Description:
Amazon ElastiCache for Redis is a blazing fast in-memory data store that provides sub-millisecond latency to power internet-scale real-time applications. Built on open-source Redis and compatible with the Redis APIs, ElastiCache for Redis works with your Redis clients and uses the open Redis data format to store your data.
Rationale:
The backup consists of the cluster's metadata, along with all of the data in the cluster. All backups are written to Amazon Simple Storage Service (Amazon S3), which provides durable storage. At any time, you can restore your data by creating a new Redis cluster and populating it with data from a backup.
Impact:
When automatic backups are enabled, ElastiCache creates a backup of the cluster on a daily basis. Automatic backups can help guard against data loss. In the event of a failure, you can create a new cluster, restoring your data from the most recent backup.
Default Value:
By default, when an ElastiCache Redis Cluster is being set up, Automatic Backup Enabled is preset in default settings.
Audit:
Log in to the AWS Console in the region where you have deployed your ElastiCache
Open the ElastiCache Dashboard https://console.aws.amazon.com/elasticache/home
Click on Redis under Resources in ElastiCache Dashboard
Choose the ElasticCache you want to check
In the description part of the ElasticCache if the Backup Retention Period is Disabled and Backup Window is Disabled it means that Automatic Backup for ElastiCache Redis Cluster has not been enabled
Repeat steps 1 to 5 till all ElasticCache clusters are checked
Remediation:
Pre-Requisite:
ElastCache Redis should be enabled in your AWS Account
Implementation Steps:
Log in to the AWS Console in the region where you have deployed your ElastiCache
Open the ElastiCache Dashboard https://console.aws.amazon.com/elasticache/home
Click on Redis under Resources in ElastiCache Dashboard
First, choose ElasticCache you want to enable automatic backup and click on Actions
Inside the actions panel, click on modify
In the Modify Cluster, click on the checkbox of Enable Automatic Backups to enable backup
Set up the settings for Automatic Backup
Click on Modify to Save the setting
Backout Plan:
Log in to the AWS Console in the region where you have deployed your ElastiCache
Open the ElastiCache Dashboard https://console.aws.amazon.com/elasticache/home
Click on Redis under Resources in ElastiCache Dashboard
First, choose ElasticCache you want to enable automatic backup and click on Actions
Inside the actions panel, click on modify
In the Modify Cluster, unclick on the checkbox of Enable Automatic Backups to disable backup
Click on Modify to Save the setting
Reference:
https://aws.amazon.com/elasticache/
https://aws.amazon.com/elasticache/redis/