AWS Trusted Advisor analyzes your AWS infrastructure against AWS best practices to provide actionable recommendations.
AWS Trusted Advisor scans your AWS infrastructure and compares it to AWS best practices.
AWS Trusted Advisor focuses on a set of core categories to help optimize your AWS environment, identifying opportunities for improvement across different aspects of your infrastructure.
Trusted Advisor checks are grouped into categories to provide actionable insights based on AWS best practices.
Cost Optimization
Identifies resources that are unused or opportunities to lower your AWS bill.
Use Cases:
- Identifying unattached and underutilized EBS volumes
- Finding opportunities to lower AWS bill
Fault Tolerance
Highlights redundancy shortcomings, identifies overused resources, and flags potential service limits to improve the reliability of your solutions.
Use Cases:
- Improving reliability of solutions
- Addressing redundancy shortcomings
- Identifying overused resources
- Flagging potential service limits
Service Limits
Displays your current usage limits for AWS services and resources.
Use Cases:
- Monitoring current usage against AWS service limits
Security
Trusted Advisor's Security checks look for potential vulnerabilities, like S3 buckets with public access or security groups open to the internet.
Use Cases:
- Identifying S3 buckets with public access
- Flagging security groups open to the internet
Performance
Trusted Advisor checks five categories of best practice compliance, which includes performance, to help optimize your cloud environment.
Use Cases:
- Optimizing the cloud environment
Trusted Advisor provides detailed checks for various resource types to offer actionable recommendations.
AWS Trusted Advisor provides a cost optimization check that specifically identifies unattached and underutilized EBS volumes within your AWS environment. These volumes, while not actively used, can still incur storage costs. By flagging these resources, Trusted Advisor helps you reduce unnecessary expenses by either deleting or repurposing them.
Understanding what Trusted Advisor primarily focuses on, and what it does not, is crucial for effective cloud governance.
The categories that AWS Trusted Advisor does not primarily focus on, compared to the given options, is Policy Compliance. While AWS Trusted Advisor can indirectly help improve your security posture and adherence to some best practices that could align with certain policies, it's not designed to specifically check or enforce adherence to regulatory compliance policies like PCI DSS or HIPAA.
Other AWS services like AWS Config and AWS Security Hub are more focused on compliance and governance.