PostgreSQL server does not enable infrastructure encryption

Description

Enable infrastructure encryption for Azure Database for PostgreSQL servers to have higher level of assurance that the data is secure. When infrastructure encryption is enabled, the data at rest is encrypted twice using FIPS 140-2 compliant Microsoft managed keys.

Code Example

resource "azurerm_postgresql_server" "example" {
              ...
+             infrastructure_encryption_enabled = true
            }

Remediation

Terraform

Resource: azurerm_postgresql_server
Arguments: infrastructure_encryption_enabled

Rule Details

Field	Value
ID	IAC-0637
Severity	LOW
IaC Type	arm
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_AZURE_130

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

PostgreSQL server does not enable infrastructure encryption

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

PostgreSQL server does not enable infrastructure encryption ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

PostgreSQL server does not enable infrastructure encryption

Description

Code Example

Remediation

Rule Details

References