Trusted Advisor

• No need to install anything - high level AWS account assessment
• It does analyze an AWS account and provides recommendations regarding:
  • Const optimization
  • Performance
  • Security
  • Fault tolerance
  • Service limits
  • Operational Excellence
• It has 2 tiers:
  • Free tier
  • Business & Enterprise Support plan:
    • For full set of check
    • Programmatic access using AWS support API
• Core checks and recommendations are enabled for all customers
  • We can enable weekly email notifications from the console
• Full Trusted Advices: available for Business and Enterprise support plans
  • Provides the ability to set CloudWatch alarms when limits are reached

Trusted Advisor Automation

• We can use EventBridge to detect and react to changes it the status of Trusted Advisor checks
• Examples of automation: https://github.com/aws/Trusted-Advisor-Tools
• Trusted Advisor has integration with CloudWatch Alarms in order to monitor service limits (for business and enterprise support plans)
• Trusted Advisor refresh:
  • Can be done manually every 5 minutes
  • Can be done programmatically:
    • refresh-trusted-advisor-check
    • describe-trusted-advisor-check-result, ...-statuses, ...-summaries
  • In case of Business, Enterprise On-Ramp, or Enterprise Support plan, Trusted Advisor automatically refreshes the checks in our account account on a weekly basis