Azure PostgreSQL does not use the latest version of TLS encryption

Description

The Transport Layer Security (TLS) protocol secures transmission of data between servers and web browsers, over the Internet, using standard encryption technology. To follow security best practices and the latest PCI compliance standards, enable the latest version of TLS protocol (i.e. TLS 1.2) for all your PostgreSQL servers.

Code Example

resource "azurerm_postgresql_server" "pass" {
  name = "fail"

  public_network_access_enabled    = true
  ssl_enforcement_enabled          = true
  ssl_minimal_tls_version_enforced = "TLS1_2"
}

Remediation

Terraform

Resource: azurerm_postgresql_server
Arguments: ssl_minimal_tls_version_enforced

Rule Details

Field	Value
ID	IAC-0654
Severity	LOW
IaC Type	Terraform
Frameworks	Terraform
Checkov ID	CKV_AZURE_147

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure PostgreSQL does not use the latest version of TLS encryption

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure PostgreSQL does not use the latest version of TLS encryption ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure PostgreSQL does not use the latest version of TLS encryption

Description

Code Example

Remediation

Rule Details

References