AWS Trusted Advisor

AWS Trusted Advisor Summary

AWS Trusted Advisor is an AWS tool that provides real-time assistance to help you provision your resources following AWS best practices.
It helps optimize your AWS infrastructure, improve security and performance, reduce costs, and monitor service limits.

AWS Trusted Advisor checks a large number of services grouped into four categories:
- Cost Optimization: Recommendations can reduce expenses by highlighting idle resources or suggesting reserved resources.
- Security: Helps harden AWS services against intruders by enabling various security features.
- Fault Tolerance: Enhances application resilience by highlighting health issues, missing backups, and redundancy shortfalls.
- Performance: Improves application and infrastructure performance by checking service limits and monitoring instances.
Trusted Advisor scans your cloud infrastructure and gives recommendations based on best practices. Recommendations fall into these categories:
- No problem detected: Green check.
- Investigation recommended: Orange exclamation mark.
- Action recommended: Red exclamation mark.

These Trusted Advisor checks are available to all AWS users:

Service Limits Check: Inspects usage against important service limits, alerting when you exceed 80% of allocated resources like EC2 instances and EBS volumes.
Security Groups - Specific Ports Unrestricted Check: Notifies you of overly permissive access to EC2 instances, helping avoid malicious activities.
IAM Use Check: Alerts if you use account-level credentials instead of creating users, groups, and roles for secure resource access.
MFA on Root Account Check: Recommends using multi-factor authentication (MFA) for improved security.