last sync: 2023-Nov-30 18:20:17 UTC

Azure Landing Zones (ALZ) Policy definition

PostgreSQL database servers enforce SSL connection.

Source Repository Azure Landing Zones (ALZ) GitHub
JSON Deny-PostgreSql-http
Display name PostgreSQL database servers enforce SSL connection.
Id Deny-PostgreSql-http
Version 1.0.1
Details on versioning
Category SQL
Description Azure Database for PostgreSQL supports connecting your Azure Database for PostgreSQL server to client applications using Secure Sockets Layer (SSL). Enforcing SSL connections between your database server and your client applications helps protect against 'man in the middle' attacks by encrypting the data stream between the server and your application. This configuration enforces that SSL is always enabled for accessing your database server.
Mode Indexed
Type Custom Azure Landing Zones (ALZ)
Preview False
Deprecated False
Effect Default
Audit, Disabled, Deny
RBAC role(s) none
Rule aliases IF (2)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.DBforPostgreSQL/servers/minimalTlsVersion Microsoft.DBforPostgreSQL servers properties.minimalTlsVersion true
Microsoft.DBforPostgreSQL/servers/sslEnforcement Microsoft.DBforPostgreSQL servers properties.sslEnforcement true
Rule resource types IF (1)
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State
Deny or Deploy and append TLS requirements and SSL enforcement on resources without Encryption in transit Enforce-EncryptTransit Encryption GA
History none
JSON compare n/a