AWS Trusted Advisor provides a suite of features for you to help proactively monitor your AWS resources and make customized recommendations. The Trusted Advisor service advises you on best practices in four categories: cost optimization, performance, security, and fault tolerance. In this Lab, you will use some of the security and performance checks to implement best practices in AWS.

Lab Objectives

Upon completion of this lab you will be able to:

• Audit your AWS environment using AWS Trusted Advisor
• Correct security group, IAM, and EBS snapshot security issues
• Mitigate performance issues identified by AWS Trusted Advisor

Lab Prerequisites

You should be familiar with the following:

• EC2 basics including volumes and snapshots
• VPC basics including security groups and internet gateways

Lab Environment

Before completing the lab instructions the environment will look as follows:

After completing the lab instructions the environment will look as follows:

Updates

May 18th, 2023 - Resolved Trusted Advisor service limits issue

January 17th, 2023 - Updated the instructions and screenshots to reflect the latest UI

April 19th, 2022 - Added information regarding the functionality of Trusted Advisor checks

January 21st, 2022 - Updated the instructions and screenshots to reflect the latest UI

October 4th, 2021 - Updated all screenshots to match the latest user interface

June 3rd, 2020 - Addressed an issue with IAM and refresh checks

July 2nd, 2019 - Refactored part of the provisioning script to improve Lab maintainability

April 15th, 2019 - Improved instructions to make it more clear that the EBS snapshot check may not detect the EBS public snapshot because that check runs on its own schedule determined by AWS

February 5th, 2019 - Updated the instructions and screenshots to match the latest AWS Trusted Advisor experience 

January 10th, 2019 - Added a validation Lab Step to check the work you perform in the Lab