Flexible Server Rule Azure.PostgreSQL.AAD #2743
Replies: 2 comments
-
@paulmccrady could be, let me do some investigation. |
Beta Was this translation helpful? Give feedback.
0 replies
-
@paulmccrady Yes you're correct, this type doesn't have an export method. I'll raised the bug #2744 to fix this issue. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
We have configured a Postgres Flexible Server and have the following config under the Security->Authentication blade.
A Microsoft Entra Admin is configured (but omitted from screenshot for security purposes).
![Screenshot 2024-03-07 at 09 56 53](https://private-user-images.githubusercontent.com/30175621/310836564-f1034799-21a2-4a11-b754-66251071fcec.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MTk5MTYxMjIsIm5iZiI6MTcxOTkxNTgyMiwicGF0aCI6Ii8zMDE3NTYyMS8zMTA4MzY1NjQtZjEwMzQ3OTktMjFhMi00YTExLWI3NTQtNjYyNTEwNzFmY2VjLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDA3MDIlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQwNzAyVDEwMjM0MlomWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPThiNTcxNmViZTJjMTNiZWQ3MmI5ZGEzODRkM2ZlOTU0N2Q4ZmM4YmZhZDM1MjQ2Y2M0NjIwMDIzYmViNDUzODcmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.uB7W5n8NXsBqUSuZMe5abYw5-urB2elGCs-PKUWmZWs)
The following rule fails:
[FAIL] Azure.PostgreSQL.AAD (AZR-000389)
| File: xxx/out/templates/xxx.json:1:2773703
| RECOMMEND:
| Consider using Azure Active Directory (AAD) authentication with Azure Database
| for PostgreSQL databases. Additionally, consider disabling PostgreSQL
| authentication.
| REASON:
| - A sub-resource of type 'Microsoft.DBforPostgreSQL/flexibleServers/administrators' has not been specified.
| HELP:
| - https://azure.github.io/PSRule.Rules.Azure/en/rules/Azure.PostgreSQL.AAD/
We can see that the returned json does not contain a ‘Microsoft.DBforPostgreSQL/flexibleServers/administrators’ type.
Is this a rule issue or Export or something else?
Beta Was this translation helpful? Give feedback.
All reactions