Protecting Redshift Clusters

Veeam Backup for AWS allows you to create cloud-native backups of Redshift clusters and store them in any backup vault in the source AWS Region. An Amazon Redshift backup captures the whole image of the Redshift cluster at a specific point of time. Redshift backups are taken using native AWS capabilities.

To protect Redshift clusters, Veeam Backup for AWS runs backup policies. A backup policy is a collection of settings that define the way backup operations are performed: what data to back up, where to store backups, when to start the backup process, how to retain restore points and so on.

Veeam Backup for AWS does not install agent software inside instances to back up Redshift clusters — it uses native AWS capabilities instead. During every backup session, Veeam Backup for AWS creates a cloud-native backup for each cluster added to a backup policy. For more information on how Redshift clusters backup works, see Redshift Backup.

Supported Redshift Cluster Properties

Veeam Backup for AWS allows you to back up and restore the following cluster properties:

Property

Description

Ability to Change Property During Restore to New Location

Cluster ID

Unique identifier of the Redshift cluster.

Yes

Node type

Type of the nodes for the Redshift cluster.

Yes

Number of nodes

Total number of compute nodes for the Redshift cluster.

Yes

Associated IAM roles

List of IAM roles associated with the Redshift cluster.

Yes

Default role ARN

ARN of the default IAM role associated with the Redshift cluster.

Yes

Admin user password

Defines whether the admin password is managed by AWS Secrets Manager.

No

Secret Manager KMS key ID

 

ID of the custom KMS key used to encrypt the secret.

Yes

VPC

VPC to which the Redshift cluster is connected.

Yes

Subnet group

Subnet group in which the Redshift cluster is launched.

Yes

Availability Zone

Availability Zone where the Redshift cluster resides.

Yes

Public access

Defines whether the Redshift cluster is accessible outside the VPC to which the cluster is connected.

Yes

Enhanced VPC routing

Defines whether network traffic is routed between the Redshift cluster and the data repositories through a Redshift-managed VPC endpoint.

No

Port

Port used to access the Redshift cluster.

Yes

Parameter group

Parameter group associated with the Redshift cluster.

Yes

Cluster relocation

Defines whether the Redshift cluster can be moved to another Availability Zone.

No

Encryption key

AWS KMS key that is used to encrypt the Redshift cluster data.

Yes

Tags

User-defined labels assigned to the Redshift cluster.

No

Backup and maintenance

Defines whether daily automatic backup is scheduled and whether a weekly maintenance window is configured for the Redshift cluster.

No

Important

Veeam Backup for AWS does not support the following:

  • Multi-AZ deployment mode of the Redshift clusters
  • HSM encryption scheme of the Redshift cluster
  • Elastic IP assigned to the network interface of the Redshift cluster

How To Protect Redshift Clusters

To create a Redshift policy, perform the following steps:

  1. Check limitations and prerequisites.
  2. Specify IAM roles to access AWS services and resources.
  3. [Optional] Configure global retention settings for obsolete session records.
  4. [Optional] Configure email notification settings for automated delivery of backup policy results and daily reports.
  5. Complete the Add Redshift Policy wizard.

Related Topics

Redshift Restore