Protecting Redshift Clusters

Veeam Backup for AWS allows you to create cloud-native backups of Redshift clusters and store them in any backup vault in the source AWS Region. An Amazon Redshift backup captures the whole image of the Redshift cluster at a specific point of time. Redshift backups are taken using native AWS capabilities.

To protect Redshift clusters, Veeam Backup for AWS runs backup policies. A backup policy is a collection of settings that define the way backup operations are performed: what data to back up, where to store backups, when to start the backup process, how to retain restore points and so on.

Veeam Backup for AWS does not install agent software inside instances to back up Redshift clusters — it uses native AWS capabilities instead. During every backup session, Veeam Backup for AWS creates a cloud-native backup for each cluster added to a backup policy. For more information on how Redshift clusters backup works, see Redshift Backup.

Supported Redshift Cluster Properties

Veeam Backup for AWS allows you to back up and restore the following cluster properties:



Ability to Change Property During Restore to New Location

Cluster ID

Unique identifier of the Redshift cluster.


Node type

Type of the nodes for the Redshift cluster.


Number of nodes

Total number of compute nodes for the Redshift cluster.


Associated IAM roles

List of IAM roles associated with the Redshift cluster.


Default role ARN

ARN of the default IAM role associated with the Redshift cluster.


Admin user password

Defines whether the admin password is managed by AWS Secrets Manager.


Secret Manager KMS key ID


ID of the custom KMS key used to encrypt the secret.



VPC to which the Redshift cluster is connected.


Subnet group

Subnet group in which the Redshift cluster is launched.


Availability Zone

Availability Zone where the Redshift cluster resides.


Public access

Defines whether the Redshift cluster is accessible outside the VPC to which the cluster is connected.


Enhanced VPC routing

Defines whether network traffic is routed between the Redshift cluster and the data repositories through a Redshift-managed VPC endpoint.



Port used to access the Redshift cluster.


Parameter group

Parameter group associated with the Redshift cluster.


Cluster relocation

Defines whether the Redshift cluster can be moved to another Availability Zone.


Encryption key

AWS KMS key that is used to encrypt the Redshift cluster data.



User-defined labels assigned to the Redshift cluster.


Backup and maintenance

Defines whether daily automatic backup is scheduled and whether a weekly maintenance window is configured for the Redshift cluster.



Veeam Backup for AWS does not support the following:

  • Multi-AZ deployment mode of the Redshift clusters
  • HSM encryption scheme of the Redshift cluster
  • Elastic IP assigned to the network interface of the Redshift cluster

How To Protect Redshift Clusters

To create a Redshift policy, perform the following steps:

  1. Check limitations and prerequisites.
  2. Specify IAM roles to access AWS services and resources.
  3. [Optional] Configure global retention settings for obsolete session records.
  4. [Optional] Configure email notification settings for automated delivery of backup policy results and daily reports.
  5. Complete the Add Redshift Policy wizard.

Related Topics

Redshift Restore