Was there a reason Microsoft Azure removed the azure_superuser role from new instances of Azure Database for PostgreSQL? Was there an announcement about this?

Ron Lazar 5

Our application looks for the azure_superuser role's existence in an Azure Database for PostgreSQL flexible server. It appears, this role is no longer included in the list of roles and we're seeing a failure in our application as a result. In an instance I created about a year ago, this role was present. Is this change documented anywhere?

Marilee Turscak-MSFT 36,866 Reputation points Microsoft Employee

2024-08-14T22:35:48.0733333+00:00

Hi @Ron Lazar , just checking to see if you were able to get the information you needed and if you have further questions? If the information helped you, please remember to accept the answer. Otherwise definitely let me know if you have further questions!
Fiers, Peter 0 Reputation points

2024-09-13T11:13:09.6466667+00:00
Marilee,

Frankly, I don't think this answers the question. The referenced document doesn't tell us anything about the missing azure_superuser role either. We've been facing this issue too. An import job threw this error:

psql:importfile.sql:26: ERROR: role "azure_superuser" does not exist

We're using Azure Database for PostgreSQL flexible server v15.7.

1 answer

Marilee Turscak-MSFT 36,866 Reputation points Microsoft Employee

2024-08-14T00:17:38.3166667+00:00

Hi @Ron Lazar ,

Azure Postgres SQL server is a managed database PaaS service. You cannot connect as an azure_superuser.

The admin user is the highest privilege user you have on the server for Azure Postgres SQL. It belongs to the role azure_pg_admin. This role does not have full superuser permissions. The PostgreSQL superuser attribute is assigned to the azure_superuser, which belongs to the managed service. You do not have access to this role.

You will have access to the Admin account instead. This has been the case for a while and is documented here: Azure PostgreSQL Server Admin Document

"The server admin account is not part of the azure_superuser role. Since this service is a managed PaaS service, only Microsoft is part of the super user role."

Let me know if this helps address your question.

If the information helped you, please Accept the answer. This will help us and improve searchability for others in the community who may be researching similar questions.
Please sign in to rate this answer.
Jonathan Shim 0 Reputation points

2024-08-29T21:12:33.6366667+00:00

We have no intention to connect as an azure_superuser at all.

Our application is only checking for the existence of the azure_superuser role in the DB instance for identification purposes. It looks like this role is no longer visible to us, it was visible before. We would like to know why?

Here is the problem we are trying to solve:

Once I'm connected to a PostgreSQL Azure Flexible Server. How do I positively identify using one or more SQL query statement(s) to determine that it is connected to a PG Azure instance? We need to be able to positively identify and distinguish between Azure PG, Amazon_RDS PG, Google_CloudSQL PG and etc...

Jonathan Shim 0 Reputation points

2024-08-29T21:12:59.6133333+00:00

We have no intention to connect as an azure_superuser at all.

Our application only checking for the existence of the azure_superuser role in the DB instance for identification purposes. It looks like this role is no longer visible to us, it was visible before. We would like to know why?

Here is the problem we are trying to solve:

Once I'm connected to a PostgreSQL Azure Flexible Server. How do I positively identify using one or more SQL query statement(s) to determine that it is connected to a PG Azure instance? We need to be able to positively identify and distinguish between Azure PG, Amazon_RDS PG, Google_CloudSQL PG and etc...
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

Was there a reason Microsoft Azure removed the azure_superuser role from new instances of Azure Database for PostgreSQL? Was there an announcement about this?

1 answer

Your answer