External Client Data Share to Internal Redshift Serverless

Question

Good day,

We are trying to implement data share moving from API OAuth2 to Redshift Serverless Data Sharing.

1. What are the best practices/advisable/methods of sharing data to external client using Redshift Serverless?
2. Can it be done, are there limitations, I was thinking of providing credentials to a security group that accesses a DB/schema or views for client specific to access, recommendations please?
3. Is this possible for an external user/client to access aws redshift serverless from powerbi?
4. For now, we have only 10 clients that wants access to the raw data and was thinking of managing credentials within a table > other options perhaps?

Please help, any thoughts/links/examples on how to achieve data sharing via Redshift Serverless with PowerBI

Regards

Accepted Answer

* Redshift supports data sharing where a Serverless cluster can act as a data producer and share data with other clusters or applications.
* You can create IAM roles with necessary permissions to allow external applications controlled access to specific databases/schemas in the Serverless cluster.
* Applications like Power BI can be configured to access the Serverless cluster using IAM credentials associated with the assigned role. This provides a secure way to share data without exposing database credentials.
* For a small number of clients, you can provision individual IAM roles and manage access credentials within your application. Make sure to rotate credentials periodically for security.
* Consider using AWS Secrets Manager to securely store and rotate database credentials for external access. Applications can retrieve secrets at runtime using their assigned IAM role.

Answer

Good day, Thank You very much

Do you have a best practices link for me to execute, do we expose client data to a view or to a database etc?

External Client Data Share to Internal Redshift Serverless

Relevant content