Table of Contents

Search

  1. Preface
  2. Part 1: Introduction to Amazon Redshift connectors
  3. Part 2: Data Integration with Amazon Redshift V2 Connector
  4. Part 3: Data Integration with Amazon Redshift Connector

Amazon Redshift Connectors

Amazon Redshift Connectors

Server-side encryption for Amazon Redshift V2 targets

Server-side encryption for Amazon Redshift V2 targets

If you want Amazon Redshift to encrypt data while uploading and staging the
.csv
files to Amazon S3, you must enable server-side encryption.
To enable server-side encryption, select
S3 Server Side Encryption
in the advanced target properties and specify the
Customer Master key ID
in the connection properties.
You can configure the customer master key ID generated by AWS Key Management Service (AWS KMS) in the connection properties for server-side encryption. You must add IAM EC2 role and IAM Redshift role to the customer master key when you use IAM authentication and server-side encryption using customer master key.
If you select the server-side encryption in the advanced target properties and do not specify the customer master key ID in the connection properties, Amazon S3-managed encryption keys are used to encrypt data.