Follow Best Practices with AWS Trusted Advisor

The hands-on lab is part of these learning paths

DevOps Engineer – Professional Certification Preparation for AWS
course-steps 35 certification 5 lab-steps 18 quiz-steps 2 description 3
SysOps Administrator – Associate Certification Preparation for AWS
course-steps 35 certification 5 lab-steps 30 quiz-steps 4 description 5
Security - Specialty Certification Preparation for AWS
course-steps 22 certification 2 lab-steps 12 quiz-steps 5

Lab Steps

lock
Logging in to the Amazon Web Services Console
lock
Understanding AWS Trusted Advisor
lock
Following Security Group Best Practices
lock
Following Identity and Access Management Best Practices
lock
Enabling Multi-Factor Authentication on Your AWS Account
lock
Following Snapshot Best Practices
lock
Following Service Limits Best Practices
lock
Validate AWS Lab

Ready for the real environment experience?

DifficultyBeginner
Max Duration1h 10m
Students300
Ratings
4.5/5
star star star star star-half

Description

Lab Overview

AWS Trusted Advisor provides a suite of features for you to help proactively monitor your AWS resources and make customized recommendations. The Trusted Advisor service advises you on best practices in four categories: cost optimization, performance, security, and fault tolerance. In this Lab, you will use some of the security and performance checks to implement best practices in AWS.

Lab Objectives

Upon completion of this lab you will be able to:

  • Audit your AWS environment using AWS Trusted Advisor
  • Correct security group, IAM, and EBS snapshot security issues
  • Mitigate performance issues identified by AWS Trusted Advisor

Lab Prerequisites

You should be familiar with the following:

  • EC2 basics including volumes and snapshots
  • VPC basics including security groups and internet gateways

Lab Environment

Before completing the lab instructions the environment will look as follows:

After completing the lab instructions the environment will look as follows:

Updates

July 2nd, 2019 - Refactored part of the provisioning script to improve Lab maintainability

April 15th, 2019 - Improved instructions to make it more clear that EBS snapshot check may not detect the EBS public snapshot because that check runs on its own schedule determined by AWS

February 5th, 2019 - Updated the instructions and screenshots to match the latest AWS Trusted Advisor experience 

January 10th, 2019 - Added a validation Lab Step to check the work you perform in the Lab

About the Author

Students38382
Labs101
Courses11
Learning paths9

Logan has been involved in software development and research since 2007 and has been in the cloud since 2012. He is an AWS Certified DevOps Engineer - Professional, AWS Certified Solutions Architect - Professional, Microsoft Certified Azure Solutions Architect Expert, MCSE: Cloud Platform and Infrastructure, Google Cloud Certified Associate Cloud Engineer, Certified Kubernetes Administrator (CKA), Certified Kubernetes Application Developer (CKAD), Linux Foundation Certified System Administrator (LFCS), and Certified OpenStack Administrator (COA). He earned his Ph.D. studying design automation and enjoys all things tech.