[ DEB Repository ] [ RPM Repository ] [ Docker Images ] [ Windows Installer ]
This page helps you configure the CYBERTEC PostgreSQL Enterprise Edition (PGEE) RPM repository.
Several repositories are hosted here:
PGEE includes TDE and more features.
PGEE packages:
Legacy TDE packages:
On RedHat 8 and later, disable the built-in postgresql module:
sudo dnf module disable -y postgresql
Free to use, limited to 1 GB per table
version=16 # available: 14 15 16
# RedHat/CentOS
sudo tee /etc/yum.repos.d/cybertec-pg$version.repo <<EOF
[cybertec_pg$version]
name=CYBERTEC PostgreSQL $version for RHEL/CentOS \$releasever - \$basearch
baseurl=https://repository.cybertec.at/public/$version/redhat/\$releasever/\$basearch
gpgkey=https://repository.cybertec.at/assets/cybertec-rpm.asc
enabled=1
EOF
# SUSE SLES
sudo tee /etc/zypp/repos.d/cybertec-pg$version.repo <<EOF
[cybertec_pg$version]
name=CYBERTEC PostgreSQL $version for SLES \$releasever_major - \$basearch
baseurl=https://repository.cybertec.at/public/$version/sles/\$releasever_major/\$basearch
gpgkey=https://repository.cybertec.at/assets/cybertec-rpm.asc
enabled=1
EOF
Unlimited version - contact CYBERTEC for a quote
version=16 # available: 14 15 16
username="YOUR_LOGIN"
password="YOUR_PASSWORD"
# RedHat/CentOS
sudo tee /etc/yum.repos.d/cybertec-pg$version.repo <<EOF
[cybertec_pg$version]
name=CYBERTEC PostgreSQL $version for RHEL/CentOS \$releasever - \$basearch
baseurl=https://repository.cybertec.at/pgee/$version/redhat/\$releasever/\$basearch
gpgkey=https://repository.cybertec.at/assets/cybertec-rpm.asc
username=$username
password=$password
enabled=1
EOF
# SUSE SLES
sudo tee /etc/zypp/repos.d/cybertec-pg$version.repo <<EOF
[cybertec_pg$version]
name=CYBERTEC PostgreSQL $version for SLES \$releasever_major - \$basearch
baseurl=https://$username:$password@repository.cybertec.at/pgee/$version/sles/\$releasever_major/\$basearch
gpgkey=https://repository.cybertec.at/assets/cybertec-rpm.asc
enabled=1
EOF
Unlimited version - contact CYBERTEC for a quote
Note: We are phasing out the TDE packages; existing customers are encouraged to switch to PGEE. See below for migration instructions.
version=15 # available: 12 13 14 15
username="YOUR_LOGIN"
password="YOUR_PASSWORD"
sudo tee /etc/yum.repos.d/cybertec-pg$version.repo <<EOF
[cybertec_pg$version]
name=CYBERTEC PostgreSQL $version for RHEL/CentOS \$releasever - \$basearch
baseurl=https://repository.cybertec.at/non-public/$version/redhat/\$releasever/\$basearch
username=$username
password=$password
enabled=1
gpgcheck=0
EOF
sudo yum install -y postgresql16-ee-server # adjust for version
sudo yum install -y postgresql15-tde-server # legacy TDE package
To create an encrypted cluster, set up an encryption key, and create a new cluster:
version=16 # adjust for version
PATH=/usr/pgsql-$version-tde/bin:/usr/pgsql-$version/bin:$PATH
KEY=$(dd if=/dev/random bs=1k count=1 | md5sum - | cut -d ' ' -f 1)
initdb -D /var/lib/pgsql/$version/data -k -K "echo $KEY"
pg_ctl -D /var/lib/pgsql/$version/data start
psql
Note: The cluster created here uses an encryption key that is stored inside postgresql.conf. Other more secure key retrieval methods can be configured; talk to CYBERTEC about which method fits your security requirements best.
To migrate from the TDE packages to the PGEE packages, use pg_upgrade
.
For example, when starting with 13 TDE moving to 15 EE, install 15 EE as above, then:
initdb -D /var/lib/pgsql/15/data -k -K "echo $KEY" # same key
/usr/pgsql-15/bin/pg_upgrade -b /usr/pgsql-13-tde/bin/ \
-d /var/lib/pgsql/13/data -D /var/lib/pgsql/15/data