Tera Byte

My feedback

  1. 90 votes
    Sign in
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    under review  ·  8 comments  ·  Azure Database for PostgreSQL » Roadmap  ·  Flag idea as inappropriate…  ·  Admin →
    Tera Byte commented  · 

    Many companies use Active Directory to manage users and groups. Naturally, most companies would want to manage their database users and groups in Active Directory too. PostgreSQL comes with ldap/kerberos authentication by default but does not provide anything that helps with managing users and groups in an external directory. And even for the authentication the user already needs to be existent in PostgreSQL. Ideally an AD admin should be able to create a group for pg_admins and pg_users in AD. Users in those groups should be able to authenticate against postgres without having to add a username and pw entry on the db itself. Similar to SQL server. OR (I’m not sure if this is possible) adding RBAC users to the db instance in Azure Portal should add the user to the db and user-password syncs should happen between AD and the db. This would allow those admins to enforce password complexity, set password expiry rules, and simplify management of db users overall for operational teams.

    Tera Byte supported this idea  · 

Feedback and Knowledge Base