This section covers Postgres-specific installation requirements.
Boundary has only been tested on Postgres 11 or greater.
Boundary controllers must be able to reach Postgres. In non-HA configurations, this means Boundary servers; if you're running in high availability, then the controllers need access to the Postgres server infrastructure. Worker nodes never need access to the database.
After the database has been initialized, the database user for a Boundary controller only requires permissions for Data Manipulation (select, insert, update, and delete) operations.
Database initialization requires elevated privileges.
When initializing the database with the
boundary database init command,
the boundary database user
superuser role plus
all privileges on the boundary database.
Required Postgres Modules
Boundary has a dependency on the Postgres pgcrypto module which is one of the standard modules supplied with Postgres. Please see the Additional Supplied Modules page in the Postgres documentation for more information.