CloudWiki
Rules
Low

Ensure Redshift clusters automated snapshot retention period is enabled

Security & Compliance
Description

To ensure that automated backups are enabled for your AWS Redshift clusters, verify that the automated snapshot retention period is set to a positive number. This retention period specifies the duration for retaining automated snapshots, and if it's set to zero, automated snapshots will be disabled for your clusters. Although you can still create manual backups, automated backups are more dependable and efficient in ensuring the protection and recoverability of your Redshift data.

Remediation

To ensure that Redshift clusters have automated snapshot retention period enabled, you can take the following remediation steps:

  1. Open the Amazon Redshift console.
  2. In the navigation pane, choose "Clusters".
  3. Select the Redshift cluster you want to check.
  4. Under the "Configuration" tab, locate the "Backup" section.
  5. Check the "Automated Snapshot Retention Period" value. If it is set to 0, automated snapshots are disabled for your Redshift clusters.
  6. To enable automated snapshots, set the "Automated Snapshot Retention Period" to a positive number.
  7. Click on the "Modify" button to apply the changes.

By setting the automated snapshot retention period to a positive number, you enable automated backups for the cluster, which helps ensure data protection and recoverability.

Enforced Resources
Note: Remediation steps provided by Lightlytics are meant to be suggestions and guidelines only. It is crucial to thoroughly verify and test any remediation steps before applying them to production environments. Each organization's infrastructure and security needs may differ, and blindly applying suggested remediation steps without proper testing could potentially cause unforeseen issues or vulnerabilities. Therefore, it is strongly recommended that you validate and customize any remediation steps to meet your organization's specific requirements and ensure that they align with your security policies and best practices.