last sync: 2023-Jun-01 17:45:04 UTC

Azure Landing Zones (ALZ) Policy definition

PostgreSQL database servers enforce SSL connection.

Name PostgreSQL database servers enforce SSL connection.
Azure Landing Zones (ALZ) GitHub
JSON Deny-PostgreSql-http
Id Deny-PostgreSql-http
Version 1.0.1
details on versioning
Category SQL
Microsoft docs
Description Azure Database for PostgreSQL supports connecting your Azure Database for PostgreSQL server to client applications using Secure Sockets Layer (SSL). Enforcing SSL connections between your database server and your client applications helps protect against 'man in the middle' attacks by encrypting the data stream between the server and your application. This configuration enforces that SSL is always enabled for accessing your database server.
Mode Indexed
Type Custom Azure Landing Zones (ALZ)
Preview FALSE
Deprecated FALSE
Effect Default
Deny
Allowed
Audit, Disabled, Deny
Used RBAC Role none
Rule Aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.DBforPostgreSQL/servers/minimalTlsVersion Microsoft.DBforPostgreSQL servers properties.minimalTlsVersion true
Microsoft.DBforPostgreSQL/servers/sslEnforcement Microsoft.DBforPostgreSQL servers properties.sslEnforcement true
Rule ResourceTypes IF (1)
Microsoft.DBforPostgreSQL/servers
History none
Used in Initiatives
Initiative DisplayName Initiative Id Initiative Category State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit Enforce-EncryptTransit Encryption GA
JSON