Overview
- A cloud-scale business intelligence (BI) service that you can use to deliver easy-to-understand insights.
- Used for data visualization, reporting, dashboard, anomaly detection, forecast, and insights.
- It can connect to data in the cloud and combine data from many different sources.
- It can scale from 10 users to 10,000, all with no infrastructure to deploy or manage.
- It saves prepared data either in SPICE memory or as a direct query.
- Supported data sources:
- Amazon Redshift/Redshift Spectrum
- Amazon Aurora
- Amazon OpenSearch
- Amazon Athena
- Amazon S3
- MySQL/MariaDB/MS SQLServer/Postgresql/Oracle
- Can connect to on-prem data sources
- SPICE:
- A robust in-memory engine that QuickSight uses.
- Engineered to perform advanced calculations and serve data rapidly.
- 10GB of SPICE/user
- You can add SPICE capacity by purchasing more SPICE.
- Only in an Enterprise edition is data stored in SPICE encrypted at rest.
- Security:
- You can use the following tools for identity and access to Amazon QuickSight:
- IAM Identity Center (Enterprise edition only)
- IAM federation (Standard and Enterprise editions)
- AWS Directory Service for Microsoft Active Directory ((Enterprise edition only)
- SAML-based single sign-on (IAM Identity Center) (Standard and Enterprise edition)
- Multifactor authentication (MFA) (Standard and Enterprise edition)
- Has row and column (Enterprise edition only) level security
- For Amazon QuickSight to access your AWS resources, you must create security groups that authorize connections from the IP address ranges used by Amazon QuickSight servers.
- Encryption at rest (for Enterprise edition only)
- You can use the following tools for identity and access to Amazon QuickSight:
Infrastructure Security
- Amazon QuickSight is delivered as a web application, hosted on dedicated Amazon EC2 hosts, separate from AWS virtual private clouds (VPCs).
- Amazon QuickSight is accessed through Regional public endpoints.
- The database server, which is QuickSight’s data source, must be accessible from the Internet and allow inbound traffic from QuickSight servers.
- You can create a VPC connection in QuickSightby by adding an ENI to your VPC. This feature is available on EE only.
- This will allow cross-region or cross-account connection through:
- VPC Sharing
- Transit Gateways
- Private Link
- This will allow cross-region or cross-account connection through:
- For QuickSight to connect to an Amazon Redshift instance, the Amazon Redshift must have in its SG inbound rule that allows the public CIDR IP of QuickSight in that region.
Machine Learning Insights
ML Insights is available as part of the QuickSight Enterprise Edition.
- Anomaly Detection
- Continuously analyze your data to discover anomalies and variations inside of the aggregates, giving you the insights to act when business changes occur.
- Discovers hidden trends and outliers in your data.
- Uses Random Cut Forrest behind the scenes.
- Forecasting
- Predict your business metrics and perform interactive what-if analysis with point-and-click simplicity.
- Can support interactive “what-if” queries.
- It also uses Random Cut Forrest behind the scenes.
- Auto-narrative
- A natural-language summary widget that displays descriptive text instead of charts.
- Amazone Quicksights automatically interprets the charts and tables in your dashboard and provides a number of suggested insights in natural language.
- Suggested Insights
- Amazon QuickSight creates a list of suggested insights based on its interpretation of the data you put into your visuals.
- You can see different suggestions depending on what fields you add to your visual and what type of visual you choose.
- You can also create your own computation, using your own words to give context to the fields that appear in the widget through Custom Insights.