Azure PostgreSQL Flexible Server Online Migration: Minimal Downtime with CDC

Microsoft has added an online migration option to the Azure Database for PostgreSQL — Flexible Server migration service, enabling continuous data replication from a wide range of PostgreSQL sources (on‑premises, Azure VMs, Amazon RDS/Aurora, Google Cloud SQL and more) so organizations can move production databases with minimal downtime and a guided cutover experience in the Azure Portal or Azure CLI.

Background / Overview​

Azure’s PostgreSQL family has evolved rapidly in recent years as Microsoft nudges customers from legacy Single Server models and heterogeneous sources toward Flexible Server and cloud‑native features like autoscaling, managed backups and enhanced networking. Microsoft’s migration tooling has supported both offline (stop‑the‑world) and online approaches; the newly announced online migration path formalizes and integrates continuous replication inside the Azure Portal and CLI so teams can synchronize data while their apps continue to run. The official migration documentation explains the workflow — initial bulk copy, ongoing change data capture (CDC) replication, monitoring of latency until near‑zero, then a planned cutover once writes are stopped and validation completed.
This capability is positioned for production workloads that need high availability and low downtime during cutover. Microsoft frames online migration as the right choice for mission‑critical workloads, while recommending offline migration for small databases or simple test scenarios. That positioning is consistent with Azure’s guidance to match migration mode to scale, RTO/RPO expectations and operational complexity.

---

What Microsoft actually shipped (quick, verifiable summary)​

• Online migration is available in the Azure Portal and via Azure CLI, integrated as part of the Azure Database for PostgreSQL migration service. The portal displays migration status, per‑database latency and progress metrics.
• Supported source systems include on‑premises PostgreSQL, Azure VMs, Amazon RDS for PostgreSQL, Amazon Aurora PostgreSQL, and Google Cloud SQL (documentation covers AWS RDS/Aurora examples and the single‑server to flexible server path).
• The migration workflow relies on logical replication/CDC mechanisms. For many sources (RDS/Aurora) you enable logical decoding with the test_decoding plugin and prepare replication slots (max_replication_slots, max_wal_senders). The docs explicitly list server parameter and extension checks required before starting.
• Continuous sync is shown as a latency metric; when latency reaches zero (or near zero), teams are advised to stop writes, perform validation and trigger the final cutover to complete the migration. The portal/CLI provides controls for validation, cutover and cancellation.

---

How online migration works: a concise technical walkthrough​

1. Initial provisioning and prerequisites​

• Create the target Azure Database for PostgreSQL — Flexible Server instance with an SKU suitably sized to match production needs. The migration wizard assumes the target server exists.
• Ensure networking connectivity between source and target (private endpoints, VNet peering, or public IPs with secure firewall rules), plus any migration runtime server if the source is in a private network.

2. Enable CDC and replication on the source​

• For RDS/Aurora sources, enable logical replication via test_decoding and grant replication privileges to the migration user (for example, GRANT rds_replication). Increase max_replication_slots and max_wal_senders to accommodate the migration load. These parameters are mandatory for online replication to function reliably.

3. Schema, extensions and user mapping​

• Validate extensions and server parameters: extensions used by the application must be supported and enabled on the Flexible Server; server parameters (collation, timezone, performance flags) are not transplanted automatically and must be checked/adjusted manually. Users and roles also require special handling (pg_dumpall --globals-only recommended). Note: Azure Flexible Server does not grant superuser privileges; role changes must be planned.

4. Initial data copy + continuous replication​

• The migration service performs an initial copy (schema + data). After the initial load it establishes logical replication to sync subsequent changes, reporting latency per database. The portal and CLI expose migration status and per‑table progress.

5. Cutover​

• When replication latency approaches zero, administrators stop writes to the source, validate target data integrity, update connection strings, and trigger the cutover. The migration service applies any remaining changes and marks the migration as succeeded when the final commit completes. Microsoft recommends waiting until latency is zero or near‑zero to minimize the volume of last‑minute changes applied at cutover.

