defender1

Author: Hamza Aqel

articles/postgresql/flexible-server/concepts-security.md

@@ -57,9 +57,9 @@ These alerts appear in Defender for Cloud's security alerts page and include:
 * Options for continuing your investigations with Microsoft Sentinel
 
 > [!NOTE]
-> Microsoft Defender for Azure Database for PostgreSQL - Flexible Server currently has following limitations:
+> Microsoft Defender for Azure Database for PostgreSQL - Flexible Server currently has following limitation:
 > - No Azure CLI or PowerShell support.
-> - No ability to enable Cloud Defender for Azure Database for PostgreSQL - Flexible Server on subscription level.
+
 
 ### Microsoft Defender for Cloud and Brute Force Attacks
 
@@ -75,6 +75,9 @@ To get alerts from the Microsoft Defender plan you'll first need to **enable it*
 :::image type="content" source="./media/concepts-security/defender-for-cloud-azure-portal-postgresql.png" alt-text="Screenshot of Azure portal showing how to enable Cloud Defender.":::
 
 
+> [!NOTE]
+> If you have the "open-source relational databases" feature enabled in your Microsoft Defender plan, you will observe that Microsoft Defender is automatically enabled by default for your Azure Database for PostgreSQL flexible server resource.
+
 ## Access management
 
 The best way to manage Azure Database for PostgreSQL - Flexible Server  database access permissions at scale is using the concept of [roles](https://www.postgresql.org/docs/current/user-manag.html). A role can be either a database user or a group of database users.  Roles can own the database objects and assign privileges on those objects to other roles to control who has access to which objects. It is also possible to grant membership in a role to another role, thus allowing the member role to use privileges assigned to another role.