Permission Denied When Accessing PostgreSQL Database Targets
When PrivX attempts to connect to PostgreSQL database targets using native clients (e.g., psql
), connections may fail due to server-side authentication configuration (disabled password authentication on the target server).
This typically results in authentication errors in the PrivX logs, such as [ERROR] postgres-proxy: connection closed. unsupported auth mode:10
.
Potential Solution
Ensure that the target PostgreSQL server allows password-based authentication for connections originating from PrivX servers. Update the pg_hba.conf
file on the PostgreSQL server to include entries like the following:
# TYPE DATABASE USER ADDRESS METHOD
host all all PRIVX-SERVER-01/32 password
host all all PRIVX-SERVER-02/32 password
host all all PRIVX-SERVER-03/32 password
Replace PRIVX-SERVER-**
with the actual IP addresses of your PrivX servers.
After modifying pg_hba.conf
, reload the PostgreSQL service to guarantee changes are applied.