---

Why this matters (benefits for Windows and Azure customers)​

• Reduced downtime and operational risk: Continuous sync keeps applications running during the bulk transfer, which is invaluable for customer‑facing systems with tight maintenance windows. The portal/CLI visibility simplifies planning and cutover orchestration.
• Integrated, wizard‑based workflow: The end‑to‑end experience in the Azure Portal or Azure CLI removes many manual steps and reduces the operational burden of hand‑written replication scripts.
• Multi‑source support: The service supports common migration sources including AWS RDS/Aurora and Google Cloud SQL, making the tool useful for cross‑cloud migrations, not just Azure‑centric moves.
• Automated validation and monitoring: Built‑in checks, validation steps and in‑portal monitoring give teams the feedback to validate migration health and progress before cutover.

---

Critical analysis: strengths, operational caveats and real‑world risks​

Strengths (what’s genuinely useful)​

• The migration service formalizes patterns many DBAs have long scripted (initial dump + logical replication + cutover), and it frees teams from brittle custom flows by providing a supported, GUI/CLI‑driven mechanism. This streamlines planning and gives a central status view for migrations.
• The requirement to validate extensions and server parameters upfront is sensible: it forces teams to reconcile compatibility issues before cutting over. This reduces surprise breakages post‑migration.
• Integration with the Azure Portal and CLI means the migration can be automated and scripted as part of deployment pipelines or runbooks, improving repeatability.

Important caveats and operational risks​

• WAL and storage pressure during initial copy: Some community reports show unexpected WAL growth or WAL bloat during the initial clone/follow phases, especially for large databases, which can cause storage pressure or slowdowns on the source. Teams migrating multi‑terabyte datasets must plan WAL retention and monitor disk usage closely. This is not hypothetical — experienced DBAs have reported WAL bloat and long migration times in forums.
• Role and credential handling: The migration tool can migrate roles; however, role overwrites or differences in password hashing and privilege models can break applications after cutover. There are user reports of role clobbering and password/pg_hba issues after automated migrations — plan for role reconciliation.
• Lack of superuser access: Managed PostgreSQL instances (RDS, Azure Flexible Server) restrict superuser privileges. Some DDL or extension operations that require superuser will fail and must be reworked. This frequently complicates migrations from fully self‑hosted PostgreSQL instances.
• Performance impact on source: Running an online migration introduces read/replication overhead on the source system. If the source is already under load, replication can exacerbate contention and slow application performance. Plan for load windows, throttling and potential cloning strategies (table‑parallelism, selective replication).
• Preview/feature maturity caveat: While the portal supports online migrations, many of the surrounding automation and agentic features in Microsoft’s broader migration ecosystem remain in preview or are evolving. Organizations should pilot on representative workloads before committing critical production migrations to a new workflow.

---

Cross‑checking claims and verifiability​

• Microsoft’s documentation explicitly documents test_decoding, replication slots, WAL sender settings, and the portal/CLI controls for online migration — these are verifiable technical prerequisites and operations. The Microsoft Learn migration tutorials are the primary authoritative source for how the service functions.
• Independent community feedback (forum and Reddit posts) corroborates operational pain points: long migration times for large DBs, WAL bloat, role mapping issues and occasional migration stalls. These reports are experiential evidence that while the tooling works, operational complexity remains—especially at scale. These community signals should be treated as operational warnings, not product repudiations.
• Windows Report and other press coverage describe the new online migration offering as reducing manual work and lowering downtime; however, claims like “smoother transition for mission‑critical workloads than previous tools” are vendor‑positive narratives and should be validated through independent performance testing and internal pilots before upgrading critical production systems. Treat these marketing‑adjacent claims with caution until reproduced in your environment.

