SlideShare a Scribd company logo

Build on AWS: Migrating And Platforming

•
•
Amazon Web Services
Amazon Web Services

Adrian De Luca, Head of Solution Architecture, APAC presenting on Migration and Platforming on AWS during AWS TechShift.

1 of 27
Build on AWS: Migrating And Platforming Adrian De Luca Head of Solution Architecture, APAC
Going from this….
To this….
Transforming PandaCRM 3 Tier App On Premises Java Microservices Cloud Polyglot SOA Hybrid Java
What we will explore today… Migrating & Platforming Building & Modernizing Optimizing & Delivering
Monolith Identity On Premesis Monolithic Elastic Beanstalk Cognito Lift&Shift IAM How to get there with AWS RDS / Aurora CustomerExperience CodePipeline CodeCommit CodeStar CodeBuild DevOps Provisioning ECS CloudFormation Optimizing & DeliveringBuilding & ModernizingMigrating & Platforming Microservices Lambda API Gateway CloudWatch Full Cloud SaaS
SaaS Reference Architecture Landscape
Lets follow a 3 Step process… Landing Zone Platform Tenancy Options VPC and Networking VPN/Direct Connect Application Migration Stack Provisioning Application Re-packaging Application Deployment Database Migration Database Migration Service Configuration Replication Task
Before we start… Platform Tenancy Options
Platform Tenancy Comparison
Tenant Isolation • Define differences and relationship between User Identity & Tenant Identity models • Consider how Personally Identifiable Information (PII) be managed
Preventing Cross Tenant Access In Multi-tenant systems, need to consider how identity the model will grant or constrain access to resources
Access to Landing Zone Selection Consideration based on • Cost • Data Transfer Size • Reliability • Security • Timeline Access defines more than ease of use of the customer exeprince
Other Landing Zone Considerations TENANCY LANDING ZONE OPTION AWS Fully Managed Service SILO SECURITY: q Network: Security Groups, NACLs and subnet isolation q Data at Rest: Elastic Block Storage,S3 and Relation Database Service (RDS) encryption. q Data at Transit: HTTPS for web traffic and database connection. q Access Management : Identity Access Management (IAM). GOVERNANCE: q Licensing : BYOL (GPL and Oracle JAVA). q Regulatory: Mitigated by using silo tenancy. OPERATIONS: q Deployment : CI/CD AWS Deployment Service + Elastic Beanstalk q Monitoring: Cloud Watch + Elastic Beanstalk enhanced health q Provisioning: Elastic Beanstalk / Cloud Formation q Auto-Scaling: Elastic Beanstalk
Application Migration PandaCRM is 3 tier Java Application: • Migration strategy : Lift and shift (Re-Host) • Two options for the Landing Zone Design:- • OPTION 1: Migrate to SELF managed services. • OPTION 2: Migrate to AWS managed services. • Both options doesn’t vary much in the security and governance part • Varies in code packaging, operation and platform.
Option 1 - Migrate to SELF managed services AWS Services: Only Elastic Compute (EC2) or EC2 and Relation Database Service (RDS). Design: Only EC2 Architecture EC2 and RDS Architecture
Option 1 - Migrate to SELF managed services When to use Option 1 : • Want to leverage existing Java platform expertise and standards. • Need to integrate AWS environment into existing on-premises development and deployment processes. • Require flexibility in Operating System and Java platform selection, version, and configuration. • Plan to deploy third-party Java applications with sophisticated installers, manual license configuration, or extensive external dependencies.
Option 2 - Migrate to AWS managed services AWS Services : Elastic Beanstalk (EB),Elastic Load Balancer (ELB), Relation Database Service (RDS). Design:
Option 2 - Migrate to AWS managed services Stack Provisioning Options stack Custom Platform (Ubuntu + Tomcat) Tomcat Platform Cloud Formation Cloud Formation Template Stack Provisioning Option B Stack Provisioning Option A
Option 2 - Migrate to AWS managed services Required information to build a stack on Elastic Beanstalk
Option 2 - Migrate to AWS managed services When to use Option 2 : • Require minimal OS changes. • Either run on Apache Tomcat 7 or 8, or are packaged with your own web container. • Elastic Beanstalk supports the following packaging and deployment mechanisms: qCustom applications developed and deployed directly to Elastic Beanstalk using Eclipse and the AWS Toolkit for Eclipse qApplications packaged into a JAR, WAR, or ZIP file, then deployed with the Elastic Beanstalk console, EB CLI, or Elastic Beanstalk API calls. qTo deploy multiple applications to one Elastic Beanstalk environment, customers can bundle multiple WAR files into a single ZIP file.
Database Migration Use Database Migration Service (DMS) to migrate the database (data) for Panda CRM. VPN Target RDS Database Source Database Replication Server DMS Replication Replication STEP BY STEP GUIDE 1. Set the pre-requisite settings for DMS on the source DB. 2. Create DMS Replication Instance. 3. Add the Connection Information for the source and target database. 4. Test the database connection for source and target through the wizard. 5. Create task (Set the task settings and table mapping) 6. Start the replication. 7. Plan cutover.
Database Migration – What about changes? DMS Change Data Capture (CDC) :- • Performs continuous data capture from the source. • The copy of the target database (RDS) is up-to-date with small delta differences from the source. • DMS simplifies database migration and cutover. Database Migration Service
Before going Live: Integration & Validation Integration • Automatically ensures integration within the stack. (Load balancer, Web/App and Database ). • You must ensure security group, NACLs and connection string are configured correctly. Validation • Automatically performs connectivity validation within the stack. (Load balancer, Web/App and DB ). • Application health check can be enable through Enhanced Health check. • Load Test and Pen test should be performed on the application. • There are ISV tools and marketplace tools to help the partner on this. Elastic Beanstalk
Why Elastic Beanstalk? Elastic Beanstalk provides the ability to achieve all the SaaS reference architecture requirements with combination of other AWS services.
In Summary • Identity and Isolation need to planned for up front • Elastic Beanstalk should be highly considered to host a monolithic application as a SaaS platform in the cloud. • Other AWS managed services help with the heavy lifting of management and operation in the cloud so you can focus on development. • Follow the migration practice diligently to achieve similar success results. • Leverage the AWS migration tools to accelerate the migration phases of the application.
THANK YOU

