For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/security/code_security/iac_security/iac_rules/ansible/azure/postgresql_log_disconnections_not_set.md.
A documentation index is available at /llms.txt.
Enabling the PostgreSQL server parameter log_disconnections ensures the server records client connection termination events. This is important for detecting abnormal connection patterns, troubleshooting connectivity issues, and supporting forensic investigations.
For Ansible, the azure.azcollection.azure_rm_postgresqlconfiguration (or legacy azure_rm_postgresqlconfiguration) resource must have name: log_disconnections and value: ON (value compared case-insensitively). Resources where name is log_disconnections but value is missing, not a string, or not set to ON are flagged as insecure.
- name:Update PostgreSQL Server settingazure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:on- name:Update PostgreSQL Server setting2azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:On- name:Update PostgreSQL Server setting3azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:ON- name:Update PostgreSQL Server setting4azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:on- name:Update PostgreSQL Server setting5azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:On- name:Update PostgreSQL Server setting6azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:ON
Non-Compliant Code Examples
---- name:Update PostgreSQL Server settingazure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:off- name:Update PostgreSQL Server setting2azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:Off- name:Update PostgreSQL Server setting3azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:OFF- name:Update PostgreSQL Server setting4azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:"off"- name:Update PostgreSQL Server setting5azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:"Off"- name:Update PostgreSQL Server setting6azure.azcollection.azure_rm_postgresqlconfiguration:resource_group:myResourceGroupserver_name:myServername:log_disconnectionsvalue:"OFF"
1
2
rulesets:- Ansible / Azure # Rules to enforce / Azure.
Request a personalized demo
Get Started with Datadog
Ask AI
AI-generated responses may be inaccurate. Verify important info.
