Redshift

Suggest Edits

Grant Teleskope Access to Redshift

Attach the AmazonRedshiftDataFullAccess and AmazonRedshiftReadOnlyAccess to the Teleskope role you created.

Terraform

resource "aws_iam_role_policy_attachment" "redshift_data_policy" {
  role       = "TeleskopeReadOnlyRole"
  policy_arn = "arn:aws:iam::aws:policy/AmazonRedshiftDataFullAccess"
}

resource "aws_iam_role_policy_attachment" "redshift__policy" {
  role       = "TeleskopeReadOnlyRole"
  policy_arn = "arn:aws:iam::aws:policy/AmazonRedshiftReadOnlyAccess"
}

Teleskope Redshift User

For each Redshift cluster you would like to scan using Teleskope, you will need to create a database user, and grant that user read permissions.

Create user

create user teleskope_ro password disable;

Grant read access

-- Grant select to each Redshift schema
GRANT USAGE ON SCHEMA {schema} TO teleskope_ro;
GRANT SELECT ON ALL TABLES IN SCHEMA {schema} TO teleskope_ro;

Updated 11 months ago