Rocky Linux 10 and RHEL 10 ship with PostgreSQL 16 in the base AppStream, but the PGDG (PostgreSQL Global Development Group) repository has PostgreSQL 17 ready to go. This guide uses the PGDG repo because it gives you the latest upstream release with full control over major version upgrades.<\/p>\n\n\n\n
Covered here: installing PostgreSQL 17 from PGDG on Rocky Linux 10 (same steps work on AlmaLinux 10 and RHEL 10), initializing the cluster, enabling remote connections, configuring firewalld and SELinux, and creating your first database. For Debian-based systems, see the guide on installing PostgreSQL on Debian<\/a>.<\/p>\n\n\n\n Verified working: March 2026<\/strong> on Rocky Linux 10.1 (kernel 6.12), SELinux enforcing, PostgreSQL 17.9<\/em><\/p>\n\n\n\n Install the PGDG repository RPM for RHEL 10 compatible systems:<\/p>\n\n\n\n Rocky Linux 10 no longer uses the traditional dnf module system for PostgreSQL, so there’s no need to disable a built-in module. The PGDG packages take priority automatically.<\/p>\n\n\n\n Install the server and client packages:<\/p>\n\n\n\n The install pulls in PostgreSQL requires an initial database cluster before it can start. Run the setup script:<\/p>\n\n\n\n You should see:<\/p>\n\n\n\n This creates the data directory at Start the service and enable it to survive reboots:<\/p>\n\n\n\n Verify the service is running:<\/p>\n\n\n\n The output should show active (running):<\/p>\n\n\n\n Check the exact version from the psql client:<\/p>\n\n\n\n Confirmed PostgreSQL 17.9 compiled with GCC 14.3.1 on Rocky Linux 10:<\/p>\n\n\n\n By default, PostgreSQL only listens on localhost. To allow connections from other servers or workstations, edit the main configuration file:<\/p>\n\n\n\n Find the Next, configure client authentication in Add a line at the end to allow password-based connections from any IP (restrict to your subnet in production):<\/p>\n\n\n\n Set a password for the Restart PostgreSQL to apply the configuration changes:<\/p>\n\n\n\n Open port 5432 in firewalld for remote PostgreSQL connections:<\/p>\n\n\n\n Verify the port is open:<\/p>\n\n\n\n You should see PostgreSQL from PGDG works with SELinux enforcing out of the box on Rocky Linux 10 because the PGDG packages include the correct file contexts. No If you change the data directory to a non-standard location, you will need to set the correct SELinux context:<\/p>\n\n\n\n If you change PostgreSQL’s port from the default 5432, tell SELinux:<\/p>\n\n\n\n Check for any AVC denials after changes:<\/p>\n\n\n\n Connect to the PostgreSQL shell:<\/p>\n\n\n\n Create a new database and user:<\/p>\n\n\n\n List all databases to confirm:<\/p>\n\n\n\n The output shows the new database alongside the defaults:<\/p>\n\n\n\nPrerequisites<\/h2>\n\n\n\n
\n
Add the PGDG Repository<\/h2>\n\n\n\n
sudo dnf install -y https:\/\/download.postgresql.org\/pub\/repos\/yum\/reporpms\/EL-10-x86_64\/pgdg-redhat-repo-latest.noarch.rpm<\/code><\/pre>\n\n\n\nInstall PostgreSQL 17<\/h2>\n\n\n\n
