AWS Redshift (IAM)

aws analytics

A fully managed, petabyte-scale data warehouse service in the cloud that allows you to analyze large datasets using SQL.

Common permissions

redshift:DescribeClustersredshift:DescribeEventsredshift:DescribeTagsredshift:ListDatabasesredshift:ListSchemasredshift:ListTablesredshift:DescribeTable

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "redshift:DescribeClusters",
        "redshift:DescribeEvents",
        "redshift:DescribeTags",
        "redshift:ListDatabases",
        "redshift:ListSchemas",
        "redshift:ListTables",
        "redshift:DescribeTable"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid redshift:* — grants full control including creating, modifying, and deleting clusters and data.
Avoid redshift:DeleteCluster — allows deletion of clusters, causing permanent data loss.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/redshift/redshift.json ↗

API

full doc /v1/iam/redshift