Skip to main content

lacework-global-390

ElastiCache Redis clusters should have automatic backup enabled (Automated)

Description

Amazon ElastiCache for Redis clusters can back up their data. You can use the backup to restore a cluster or seed a new cluster. The backup consists of the cluster's metadata, along with all of the data in the cluster. Amazon Simple Storage Service (S3) provides durable storage for all backups.

Remediation

From the AWS Console:

  1. Log in to the AWS Management Console.
  2. Click Services.
  3. Select Database > ElastiCache.
  4. Under Resources, click Redis caches.
  5. For the cache of interest, select it and click Actions > Modify.
  6. Under Backup, select Enable automatic backups and set a Backup retention period of 1 day or more.
  7. Once finished, click Preview changes.
  8. Under Schedule modifications, select Yes for Apply immediately, and click Modify.

From CLI:

aws elasticache modify-cache-cluster --cache-cluster-id <cluster_id> --snapshot-retention-limit <number_of_days> --apply-immediately

References

https://docs.aws.amazon.com/securityhub/latest/userguide/elasticache-controls.html#elasticache-1
https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/backups-automatic.html

Last updated on