question

RamkumarSarvaRadhakrishnan-5493 avatar image
0 Votes"
RamkumarSarvaRadhakrishnan-5493 asked ·

Azure database for Postgresql - SSL enabling

Hi,
We are using Azure database for Postgresql and application is hosted in Azure private cloud. By default Postgresql enforces SSL to be enabled, so have used so in the connection string have used sslmode=require.

https://docs.microsoft.com/en-us/azure/postgresql/concepts-certificate-rotation

I have checked the above url, based on that downloaded the BaltimoreCyberTrustRoot.crt.pem file which have converted into a .jks file and referred in the yaml file of the microservice as below;

server.ssl.key-store: /opt/lib/configs/azure-postgredb-keystore.jks

whether the above changes are sufficient so that https is enabled between the application and the azure database for postgres.?

Regards
Ram

azure-database-postgresql
· 1
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

NavtejSaini-MSFT avatar image NavtejSaini-MSFT ·

@RamkumarSarvaRadhakrishnan-5493 PLease let us know if you need any further info regarding this.

0 Votes 0 ·

1 Answer

learn2skills avatar image
0 Votes"
learn2skills answered ·

Hi @RamkumarSarvaRadhakrishnan-5493

To configure postgreSQL using SSL connection follow the below steps.
1. Configure TLS connectivity in Azure Database for PostgreSQL - Single Server
2. How do I know if I'm using SSL/TLS with root certificate verification

Connect using psql
If you created your flexible server with Private access (VNet Integration), you will need to connect to your server from a resource within the same VNet as your server. You can create a virtual machine and add it to the VNet created with your flexible server.

If you created your flexible server with Public access (allowed IP addresses), you can add your local IP address to the list of firewall rules on your server.

 psql "sslmode=verify-full sslrootcert=c:\ssl\DigiCertGlobalRootCA.crt.pem host=mydemoserver.postgres.database.azure.com dbname=postgres user=myadmin"


Please don’t forget to Accept the answer and up-vote wherever the information provided helps you, this can be beneficial to other community members.


·
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.