Azure-PostgreSQLServer-Log-Disconnections-Enabled

Severity: Medium

Description: This control ensures that server parameter "log_disconnections" is set to "ON" for PostgreSQL Database Server. Enabling log retention helps PostgreSQL Database to set the number of days a log file is retained which in turn generates query and error logs. Query and error logs can be used to identify, troubleshoot, and repair configuration errors and sub-optimal performance.

Remediation Steps:

Perform following to update PostgreSQL parameters:

1. LoLogin to Azure Portal using https://portal.azure.com.

2. Go to PostgreSQL server.

3. For each database, click on Server parameters.

4. Search for log_disconnections.

5. Click ON and save.

Important:

Reference:

• CIS Microsoft Azure Foundations Benchmark v1.3.0 - 02-01-2021 : Recommendation #4.3.5

• https://docs.microsoft.com/en-us/rest/api/postgresql/configurations/listbyserver