Recommended

Migrating Existing Applications to AWS Cloud
Migrating Existing Applications to AWS CloudMigrating Existing Applications to AWS Cloud
Migrating Existing Applications to AWS Cloud
jineshvaria
 
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Amazon Web Services
 
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Morgan Simonsen
 
Azure Availability Options
Azure Availability OptionsAzure Availability Options
Azure Availability Options
Emre Martin
 
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS SummitPlan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Amazon Web Services
 
Designing security & governance via AWS Control Tower & Organizations - SEC30...
Designing security & governance via AWS Control Tower & Organizations - SEC30...Designing security & governance via AWS Control Tower & Organizations - SEC30...
Designing security & governance via AWS Control Tower & Organizations - SEC30...
Amazon Web Services
 
Boot camp - Migration to AWS
Boot camp - Migration to AWSBoot camp - Migration to AWS
Boot camp - Migration to AWS
Amazon Web Services
 
Amazon EC2 and Amazon VPC Hands-on Workshop
Amazon EC2 and Amazon VPC Hands-on WorkshopAmazon EC2 and Amazon VPC Hands-on Workshop
Amazon EC2 and Amazon VPC Hands-on Workshop
Amazon Web Services
 

Recommended

Migrating Existing Applications to AWS Cloud
Migrating Existing Applications to AWS CloudMigrating Existing Applications to AWS Cloud
Migrating Existing Applications to AWS Cloud
jineshvaria
 
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Using Amazon VPC Flow Logs for Predictive Security Analytics (NET319) - AWS r...
Amazon Web Services
 
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Massive Lift & Shift Migrations to Microsoft Azure with the Microsoft Migrati...
Morgan Simonsen
 
Azure Availability Options
Azure Availability OptionsAzure Availability Options
Azure Availability Options
Emre Martin
 
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS SummitPlan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS Summit
Amazon Web Services
 
Designing security & governance via AWS Control Tower & Organizations - SEC30...
Designing security & governance via AWS Control Tower & Organizations - SEC30...Designing security & governance via AWS Control Tower & Organizations - SEC30...
Designing security & governance via AWS Control Tower & Organizations - SEC30...
Amazon Web Services
 
Boot camp - Migration to AWS
Boot camp - Migration to AWSBoot camp - Migration to AWS
Boot camp - Migration to AWS
Amazon Web Services
 
Amazon EC2 and Amazon VPC Hands-on Workshop
Amazon EC2 and Amazon VPC Hands-on WorkshopAmazon EC2 and Amazon VPC Hands-on Workshop
Amazon EC2 and Amazon VPC Hands-on Workshop
Amazon Web Services
 
Migration Planning
Migration PlanningMigration Planning
Migration Planning
Amazon Web Services
 
Transparency and Control with AWS CloudTrail and AWS Config
Transparency and Control with AWS CloudTrail and AWS ConfigTransparency and Control with AWS CloudTrail and AWS Config
Transparency and Control with AWS CloudTrail and AWS Config
Amazon Web Services
 