sudo dnf install -y postgresql17-server postgresql17<\/code><\/pre>\n\n\n\npostgresql17-libs<\/code> as a dependency. Three packages total:<\/p>\n\n\n\nInstalled:\n postgresql17-17.9-1PGDG.rhel10.1.x86_64\n postgresql17-libs-17.9-1PGDG.rhel10.1.x86_64\n postgresql17-server-17.9-1PGDG.rhel10.1.x86_64<\/code><\/pre>\n\n\n\nInitialize the Database Cluster<\/h2>\n\n\n\n
sudo \/usr\/pgsql-17\/bin\/postgresql-17-setup initdb<\/code><\/pre>\n\n\n\nInitializing database ... OK<\/code><\/pre>\n\n\n\n\/var\/lib\/pgsql\/17\/data\/<\/code> with the default locale and encoding (UTF-8).<\/p>\n\n\n\nStart and Enable PostgreSQL<\/h2>\n\n\n\n
sudo systemctl enable --now postgresql-17<\/code><\/pre>\n\n\n\nsystemctl status postgresql-17<\/code><\/pre>\n\n\n\n\u25cf postgresql-17.service - PostgreSQL 17 database server\n Loaded: loaded (\/usr\/lib\/systemd\/system\/postgresql-17.service; enabled; preset: disabled)\n Active: active (running) since Wed 2026-03-25 04:08:20 EAT\n Docs: https:\/\/www.postgresql.org\/docs\/17\/static\/<\/code><\/pre>\n\n\n\nsudo -u postgres \/usr\/pgsql-17\/bin\/psql -c 'SELECT version();'<\/code><\/pre>\n\n\n\n PostgreSQL 17.9 on x86_64-pc-linux-gnu, compiled by gcc (GCC) 14.3.1 20250617 (Red Hat 14.3.1-2), 64-bit<\/code><\/pre>\n\n\n\nEnable Remote Connections<\/h2>\n\n\n\n
sudo vi \/var\/lib\/pgsql\/17\/data\/postgresql.conf<\/code><\/pre>\n\n\n\nlisten_addresses<\/code> line and change it to:<\/p>\n\n\n\nlisten_addresses = '*'<\/code><\/pre>\n\n\n\npg_hba.conf<\/code>:<\/p>\n\n\n\nsudo vi \/var\/lib\/pgsql\/17\/data\/pg_hba.conf<\/code><\/pre>\n\n\n\nhost all all 0.0.0.0\/0 scram-sha-256<\/code><\/pre>\n\n\n\npostgres<\/code> superuser:<\/p>\n\n\n\nsudo -u postgres \/usr\/pgsql-17\/bin\/psql -c \"ALTER USER postgres WITH PASSWORD 'YourSecurePassword';\"<\/code><\/pre>\n\n\n\nsudo systemctl restart postgresql-17<\/code><\/pre>\n\n\n\nConfigure the Firewall<\/h2>\n\n\n\n
sudo firewall-cmd --permanent --add-port=5432\/tcp\nsudo firewall-cmd --reload<\/code><\/pre>\n\n\n\nsudo firewall-cmd --list-ports<\/code><\/pre>\n\n\n\n5432\/tcp<\/code> in the output.<\/p>\n\n\n\nSELinux Configuration<\/h2>\n\n\n\n
setsebool<\/code> commands are needed for the default setup.<\/p>\n\n\n\nsudo semanage fcontext -a -t postgresql_db_t \"\/custom\/pgdata(\/.*)?\"\nsudo restorecon -Rv \/custom\/pgdata<\/code><\/pre>\n\n\n\nsudo semanage port -a -t postgresql_port_t -p tcp 5433<\/code><\/pre>\n\n\n\nsudo ausearch -m avc -ts recent<\/code><\/pre>\n\n\n\nCreate a Database and User<\/h2>\n\n\n\n
sudo -u postgres \/usr\/pgsql-17\/bin\/psql<\/code><\/pre>\n\n\n\nCREATE DATABASE appdb;\nCREATE USER appuser WITH ENCRYPTED PASSWORD 'AppPass2026';\nGRANT ALL PRIVILEGES ON DATABASE appdb TO appuser;\n\\q<\/code><\/pre>\n\n\n\nsudo -u postgres \/usr\/pgsql-17\/bin\/psql -l<\/code><\/pre>\n\n\n\n Name | Owner | Encoding | Locale Provider | Collate | Ctype\n-----------+----------+----------+-----------------+-------------+-------------\n appdb | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8\n postgres | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8\n template0 | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8\n template1 | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8<\/code><\/pre>\n\n\n\nRHEL Family Path Reference<\/h2>\n\n\n\n