This section provides information on how to enable Redshift connectivity and create one or more connections to Redshift sources.
Before you begin, please verify that your meets the following requirements:
Tip: If the credentials used to connect to S3 do not provide access to Redshift, you can create an independent IAM role to provide access from Redshift to S3. If this separate role is available, the Redshift connection uses it instead. There may be security considerations.
Deployment: is deployed either on-premises or in EC2.
Access to Redshift requires:
If the credentials used to connect to S3 do not provide access to Redshift, you can create an independent IAM role to provide access from Redshift to S3. If this separate role is available, the Redshift connection uses it instead.
NOTE: There may be security considerations with using an independent role to govern this capability.
You can create Redshift connections through the following methods.
Tip: SSL connections are recommended. Details are below.
Any user can create a Redshift connection through the application.
Specify the properties for your Redshift database connection:
Hostname of the Redshift cluster
|Port||Port number used to access the Redshift cluster. Default is |
|Connect String Options||Please insert any connection options as a string here. See below.|
|Database||The Redshift database to which to connect on the cluster|
|Credential Type||Options: Basic authentication with optional IAM role ARN: Basic authentication credentials specified in this window are used to connect to the Redshift database. Additional permissions may be governed by any ARN specified in the IAM role used for the account. Use this option if you are planning to specify a database username/password combination as part of the connection. IAM Role: Connection to Redshift is governed by the IAM role associated with the user's account.|
|Username||Username with which to connect to the Redshift database|
|Password||Password associated with the Redshift username|
|IAM Role ARN for Redshift/S3 connectivity|
(Optional) You can specify an IAM role ARN that enables role-based connectivity between Redshift and the S3 bucket that is used as intermediate storage during Redshift bulk COPY/UNLOAD operations. Example:
For more information on the other options, see Create Connection Window.
To enable SSL connections to Redshift, you must enable them first on your Redshift cluster. For more information, see https://docs.aws.amazon.com/redshift/latest/mgmt/connecting-ssl-support.html.
In your connection to Redshift, please add the following string to your Connect String Options:
Save your changes.
For more information, see
The properties that you provide are inserted into the following URL, which connects to the connection:
The connect string options are optional. If you are passing additional properties and values to complete the connection, the connect string options must be structured in the following manner:
<prop>: the name of the property
<val>: the value for the property
;: any set of connect string options must begin and end with a semi-colon.
;: all additional property names must be prefixed with a semi-colon.
=: property names and values must be separated with an equal sign (
The following example connection URL uses an AWS key/secret combination (IAM user) to access Redshift:
<redshift_clustername>: the name of the redshift cluster
<region_name>: region identifier where the cluster is located
<port_number>: port number to use to access the cluster
<database_name>: name of the Redshift database to which to connect
<access_key_value>: identifier for the AWS key
<secret_key_value>: identifier for the AWS secret
<database_user_name>: user identifier for connecting to the database
The following example connection URL uses an AWS/Key secret combination using temporary credentials:
<session_token>: the AWS session token retrieved when using temporary credentials. The session token is requested by when using AWS temporary credentials.For more information, see Configure AWS Per-User Auth for Temporary Credentials.
This connection uses the following driver:
For more information, see https://docs.aws.amazon.com/redshift/latest/mgmt/troubleshooting-connections.html.
For more information, see Redshift Browser.
For more information about interacting with data on Redshift, see Using Redshift.
Import a dataset from Redshift. Add it to a flow, and specify a publishing action. Run a job.
NOTE: When publishing to Redshift through the Publishing dialog, output must be in Avro or JSON format. This limitation does not apply to direct writing to Redshift.