Azure-PostgreSQLServer-Enable-Geo-Redundant-Backups

Severity: Medium

Description: This control ensures that PostgreSQL servers are geo redundant backup enabled. Enabling log retention helps PostgreSQL Database to set the number of days a log file is retained which in turn generates query and error logs. Query and error logs can be used to identify, troubleshoot, and repair configuration errors and sub-optimal performance.

Remediation Steps:

Perform following to to create PostgreSQL server with geo-redundant-backup from Azure CLI:

1. az postgres server create -l -g -n -u -p --sku-name --geo-redundant-backup Enabled.

Important:

• Geo redundant backups setting can only be setup at the time of creation.

Reference:

• https://docs.microsoft.com/en-us/cli/azure/postgres/server?view=azure-cli-latest#az-postgres-server-create