Posted On: Sep 20, 2021
Amazon Redshift data sharing allows you to share live and transactionally consistent data across different Redshift clusters without the complexity and delays associated with data copies and data movement. Ability to share data across clusters that are in the same AWS account is already available in AWS GovCloud(US) Regions. Now sharing data across Redshift clusters in different AWS accounts is also generally available in AWS GovCloud(US) Regions. Cross-account data sharing is supported on all Amazon Redshift RA3 node types. There is no additional cost to use cross-account sharing on your Amazon Redshift clusters.
With data sharing, you can securely share data at many levels including schemas, tables, views, and user defined functions, and use fine-grained controls to specify access for each data consumer. With cross-account data sharing, you can provide data access to other business groups within your organization, partners, and customers, enabling you to securely offer data and analytics as a service. Users with access to shared data can discover and query the data with high performance using standard SQL and analytics tools. Queries accessing shared data use the compute resources of the consumer Redshift cluster and do not impact the performance of the producer cluster. In addition to the database level privileges available to control sharing within the same account, Amazon Redshift integrates with AWS Identity Access Management (IAM) and offers additional granular security controls with a new authorization and acceptance workflow in cross-account sharing. With this, you can ensure that only authorized users are able to share data to other AWS accounts including outside organizations and consume data coming from other AWS accounts. Amazon Redshift also provides ability to monitor the data sharing permissions and the usage across all the consumer clusters and accounts and revoke access when needed.