question

PECORARIEmanuele-6897 avatar image
0 Votes"
PECORARIEmanuele-6897 asked AlfredoRevilla commented

Allow access to Azure database for Postgres only through Active Directory

Hi,
is there a way to allow the access to the Azure Database for Postgres only through Active Directory Managed Identities? Today, when creating the database, an admin username and password need to be specified and this account can't be deleted even once an AD Admin access is enabled.

Thanks
Emanuele Pecorari

azure-active-directoryazure-database-postgresql
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

PECORARIEmanuele-6897 avatar image
0 Votes"
PECORARIEmanuele-6897 answered AlfredoRevilla edited

Hi @AlfredoRevilla,
I think my request is not clear.
Azure Database for Postgres supports connection to the database through the Managed Identities: howto-connect-with-managed-identity

My question is more: is it possible to allow connections to Postgres only using managed identities (disabling the server admin access with username and password)?


· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello Emanuele, apologies for the confusion. I will come back with a response to your question ASAP.

1 Vote 1 ·
AlfredoRevilla avatar image
0 Votes"
AlfredoRevilla answered

Hello Emanuele, after you're done disabling or removing unwanted users, try to connect to your server trough pgAdmin using the original admin, select its profile from the Login/Group roles node, right click it and select Properties, got to the Privileges tab, toggle Can login? to off and Save. That should disable it.

Please let me know how it goes.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

PECORARIEmanuele-6897 avatar image
0 Votes"
PECORARIEmanuele-6897 answered AlfredoRevilla commented

I tried but it's not possible:

'ERROR: must be superuser to perform revoke login on server owner'

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Ok, I will try something else and come back to you.

0 Votes 0 ·