on PostgreSQL Servers
- PostgreSQL servers should use customer-managed keys to encrypt data at rest
- Enforce SSL connection should be enabled for PostgreSQL database servers
- Infrastructure encryption should be enabled for Azure Database for PostgreSQL servers
- Public network access should be disabled for PostgreSQL servers