This section covers Postgres-specific installation requirements.
Boundary has only been tested on Postgres 11 or greater.
Boundary controllers must be able to reach Postgres. In non-HA configurations, this means Boundary servers; if you're running in high availability, then the controllers need access to the Postgres server infrastructure. Worker nodes never need access to the database.
After the database has been initialized, the database user for a Boundary Controller only requires permissions for Data Manipulation (select, insert, update, and delete) operations.
Database initialization requires elevated privileges.
When initializing the database with the
boundary database init command,
the boundary database user
superuser role plus
all privileges on the boundary database.