PostgreSQL server does not enable Threat Detection policy
Description
Enable Advanced Threat Detection on your non-Basic tier Azure database for PostgreSQL servers to detect anomalous activities indicating unusual and potentially harmful attempts to access or exploit databases.
Code Example
go
resource "azurerm_postgresql_server" "example" {
...
+ threat_detection_policy {
+ enabled = true
}
}Remediation
Terraform
- Resource: azurerm_postgresql_server
- Arguments: threat_detection_policy.enabled
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0635 |
| Severity | LOW |
| IaC Type | Terraform |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_AZURE_128 |