Posted On: Oct 30, 2019

Amazon ElastiCache for Redis now allows you to modify authentication tokens by setting and rotating new tokens. Redis authentication tokens enable Redis to require a token (password) before allowing clients to execute commands. You can now modify active tokens while in use, or add brand-new tokens to existing encryption-in-transit enabled clusters that were previously setup without authentication tokens. ElastiCache for Redis provides a two-step process that allows you to set and rotate the token without interrupting client requests. 

With support for rotating authentication token, ElastiCache for Redis now provides you more control and flexibility to meet your security requirements and password rotation policies. This new capability expands ElastiCache for Redis’ already available comprehensive security controls such as secure Amazon Virtual Private Cloud (Amazon VPC) setup, AWS Identity and Access Management (AWS IAM) integration, encryption at-rest, encryption in-transit, support for customer managed Customer Master Keys (CMK) in AWS Key Management Service (AWS KMS) and Redis authentication token. 

Support for Redis authentication token rotation is generally available in ElastiCache for Redis 5.0.5 in all AWS regions except Asia Pacific (Osaka) Local and China regions. For more information refer to our documentation. To get started with Amazon ElastiCache, log into the AWS Management Console.