enable-backup-retention
Default Severity: medium
Explanation
Redis clusters should have a snapshot retention time to ensure that they are backed up and can be restored if required.
Possible Impact
Without backups of the redis cluster recovery is made difficult
Suggested Resolution
Configure snapshot retention for redis cluster
Insecure Example
The following example will fail the aws-elasticache-enable-backup-retention check.
resource "aws_elasticache_cluster" "bad_example" {
cluster_id = "cluster-example"
engine = "redis"
node_type = "cache.m4.large"
num_cache_nodes = 1
parameter_group_name = "default.redis3.2"
engine_version = "3.2.10"
port = 6379
}
Secure Example
The following example will pass the aws-elasticache-enable-backup-retention check.
resource "aws_elasticache_cluster" "good_example" {
cluster_id = "cluster-example"
engine = "redis"
node_type = "cache.m4.large"
num_cache_nodes = 1
parameter_group_name = "default.redis3.2"
engine_version = "3.2.10"
port = 6379
snapshot_retention_limit = 5
}