Ensure that Identity block is defined and type is set to SystemAssigned for Azure PostgreSQL Server

LOW

Description

Using un-managed identities for Azure PostgreSQL Server may make user management challenging.

Remediation

At this time, the console UI does not have remediation steps available. For possible CLI remediation, see the product documentation (below) or use Terraform.

In Terraform -

In the azurerm_postgresql_configuration resource, set identity block.

References:
https://learn.microsoft.com/en-us/azure/postgresql/single-server/how-to-connect-with-managed-identity
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/postgresql_server#identity

Policy Details

Rule Reference ID: AC_AZURE_0399

CSP: Azure

Remediation Available: Yes

Domain: Identity and Access Management

Resource: azurerm_postgresql_server

Resource Category: Database

Resource Type: PostgreSQL

Frameworks

GDPR
HIPAA
ISO-27001
NIST-800-171
NIST-800-53
NIST-CSF

Detections

Analytics

Ensure that Identity block is defined and type is set to SystemAssigned for Azure PostgreSQL Server

LOW

Description

Remediation

Policy Details

Frameworks