This document describes how to quickly use Tencent Cloud Smart Advisor (TSA) to perform a cloud risk assessment on cloud resources in the console.
Step 1: Logging In to the TSA Console
Step 2: Completing the Service Authorization Process
If this is the first time you use TSA, authorize TSA to access configurations of related cloud products. If you have already completed the authorization process for TSA, skip this step.
On the Service Authorization page, enable the service authorization feature and complete the authorization process. Step 3: Starting a Cloud Risk Assessment
2. On the Overview page, click Start Assessment/Start Assess Again. The system automatically performs the assessment on the backend.
Note:
The system automatically performs an assessment once a day by default. You can also trigger it manually.
The assessment time varies based on the scale of cloud resources and the number of risk items, typically ranging from tens of seconds to tens of minutes. The system dynamically refreshes the assessment result on the page until the assessment is completed.
Step 4: Viewing the Risk List
After the assessment is completed, view the assessment result on the Risk List page or the Cloud Risk Assessment > Overview page, and identify which resources are at risk and how they are distributed across regions. Overview Description
The risk items identified by Cloud Risk Assessment are statistically collected and displayed by architecture diagram and regional resource distribution, helping you conduct risk governance activities in an appropriate manner.
Main Advantages of the Risk List
Overall list: Risk items identified by Cloud Risk Assessment are displayed by architecture diagram and regional/virtual private cloud (VPC) resource distribution, instead of being listed as a chronological list.
Architecture diagram risks: For risk items with an architecture diagram, you can directly access Cloud Risk Assessment on the architecture diagram with one click to view and manage risks. This simplifies the operation process and improves the governance efficiency.
Resource risks: For risk items without an architecture diagram, you can allow an architecture diagram to be automatically generated by region with one click, and you can view and manage risks in Cloud Risk Assessment.
Latest assessment time: The time when the latest assessment was performed.
Color legend: A red icon indicates a high-risk item, an orange icon indicates a medium-risk item, and a green icon indicates a healthy item.
Detailed Description of a Risk Item
Click Govern in the risk list to access Cloud Risk Assessment and view the risk item details
Instance list: the resource list containing medium- and high-risk items in this assessment
Policy: the specific definition of the risk item
Condition: the alarm rule that triggers the risk item
Optimization suggestion: the measures recommended for the user to take to avoid the risk item
Step 5: Generating a Report
You can obtain reports for risks on different architecture diagrams or subscribe to automatic assessment reports and architecture assessment reports. The steps are as follows:
1. On the architecture diagram page, access Cloud Risk Assessment and click Report. The system generates an assessment report based on the current architecture diagram risks.
2. Click Archive Report to archive the assessment report in the Digital Assets module for downloading, sharing, and viewing.
Step 6: (Optional) Asking Experts to Interpreting the Assessment Report
If you want Tencent Cloud technical experts to interpret the report, you can refer to the following steps:
1. Complete the service authorization process.
Go to the Service Authorization page, enable Report Interpretation, and grant Tencent Cloud expert architects the permission to read the assessment report content. 2. Interpret the report.
Contact Us to reach out to the Tencent Cloud expert architects for professional interpretation of the report content and systematic optimization suggestions.