Chapter 33. Enhanced Security

Chapter 33. Enhanced Security
Prev	Up	Part III. Server Administration	Home	Next

Chapter 33. Enhanced Security

Table of Contents

33.1. Memory Purge

33.1.1. Deleting Files from External Memory
33.1.2. Page Cleanup
33.1.3. Clearing Random-Access Memory
33.1.4. Cleaning up WAL Files

33.2. Integrity Checks

33.2.1. Overview
33.2.2. Checking Integrity at Server Startup
33.2.3. Scheduling Integrity Checks

33.3. Separation of Duties between Privileged DBMS Users

33.3.1. Overview
33.3.2. Creation of Additional Administrators
33.3.3. Revoking Superuser Access

33.4. Restricting DBMS Administrator's Data Access

33.4.1. Overview
33.4.2. Creating Administrators and Managers of the DB Secured Schema
33.4.3. Creating a Table in the Secured Schema
33.4.4. Moving a Table to the Secured Schema
33.4.5. Permitting Access to a Protected Table
33.4.6. Checking Access: Filling in a Protected Table
33.4.7. Changes Made to an Export Application
33.4.8. Changes Made to the Integrity-check Utility

This chapter describes enhanced security mechanisms available in the certified edition of Postgres Pro Enterprise. Moreover, Postgres Pro Enterprise provides the following native security tools:

The pg_proaudit extension enables detailed logging of various security events.
Advanced authentication policies allow you to restrict database usage and enforce password requirements by assigning profiles to roles. For details on profiles, see CREATE PROFILE. The catalog pg_profile lists all profiles available for your cluster.

Prev	Up	Next
32.4. Extensibility	Home	33.1. Memory Purge