Skip to main content
All CollectionsMonitoringTests
Test 257: Azure PostgreSQL Server
Test 257: Azure PostgreSQL Server
Updated over a month ago

Test 257: Azure PostgreSQL Database Server Log Checkpoints

Drata validates that 'log_checkpoints' is enabled for all Azure PostgreSQL database servers. Enabling ‘log_checkpoints’ helps the PostgreSQL Database to log each checkpoint which in turn generates query and error logs. Query and error logs can be used to identify, troubleshoot, and repair configuration errors and sub-optimal performance.

ASSOCIATED DRATA CONTROL

This test is part of the Audit Logging control (DCF-406) that ensures audit logs are enabled and active for all system components and sensitive data in accordance with company policies.

WHAT TO DO IF A TEST FAILS

If Drata finds that one or more PostgreSQL database servers does not have ‘log_checkpoints’ enabled, this test will fail.

STEPS TO REMEDIATE

  1. Go to 'Azure Database for PostgreSQL server'.

  2. For a failing database, click on 'Server parameters'.

  3. Search for 'log_checkpoints'.

  4. Set to 'On' and save.

  5. Repeat for each failing database.

Center for Internet Security (CIS)

This test aligns with the Center for Internet Security’s (CIS) foundation benchmarks which provides prescriptive guidance for establishing a secure baseline configuration for Microsoft Azure.

Did this answer your question?