PostgreSQL server enables geo-redundant backups
Description
Azure PostgreSQL allows you to choose between locally redundant or geo-redundant backup storage in the General Purpose and Memory Optimized tiers. When the backups are stored in geo-redundant backup storage, they are not only stored within the region in which your server is hosted, but are also replicated to a paired data center. This provides better protection and ability to restore your server in a different region in the event of a disaster.
Code Example
go
{
"resource "azurerm_postgresql_server" "example" {
...
+ geo_redundant_backup_enabled = true
}
",
}Remediation
Terraform
- Resource: azurerm_postgresql_server
- Arguments: geo_redundant_backup_enabled - (Optional) Turn Geo-redundant server backups on/off.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0609 |
| Severity | LOW |
| IaC Type | arm |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_AZURE_102 |