![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 7.000000000000001%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETK%3C/text%3E%3C/svg%3E)
Azure Database for PostgreSQL
An Azure managed PostgreSQL database service for app development and deployment.
933 questions
Welcome to Microsoft Learn ! Please keep in mind that you need to share your questions in English so we can help you.
If you are using Azure Database for PostgreSQL Flexible Server and have received a notification from Azure regarding an update to the root store certificates, it is important to ensure your client-side configuration is up-to-date. The notification indicates that in addition to the existing Digicert Global Root CA, the Microsoft RSA Root Certificate Authority 2017 certificate should also be added.
Q1: Yes, it is necessary to perform this update on the client side to maintain secure and uninterrupted connections to your database. Even if the Azure documentation does not explicitly mention this step, following the update instructions from Azure notifications is crucial.
**Q2 :**The certificate update is not limited to services created before 2017. The name "Microsoft RSA Root Certificate Authority 2017" indicates the year the certificate was issued, not the services' creation date. Therefore, regardless of when your service was created, you should add this certificate to ensure compatibility and security.
To implement the update:
- Download the Microsoft RSA Root Certificate Authority 2017 from a trusted source or directly from Microsoft's documentation if provided.
- Add this certificate to your client's trusted certificate store alongside the Digicert Global Root CA.