AWS Trusted Advisor

Home » AWS Cheat Sheets » AWS Management Tools » AWS Trusted Advisor

AWS Trusted Advisor

Last updated on June 22, 2023

AWS Trusted Advisor Cheat Sheet

  • Trusted Advisor analyzes your AWS environment and provides best practice recommendations in five categories:
    • Cost Optimization
    • Performance
    • Security
    • Fault Tolerance
    • Service Limits
  • Access to the full set of Trusted Advisor checks is available to Business, Enterprise On-Ramp, and Enterprise Support plans.

 

Concepts

  • The AWS Support API gives you access to some of the AWS Support Center’s features and provides two different groups of operations:
    • Support case management – operations to manage your AWS support cases throughout their entire life cycle, from creation to resolution.
    • Trusted Advisor – operations to access AWS Trusted Advisor checks.
    • The endpoint to access the AWS Support API: https://support.us-east-1.amazonaws.com
  • If you have a Business, Enterprise On-Ramp, or Enterprise Support plan, you can access all checks via the AWS Support API and the AWS CLI.
    • For the Basic and Developer Support plan, use the Trusted Advisor console to access core security checks and checks for service limits.
  • You can use the Trusted Advisor console or the AWS Support API to perform operations on the following Trusted Advisor checks:
    • Cost Optimization – identify unused resources and opportunities to lower your bill.
    • Performance – improve the speed and responsiveness of your applications.
    • Security – recommends settings that can improve the security of your AWS solution.
    • Fault Tolerance – highlight redundancy shortfalls, current service limits, and overused resources.
    • Service Limits – shows the current usage limit for AWS services and resources.
  • Tutorials dojo strip
  • The summary checks are displayed on the Trusted Advisor dashboard.
    • Action recommended (red) – recommends an action for the check.
    • Investigation recommended (yellow) – detects a potential problem with the check.
    • No problems detected (green) – no issue identified for the check.
    • Excluded items (gray) – resources that you want a check to disregard.
  • You can use the organizational view feature to generate a report for all AWS member accounts.
  • You can also view your data in a dashboard and visualize your report information using the following services:
    • Amazon S3 – storage for resources.json report.
    • AWS CloudFormation – a template that creates resources so that AWS services can access the S3 bucket’s report data.
    • Amazon Athena – queries and analyzes the results of the report in the S3 bucket.
    • Amazon QuickSight – a dashboard to view the results of the report.
  • With Trusted Advisor API operations, you can write applications interacting with AWS Trusted Advisor.
    • Get the list of available Trusted Advisor checks
    • Refresh the list of available Trusted Advisor checks
    • Poll a Trusted Advisor to check for status changes
    • Request a Trusted Advisor check result
    • Print details of a Trusted Advisor check
  • You can also use AWS Compute Optimizer to view the same recommendations in your Trusted Advisor checks.
  • Your AWS account team can use Trusted Advisor Priority to proactively monitor your account and make prioritized recommendations when opportunities arise.
  • Trusted Advisor Priority recommendations can come from either of two sources:
    • AWS services –  Trusted Advisor, AWS Security Hub, and AWS Well-Architected all generate recommendations automatically.
    • Your account team – create manual recommendations for risks found in your account.

AWS Trusted Advisor Security

  • You can use IAM policies to grant users or roles in your account access to AWS Trusted Advisor’s organizational view.
  • With AWS Security Hub, you can view the Trusted Advisor check’s status, the list of affected resources, and then follow recommendations to address security issues.

AWS Trusted Advisor Monitoring

  • You can use Amazon EventBridge to detect when the status of your Trusted Advisor checks changes. Then, based on the rules you define, it performs one or more target actions whenever the status changes to a value specified in a rule.
  • To create a rule for Trusted Advisor checks, you must have an AWS Support plan.
  • You can also create alarms in Amazon CloudWatch to detect changes in the status of Trusted Advisor metrics.
  • Supports logging a subset of the Trusted Advisor console actions and API operations as events in AWS CloudTrail.

AWS Trusted Advisor Pricing

  • By default, the Basic support plan is already included in your account.
  • You only pay for the Developer, Business, Enterprise On-Ramp, and Enterprise Support plans

 

AWS Trusted Advisor Cheat Sheet References:

https://aws.amazon.com/premiumsupport/trustedadvisor/
https://aws.amazon.com/premiumsupport/ta-faqs/

Tutorials Dojo portal

Be Inspired and Mentored with Cloud Career Journeys!

Tutorials Dojo portal

Enroll Now – Our Azure Certification Exam Reviewers

azure reviewers tutorials dojo

Enroll Now – Our Google Cloud Certification Exam Reviewers

Tutorials Dojo Exam Study Guide eBooks

tutorials dojo study guide eBook

FREE AWS Exam Readiness Digital Courses

Subscribe to our YouTube Channel

Tutorials Dojo YouTube Channel

FREE Intro to Cloud Computing for Beginners

FREE AWS, Azure, GCP Practice Test Samplers

Recent Posts

Written by: Jon Bonso

Jon Bonso is the co-founder of Tutorials Dojo, an EdTech startup and an AWS Digital Training Partner that provides high-quality educational materials in the cloud computing space. He graduated from Mapúa Institute of Technology in 2007 with a bachelor's degree in Information Technology. Jon holds 10 AWS Certifications and is also an active AWS Community Builder since 2020.

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, YouTube, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!

View Our AWS, Azure, and GCP Exam Reviewers Check out our FREE courses

Our Community

~98%
passing rate
Around 95-98% of our students pass the AWS Certification exams after training with our courses.
200k+
students
Over 200k enrollees choose Tutorials Dojo in preparing for their AWS Certification exams.
~4.8
ratings
Our courses are highly rated by our enrollees from all over the world.

What our students say about us?