Chapter 30. Enhanced Security

Chapter 30. Enhanced Security
Prev	Up	Part III. Server Administration	Home	Next

Chapter 30. Enhanced Security

Table of Contents

30.1. Memory Purge

30.1.1. Deleting Files from External Memory
30.1.2. Page Cleanup
30.1.3. Clearing Random-Access Memory
30.1.4. Cleaning up WAL Files

30.2. Integrity Checks

30.2.1. Overview
30.2.2. Checking Integrity at Server Startup
30.2.3. Scheduling Integrity Checks

30.3. Separation of Duties between Privileged DBMS Users

30.3.1. Overview
30.3.2. Creation of Additional Administrators
30.3.3. Revoking Superuser Access

30.4. Restricting DBMS Administrator's Data Access

30.4.1. Overview
30.4.2. Creating Administrators and Managers of the DB Secured Schema
30.4.3. Creating a Table in the Secured Schema
30.4.4. Moving a Table to the Secured Schema
30.4.5. Permitting Access to a Protected Table
30.4.6. Checking Access: Filling in a Protected Table
30.4.7. Changes Made to an Export Application
30.4.8. Changes Made to the Integrity-check Utility

This chapter describes enhanced security mechanisms available in the certified edition of Postgres Pro Shardman. Moreover, Postgres Pro Shardman provides the following native security tools:

The pg_proaudit extension enables detailed logging of various security events.
Advanced authentication policies allow you to restrict database usage and enforce password requirements by assigning profiles to roles. For details on profiles, see CREATE PROFILE. The catalog pg_profile lists all profiles available for your cluster.

Prev	Up	Next
29.3. Configuration	Home	30.1. Memory Purge