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
Amazon Web Services
 
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
Amazon Web Services
 
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
Amazon Web Services
 
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
Amazon Web Services
 
Deep Dive - Amazon Elastic MapReduce (EMR)
Deep Dive - Amazon Elastic MapReduce (EMR)Deep Dive - Amazon Elastic MapReduce (EMR)
Deep Dive - Amazon Elastic MapReduce (EMR)
Amazon Web Services
 
AWS Storage Options
AWS Storage OptionsAWS Storage Options
AWS Storage Options
Amazon Web Services
 
AWS EC2 and ELB troubleshooting
AWS EC2 and ELB troubleshootingAWS EC2 and ELB troubleshooting
AWS EC2 and ELB troubleshooting
Shiva Narayanaswamy
 
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
Amazon Web Services Japan
 
Introduction to Amazon Athena
Introduction to Amazon AthenaIntroduction to Amazon Athena
Introduction to Amazon Athena
Amazon Web Services
 
Cloud Migration, Application Modernization, and Security
Cloud Migration, Application Modernization, and Security Cloud Migration, Application Modernization, and Security
Cloud Migration, Application Modernization, and Security
Tom Laszewski
 
AWS Security Best Practices
AWS Security Best PracticesAWS Security Best Practices
AWS Security Best Practices
Amazon Web Services
 
Aws config
Aws configAws config
Aws config
Shagun Rathore
 
AWS Security Hub
AWS Security HubAWS Security Hub
AWS Security Hub
Amazon Web Services
 
Migrating to the Cloud
Migrating to the CloudMigrating to the Cloud
Migrating to the Cloud
Amazon Web Services
 
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance WorkshopMicrosoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
Nicholas Vossburg
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
Amazon Web Services
 
Migrating your Data Centre to AWS
Migrating your Data Centre to AWSMigrating your Data Centre to AWS
Migrating your Data Centre to AWS
Amazon Web Services
 
Microsoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudMicrosoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloud
Atanas Gergiminov
 
Build on AWS: Migrating and Platforming
Build on AWS: Migrating and PlatformingBuild on AWS: Migrating and Platforming
Build on AWS: Migrating and Platforming
Amazon Web Services
 
數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣
Amazon Web Services
 

More Related Content

What's hot

AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
Amazon Web Services
 
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
Amazon Web Services
 
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
Amazon Web Services
 
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
Amazon Web Services
 
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
Amazon Web Services Japan
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
Amazon Web Services
 

What's hot (20)

Migration Planning
Migration PlanningMigration Planning
Migration Planning
 
Transparency and Control with AWS CloudTrail and AWS Config
Transparency and Control with AWS CloudTrail and AWS ConfigTransparency and Control with AWS CloudTrail and AWS Config
Transparency and Control with AWS CloudTrail and AWS Config
 
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
AWS re:Invent 2016: Workshop: Using the Database Migration Service (DMS) for ...
 
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
 
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce(BDT208) A Technical Introduction to Amazon Elastic MapReduce
(BDT208) A Technical Introduction to Amazon Elastic MapReduce
 
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
AWS re:Invent 2016: Enabling Enterprise Migrations: Creating an AWS Landing Z...
 
Deep Dive - Amazon Elastic MapReduce (EMR)
Deep Dive - Amazon Elastic MapReduce (EMR)Deep Dive - Amazon Elastic MapReduce (EMR)
Deep Dive - Amazon Elastic MapReduce (EMR)
 
AWS Storage Options
AWS Storage OptionsAWS Storage Options
AWS Storage Options
 
AWS EC2 and ELB troubleshooting
AWS EC2 and ELB troubleshootingAWS EC2 and ELB troubleshooting
AWS EC2 and ELB troubleshooting
 
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
AWS Blackbelt 2015シリーズ Amazon Storage Service (S3)
 
Introduction to Amazon Athena
Introduction to Amazon AthenaIntroduction to Amazon Athena
Introduction to Amazon Athena
 
Cloud Migration, Application Modernization, and Security
Cloud Migration, Application Modernization, and Security Cloud Migration, Application Modernization, and Security
Cloud Migration, Application Modernization, and Security
 
AWS Security Best Practices
AWS Security Best PracticesAWS Security Best Practices
AWS Security Best Practices
 
Aws config
Aws configAws config
Aws config
 
AWS Security Hub
AWS Security HubAWS Security Hub
AWS Security Hub
 
Migrating to the Cloud
Migrating to the CloudMigrating to the Cloud
Migrating to the Cloud
 
