AWS Server Migration Service - AWS GovCloud (US)

AWS Server Migration Service

AWS Server Migration Service (AWS SMS) combines data collection tools with automated server replication to speed the migration of on-premises servers to AWS.

To use the Server Migration Connector with AWS GovCloud (US) Regions, follow these steps on your Server Migration Connector VM. The following procedure permanently converts your connector virtual appliance to an AWS GovCloud (US) connector.

  1. Install the Server Migration Connector as described in Getting Started with AWS Server Migration Service.

  2. Open the connector's virtual machine console and log in as ec2-user with the password ec2pass. Supply a new password if prompted.

  3. Run the following command:

    sudo enable-govcloud
  4. In a web browser, access the connector VM at its IP address (https://ip-address-of-connector/). In the setup wizard, under AWS Region, the AWS GovCloud (US) Regions should now be the regions listed.

How AWS Server Migration Service Differs for AWS GovCloud (US)

This service has no differences between the AWS GovCloud (US) and the standard AWS Regions.

Documentation for AWS Server Migration Service

AWS SMS User Guide.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted

ITAR-Regulated Data Not Permitted

  • All data entered, stored, and processed on an encrypted, non-root, non-boot partition in a virtual machine can contain ITAR-regulated data.

  • Virtual machine metadata is not permitted to contain ITAR-regulated data. For example, text displayed outside of a virtual machine console in vSphere Client, SCVMM, or Hyper-V Manager is not permitted to contain ITAR-regulated data.

  • Do not enter ITAR-regulated data in the following fields:

    • VM names or paths

    • Virtual machine disk file paths

    • IP addresses or host names of VMs, ESXi hosts, vCenter, Hyper-V hosts, or SCVMM

    • User name of any service account or Active Directory user created for Service Migration Connector to log into vCenter, SCVMM, or Hyper-V

  • Do not enter ITAR-regulated data into the root or boot partition of any virtual machine being imported using the AWS Server Migration Service