I'm trying to set up a AWS Glue job and make a connection to Redshift. I'm getting error when I set the connection type to Redshift: <blockquote> "Unable to find a suitable security group. Change connection type to JDBC and retry adding your connection." </blockquote> Following what was said here in these forums, I added permissions to my IAM account for role <code>AWSGlueServiceRoleDefault</code>: <img src="https://i.stack.imgur.com/n2yx5.png" alt="enter image description here"> I then set up the job with the matching IAM role <code>AWSGlueServiceRoleDefault</code>: <img src="https://i.stack.imgur.com/OL4yX.png" alt="enter image description here"> I need to store the Glue data in Redshift DB, so I chose JDBC then added a connection: <img src="https://i.stack.imgur.com/xlQLz.png" alt="enter image description here"> As soon as I choose <code>Redshift</code>, it complains that it cannot find a suitable security group. Why is this? <img src="https://i.stack.imgur.com/j2sh0.png" alt="enter image description here"> <img src="https://i.stack.imgur.com/WyMPA.png" alt="enter image description here">

I found the same issue when trying to connect Glue with Amazon RDS (MySQL) and solved it following the AWS Glue guidelines -> Setting Up a VPC to Connect to JDBC Data Stores. In a nutshell you should check that the security group associated to your RedShift cluster allows self-referencing traffic. <ol> <li>Go to RedShift console and choose Clusters </li> <li>Look at the Cluster Properties section for the ID of the security group associated to the cluster (e.g. sg-957be3ef).</li> <li>Click at the security group name to jump to the EC2 console -> Security groups section. Choose the group and modify the Inbound and Outbound rules adding self-referencing rule to allow AWS Glue components to communicate. <ul> <li>Inbound rules: chose Type=All TCP, leave the default values and type the security group in the Source field (i.e. sg-957be3ef for this example).</li> <li>Outbound rules: same as Inbound rules.</li> </ul> </li> </ol> Hope that works!

glue job for redshift connection: "Unable to find suitable security group"

I'm trying to set up a AWS Glue job and make a connection to Redshift.

I'm getting error when I set the connection type to Redshift:

"Unable to find a suitable security group. Change connection type to JDBC and retry adding your connection."

Following what was said here in these forums, I added permissions to my IAM account for role AWSGlueServiceRoleDefault:

enter image description here

I then set up the job with the matching IAM role AWSGlueServiceRoleDefault:

enter image description here

I need to store the Glue data in Redshift DB, so I chose JDBC then added a connection:

enter image description here

As soon as I choose Redshift, it complains that it cannot find a suitable security group. Why is this?

enter image description here

How do you add a security group to a glue job?

In the left navigation pane, choose Clusters. Choose the cluster name that you want to access from AWS Glue. In the Cluster Properties section, choose a security group in VPC security groups to allow AWS Glue to use. Record the name of the security group that you chose for future reference.

What is a glue connection?

An AWS Glue connection is a Data Catalog object that stores login credentials, URI strings, virtual private cloud (VPC) information, and more for a particular data store. AWS Glue crawlers, jobs, and development endpoints use connections in order to access certain types of data stores.

I found the same issue when trying to connect Glue with Amazon RDS (MySQL) and solved it following the AWS Glue guidelines -> Setting Up a VPC to Connect to JDBC Data Stores.

In a nutshell you should check that the security group associated to your RedShift cluster allows self-referencing traffic.

Go to RedShift console and choose Clusters
Look at the Cluster Properties section for the ID of the security group associated to the cluster (e.g. sg-957be3ef).
Click at the security group name to jump to the EC2 console -> Security groups section. Choose the group and modify the Inbound and Outbound rules adding self-referencing rule to allow AWS Glue components to communicate.
- Inbound rules: chose Type=All TCP, leave the default values and type the security group in the Source field (i.e. sg-957be3ef for this example).
- Outbound rules: same as Inbound rules.

Hope that works!

You have to create a:

1)AWSGlueServiceRole role and attach s3FullAccess,GlueServiceRole and RedshiftFullAccess policy.

2)Check you have vpc Endpoint, If not create a VPC endpoint and make sure subnets are added to route table. 3)Create self referencing security group.

Now connect using JDBC connection,

jdbc:type://xxxx:port/databasename

type is redshift/postgresql/etc... xxxx: server name where the database hosted.

glue job for redshift connection: "Unable to find suitable security group"

Tags:

python

amazon-web-services

jdbc

amazon-redshift

aws-glue

user3871

People also ask

2 Answers

fikipollo

Narayana shanubhog

Recent Activity

Donate For Us

glue job for redshift connection: "Unable to find suitable security group"

Tags:

python

amazon-web-services

jdbc

amazon-redshift

aws-glue

user3871

People also ask

2 Answers

fikipollo

Narayana shanubhog

Related questions

Recent Activity

Donate For Us