Enable Storage Auto-Growth
More Info:
Ensure that Storage Auto-Growth feature is enabled for your production Azure PostgreSQL database servers. Storage auto-growth prevents your PostgreSQL servers from running out of storage and becoming read-only.Risk Level
HighAddress
SecurityCompliance Standards
CBPTriage and Remediation
Remediation
Using Console
Using Console
To remediate the misconfiguration of not having storage auto-growth enabled in Azure, you can follow these steps:
- Log in to the Azure portal (https://portal.azure.com/).
- Navigate to the storage account that you want to remediate.
- Click on the “Configuration” tab in the left-hand menu.
- Under the “Data Protection” section, click on “Blob Service”.
- Scroll down to the “Auto-grow” section and toggle the switch to “Enabled”.
- Specify the maximum size that you want the storage account to grow to. You can either choose a fixed size or enable automatic growth by percentage.
- Click “Save” to apply the changes.
Using CLI
Using CLI
To enable storage auto-growth for Azure using Azure CLI, follow the below steps:
- Open the Azure CLI on your local machine or on the Azure portal.
-
Login to your Azure account using the command:
-
Select the subscription in which you want to enable storage auto-growth using the command:
-
Once you have selected the subscription, enable storage auto-growth for the Azure SQL Database using the command:
In the above command, replace the
<database-name>with the name of the database for which you want to enable storage auto-growth,<resource-group-name>with the name of the resource group in which the database is present. The--max-sizeparameter specifies the maximum size of the database and the--auto-growparameter enables the storage auto-growth for the database. -
Once the command is executed successfully, you will receive a confirmation message.
This confirms that storage auto-growth has been enabled for the Azure SQL Database.
Using Python
Using Python
To enable storage auto-growth in Azure using Python, you can use the Azure SDK for Python. Here are the steps to remediate this issue:This will enable storage auto-growth for the specified storage account in Azure.
- Install the Azure SDK for Python:
- Import the necessary modules:
- Authenticate with Azure using Service Principal credentials:
- Create a StorageManagementClient object:
- Get the storage account that needs to be remediated:
- Enable storage auto-growth by updating the storage account: