AWS Trusted Advisor Best Practices
The course is part of these learning pathsSee 3 more
This course looks at how you can use AWS Trusted Advisor to help you follow and implement some best practices and recommendations across your AWS environment within your organization. We'll cover the Trusted Advisor console, and how to use the service to enhance your AWS resources, account, and infrastructure.
If you have any feedback relating to this course, feel free to contact us at firstname.lastname@example.org.
In this course, you will learn:
- The purpose and benefits of Trusted Advisor
- How to navigate the Trusted Advisor Console
- How to use Trusted Advisor to optimize your AWS resources and account
- How to take actionable steps with Trusted Advisor to improve your AWS infrastructure
- Security Professionals & Security Auditors
- Systems Engineers and Administrators
- Compliance Managers
To get the most out of this course, you should have a basic understanding of some of the core services, such as IAM.
Hello and welcome to this short lecture where I want to summarise some of the key elements of what we have covered throughout this introductory course.
I started off by explaining what the service is and what it does, here I explained that:
- The main function of Trusted Advisor is to recommend improvements across your AWS account to help optimize your environment based on AWS best practices
- Trusted Advisor focuses on 5 categories with a list of best practice checks in each:
- Cost optimization
- Fault Tolerance
- Service Limits
- The list of available checks to your account is dependant on your AWS Support Plan
- Business and Enterprise support can take full advantage of all the checks available
- All other AWS accounts only have access to 6 free core checks in the Security category, plus the Service Limit checks.
The Security checks are:
- Security Groups - Specific Ports Unrestricted
- Amazon EBS Public Snapshots
- Amazon RDS Public Snapshots
- IAM Use
- MFA on root account
There are a number of useful features within Trusted Advisor, these being:
- Trusted Advisor Notifications - This tracks your resource check changes and cost-saving estimates over the course of a week and e-mail you a report
- Exclude Items - This allows you to select specific resources to be excluded from appearing in the console within a specific check.
- Action Links - Action Links lead you on to remediate any issue identified
- Access Management - Using IAM you can grant different levels of access to Trusted Advisor
- Refresh - You can perform a manual refresh 5 minutes after the previous refresh against either individual checks or against all checks
Following this, I focused on reviewing checks and taking appropriate action.
- A summary is provided for each category displaying how many checks require no action, how many need investigation, and how many should be looked at immediately
- For every check that Trusted Advisor provides you will see:
- A description
- Alert Criteria
- Recommended Action
- Additional Resources
This lecture also included a demonstration where I provided an overview of the dashboard and performed the following steps:
- Provided an overview of the dashboard
- Drilled down into the Trusted Advisor Checks
- Identified and rectified the issues that were displayed
- Refreshed Trusted Advisor to ensure the issues had been resolved
- Downloaded the status of the checks as an Excel file for offline review
I also provided an overview of each of the core checks available to all AWS accounts.
You should now have a greater understanding of what AWS Trusted Advisor is and does and how you can use it within your environment to optimize your infrastructure. It is a powerful tool especially if you do have a Business or Enterprise support plan to fully maximize its potential.
If you have any feedback on this course, positive or negative, please do send an e-mail to email@example.com, your feedback is greatly appreciated.
Thank you for your time and good luck with your continued learning of cloud computing.
Stuart has been working within the IT industry for two decades covering a huge range of topic areas and technologies, from data center and network infrastructure design, to cloud architecture and implementation.
To date, Stuart has created 90+ courses relating to Cloud reaching over 100,000 students, mostly within the AWS category and with a heavy focus on security and compliance.
Stuart is a member of the AWS Community Builders Program for his contributions towards AWS.
He is AWS certified and accredited in addition to being a published author covering topics across the AWS landscape.
In January 2016 Stuart was awarded ‘Expert of the Year Award 2015’ from Experts Exchange for his knowledge share within cloud services to the community.
Stuart enjoys writing about cloud technologies and you will find many of his articles within our blog pages.