Ingest and migrate EC2 Windows instances into an AWS Managed Services account
Created by Anil Kunapareddy (AWS) and Venkatramana Chintha (AWS)
Environment: Production | Source: VPC in AWS Cloud | Target: VPC Managed by AWS Managed Services |
R Type: Rehost | Workload: Microsoft | Technologies: Migration; Operations; Security, identity, compliance |
AWS services: AWS Managed Services |
Summary
This pattern explains the step-by-step process of migrating and ingesting Amazon Elastic Compute Cloud (Amazon EC2) Windows instances into an Amazon Web Services (AWS) Managed Services (AMS) account. AMS can help you manage the instance more efficiently and securely. AMS provides operational flexibility, enhances security and compliance, and helps you optimize capacity and reduce costs.
This pattern starts with an EC2 Windows instance that you have migrated to a staging subnet in your AMS account. A variety of migration services and tools are available to perform this task, such as AWS Application Migration Service.
To make a change to your AMS-managed environment, you create and submit a request for change (RFC) for a particular operation or action. Using an AMS workload ingest (WIGS) RFC, you ingest the instance into the AMS account and create a custom Amazon Machine Image (AMI). You then create the AMS-managed EC2 instance by submitting another RFC to create an EC2 stack. For more information, see AMS Workload Ingest in the AMS documentation.
Prerequisites and limitations
Prerequisites
An active, AMS-managed AWS account
An existing landing zone
Permissions to make changes in the AMS-managed VPC
An Amazon EC2 Windows instance in a staging subnet in your AMS account
Completion of the general prerequisites for migrating workloads using AMS WIGS
Completion of the Windows prerequisites for migrating workloads using AMS WIGS
Limitations
This pattern is for EC2 instances operating Windows Server. This pattern doesn’t apply to instances running other operating systems, such as Linux.
Architecture
Source technology stack
Amazon EC2 Windows instance in a staging subnet in your AMS account
Target technology stack
Amazon EC2 Windows instance managed by AWS Managed Services (AMS)
Target architecture
Tools
AWS services
Amazon Elastic Compute Cloud (Amazon EC2) provides scalable computing capacity in the AWS Cloud. You can use Amazon EC2 to launch as many or as few virtual servers as you need, and you can scale out or scale in.
AWS Identity and Access Management (IAM) helps you securely manage access to your AWS resources by controlling who is authenticated and authorized to use them.
AWS Managed Services (AMS) helps you operate more efficiently and securely by providing ongoing management of your AWS infrastructure, including monitoring, incident management, security guidance, patch support, and backup for AWS workloads.
Other services
PowerShell
is a Microsoft automation and configuration management program that runs on Windows, Linux, and macOS.
Epics
Task | Description | Skills required |
---|---|---|
Change the DNS Client settings. |
| Migration engineer |
Change the Windows Update settings. |
| Migration engineer |
Enable the firewall. |
| Migration engineer |
Task | Description | Skills required |
---|---|---|
Clean up and prepare the instance. |
| Migration engineer |
Repair the sppnp.dll file. |
| Migration engineer |
Run the pre-WIG validation script. |
| Migration engineer |
Create the failsafe AMI. | After the pre-WIG validation passes, create a pre-ingestion AMI as follows:
For more information, see AMI | Create in the AMS documentation. | Migration engineer |
Task | Description | Skills required |
---|---|---|
Submit the RFC to create the workload ingest stack. | Submit a request for change (RFC) to start the AMS WIGS. For instructions, see Workload Ingest Stack: Creating in the AMS documentation. This starts the workload ingestion and installs all the software required by AMS, including backup tools, Amazon EC2 management software, and antivirus software. | Migration engineer |
Validate successful migration. | After the workload ingestion is complete, you can see the AMS-managed instance and AMS-ingested AMI.
| Migration engineer |
Task | Description | Skills required |
---|---|---|
Submit the RFC to create an EC2 stack. |
| Migration engineer |
Related resources
AWS Prescriptive Guidance
AMS documentation
Marketing resources