---

Practical migration checklist and playbook (recommended steps)​

Follow these steps for a disciplined online migration to Azure PostgreSQL Flexible Server:

• Inventory and classify:
• Identify databases, versions, extensions, key tables, and current replication/HA setups.
• Classify workloads by RPO/RTO sensitivity and size.
• Pilot and capacity testing:
• Run a pilot with a representative database (same schema, similar row counts and workloads).
• Measure initial copy time, replication lag behavior and WAL growth.
• Prepare the target:
• Provision Flexible Server with an adequate SKU and storage.
• Disable target HA/replicas during migration (enable post‑migration if needed).
• Network and security:
• Configure Private Link / VNet / firewall rules to restrict migration traffic.
• Use managed identities, Key Vault and Role‑based Access Control (RBAC) for migration credentials.
• Source hardening:
• Enable test_decoding (or equivalent logical decoding plugin) and grant replication user privileges.
• Adjust max_replication_slots and max_wal_senders to accommodate the migration.
• Validate schema & extensions:
• Compare extension lists; enable supported extensions on the Flexible Server.
• Export global roles (pg_dumpall --globals-only), reconcile superuser/privilege differences.
• Start migration validation:
• Use the Azure Portal or CLI to Start validation and migration. Monitor per‑database latency and progress.
• Monitor and tune:
• Watch WAL usage, replication slot backlog and resource metrics on both source and target. Throttle or reschedule heavy operations if the source shows stress.
• Cutover window:
• Choose a cutover window and communicate with stakeholders.
• Stop writes to the source, perform application and data validation on target, update connection strings and DNS, then trigger cutover in the portal/CLI. Confirm application behavior and performance.
• Post‑migration checklist:
• Re-enable HA/read replicas if needed.
• Reconcile roles, rotate secrets, run performance tuning and regression tests.
• Decommission old sources as appropriate and maintain backups/retention.

---

Recommended architecture and operational controls for mission‑critical migrations​

• Use a staging landing zone with a full test harness that mirrors production traffic to validate behavior under realistic load.
• Keep human‑in‑the‑loop approvals at the cutover step: automated replication is powerful, but final cutover should be manual until trust is built.
• Pair migration runs with robust telemetry and policy gates (Azure Policy/Sentinel) so generated IaC or migration artifacts pass security and compliance checks.
• For very large databases (hundreds of GB to TB), consider a hybrid strategy: perform an initial export/restore for the bulk of data (offline window), then use logical replication for near‑zero downtime sync of incremental changes.

---

When offline migration still makes sense​

While online migration is excellent for reducing application downtime, offline migration remains simpler and more predictable for:

• Small databases where a scheduled maintenance window is acceptable.
• Test and dev environments where speed of execution is more important than complexity.
• Edge cases involving unsupported extensions or deep superuser operations that can’t be reconciled on the target. Microsoft explicitly recommends offline approaches for simple or small migrations.

---

Final verdict: who should adopt online migration (and how to do it safely)​

Online migration for Azure Database for PostgreSQL Flexible Server is a significant operational enhancement: it codifies a best‑practice pattern (initial copy + CDC + monitored cutover) into a portal/CLI experience that reduces manual scripting, improves visibility, and shortens downtime windows for many production workloads. Teams migrating customer‑facing systems, transactional services, or other workloads with tight maintenance windows will find this capability especially valuable.
However, the feature set is not a silver bullet. Organizations should:

• Run representative pilots to verify performance and behavior in realistic conditions.
• Prepare for role and extension reconciliation work.
• Monitor WAL growth and source performance; plan storage and replication slot capacity accordingly.
• Maintain human approvals at cutover and enforce CI/test gates for any generated artifacts or connection changes.

Adopt online migration when the benefits of reduced downtime outweigh the operational complexity of running live replication. For smaller or test workloads, offline migration remains faster and simpler.

---

Microsoft’s online‑migration tooling for PostgreSQL Flexible Server gives Azure customers another practical path to modernize database estates with minimal application disruption. The feature is technically sound and well documented, but real‑world migrations still require careful planning, monitoring and a healthy respect for the edge cases that appear only under load or in bespoke environments. Pilot thoroughly, validate comprehensively, and use the migration service as an orchestration layer rather than a one‑button guarantee.

---

Source: Windows Report Microsoft Launches Online Migration for Azure PostgreSQL Flexible Server