Copied!

What are you looking for?

Search by 3MGC

Main Menu

Home Contact
Services Resume Tools
Node
Redis

Best Guide to Secure Redis with Password and Connect from Node.js

secure-redis-with-password
Shahroz Javed
Nov 04, 2025 . 20 views

Table Of Contents

 

By default, Redis doesn’t require a password, which can be risky if your server is accessible publicly. In this guide, you’ll learn how to secure Redis using a password and connect to it safely from your Node.js application.

⚠️ Note: It’s always recommended to secure your Redis instance, especially in production environments or when your database is accessible from remote servers.

Introduction

Redis allows you to protect your instance with a password using the requirepass directive. This ensures that only authenticated clients can execute commands. You can set it either permanently (via redis.conf) or temporarily (via command line).

💡 Related: Learn the Basics of Redis in Node.js for simple key-value operations.

1. Locate Your redis.conf File

Depending on your operating system, the configuration file is stored in different paths:

Windows (Manual Install) → C:\Program Files\Redis\redis.windows.conf
Windows (Service Install) → C:\Program Files\Redis\redis.windows-service.conf
Linux → /etc/redis/redis.conf
macOS (Homebrew) → /usr/local/etc/redis.conf

2. Add a Password in redis.conf

Open the redis.conf file and look for the following lines:

port 6380
requirepass mySecret123

Here, Redis will run on port 6380 with password mySecret123. Save the file and restart your Redis server for the changes to take effect.

✅ Tip: You can use any port number (e.g., 6379 or 6380) but ensure it’s not blocked by your firewall.

3. Restart Redis Server

Once you’ve updated your configuration, restart Redis to apply the new settings:

# Windows (Redis Service)
net stop Redis
net start Redis

# Linux / macOS
sudo systemctl restart redis

4. Set a Temporary Password (Optional)

If you don’t want to edit redis.conf, you can start Redis with a temporary password using:

redis-server --requirepass "mySecret123"

This password will be active until the server is stopped. It’s a quick way to secure Redis temporarily.

💡 Related: See how to Use Redis Lists for Task Queues in Node.js.

5. Test Redis Authentication

Open Redis CLI and try authenticating manually:

redis-cli -p 6380
AUTH mySecret123

If the password is correct, you’ll get a OK response.

6. Connect Securely from Node.js

When connecting from Node.js using the official redis package, include the password in your connection URL.

import { createClient } from "redis";

// If using Redis ACL (user + password)
const client = createClient({
  url: "redis://default:MyStrongPassword123@127.0.0.1:6379",
});

// If using only requirepass (no ACL user)
const client = createClient({
  url: "redis://:mySecret123@127.0.0.1:6380",
});

await client.connect();
console.log("Connected to secure Redis!");

await client.quit();

Output

Once the connection is successful, you’ll see the following message:

Connected to secure Redis!
Redis Authentication Example
Successful authentication with Redis using password protection

Conclusion

Securing Redis with a password is an essential step for any production setup. It protects your data from unauthorized access and helps maintain system integrity. Whether you use a permanent configuration or a temporary command, authentication ensures safe Redis communication.

✅ Always use strong passwords and limit Redis access to trusted IPs for maximum security.

Tags

redis password redis authentication redis.conf requirepass redis secure connection redis nodejs password redis auth redis secure setup redis windows password redis nodejs tutorial

24 Shares

Similar Posts