Network misconfigurations

Azure PostgreSQL Server should use private endpoints

Platform(s)
Compliance Frameworks

Description

It was detected that {AzurePostgresDbServer} has no approved Private endpoint connections. Private Link allows you to create private endpoints for Azure Database for PostgreSQL - Single server to bring it inside your Virtual Network (VNet). The private endpoint exposes a private IP within a subnet that you can use to connect to your database server just like any other resource in the VNet. Please note that the private link feature is only available for Azure Database for PostgreSQL servers in the General Purpose or Memory Optimized pricing tiers. For more info, see https://learn.microsoft.com/en-us/azure/postgresql/single-server/concepts-data-access-and-security-private-link.

  • Recommended Mitigation

    It is recommended to configure private endpoint for {AzurePostgresDbServer} Azure PostgreSQL Server, to protect the data from easy interception and reading.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.