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance WorkshopMicrosoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
Microsoft Cloud Adoption Framework for Azure: Thru Partner Governance Workshop
 
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAWS networking fundamentals - SVC303 - Santa Clara AWS Summit
AWS networking fundamentals - SVC303 - Santa Clara AWS Summit
 
Migrating your Data Centre to AWS
Migrating your Data Centre to AWSMigrating your Data Centre to AWS
Migrating your Data Centre to AWS
 
Microsoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudMicrosoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloud
 

Similar to Build on AWS: Migrating And Platforming

數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣
Amazon Web Services
 
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
Amazon Web Services
 
Managing Your Cloud Assets
Managing Your Cloud AssetsManaging Your Cloud Assets
Managing Your Cloud Assets
Amazon Web Services
 
Patterns & Practices of Microservices
Patterns & Practices of MicroservicesPatterns & Practices of Microservices
Patterns & Practices of Microservices
Wesley Reisz
 
Solved: Your Most Dreaded Test Environment Management Challenges
Solved: Your Most Dreaded Test Environment Management ChallengesSolved: Your Most Dreaded Test Environment Management Challenges
Solved: Your Most Dreaded Test Environment Management Challenges
DevOps.com
 

Similar to Build on AWS: Migrating And Platforming (20)

Build on AWS: Migrating and Platforming
Build on AWS: Migrating and PlatformingBuild on AWS: Migrating and Platforming
Build on AWS: Migrating and Platforming
 
數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣數據庫遷移到雲端的成功秘訣
數據庫遷移到雲端的成功秘訣
 
How to Bring Microsoft Apps to AWS - AWS Online Tech Talks
How to Bring Microsoft Apps to AWS - AWS Online Tech TalksHow to Bring Microsoft Apps to AWS - AWS Online Tech Talks
How to Bring Microsoft Apps to AWS - AWS Online Tech Talks
 
AWS Migration Day - Windows Workloads
AWS Migration Day - Windows WorkloadsAWS Migration Day - Windows Workloads
AWS Migration Day - Windows Workloads
 
Cloud Has Become the New Normal: TCS
Cloud Has Become the New Normal: TCS Cloud Has Become the New Normal: TCS
Cloud Has Become the New Normal: TCS
 
Migrating to Amazon RDS with Database Migration Service
Migrating to Amazon RDS with Database Migration ServiceMigrating to Amazon RDS with Database Migration Service
Migrating to Amazon RDS with Database Migration Service
 
Migrating Oracle Databases to AWS
Migrating Oracle Databases to AWSMigrating Oracle Databases to AWS
Migrating Oracle Databases to AWS
 
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
AWS re:Invent 2016: How to Launch a 100K-User Corporate Back Office with Micr...
 
Migrating your Databases to AWS: Deep Dive on Amazon RDS and AWS Database Mig...
Migrating your Databases to AWS: Deep Dive on Amazon RDS and AWS Database Mig...Migrating your Databases to AWS: Deep Dive on Amazon RDS and AWS Database Mig...
Migrating your Databases to AWS: Deep Dive on Amazon RDS and AWS Database Mig...
 
Architecting for AWS Cloud - let's do it right!
Architecting for AWS Cloud - let's do it right!Architecting for AWS Cloud - let's do it right!
Architecting for AWS Cloud - let's do it right!
 
Managing Software from Development to Deployment in the Cloud
Managing Software from Development to Deployment in the CloudManaging Software from Development to Deployment in the Cloud
Managing Software from Development to Deployment in the Cloud
 
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech TalksMigrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
 
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech TalksMigrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
Migrating Your Oracle Database to PostgreSQL - AWS Online Tech Talks
 
Managing Your Cloud Assets
Managing Your Cloud AssetsManaging Your Cloud Assets
Managing Your Cloud Assets
 
WIN401_Migrating Microsoft Applications to AWS
WIN401_Migrating Microsoft Applications to AWSWIN401_Migrating Microsoft Applications to AWS
WIN401_Migrating Microsoft Applications to AWS
 
Uses, considerations, and recommendations for AWS
Uses, considerations, and recommendations for AWSUses, considerations, and recommendations for AWS
Uses, considerations, and recommendations for AWS
 
Application Migrations at Scale
Application Migrations at ScaleApplication Migrations at Scale
Application Migrations at Scale
 
Patterns & Practices of Microservices
Patterns & Practices of MicroservicesPatterns & Practices of Microservices
Patterns & Practices of Microservices
 
AWS re:Invent 2016: Develop Your Migration Toolkit (ENT312)
AWS re:Invent 2016: Develop Your Migration Toolkit (ENT312)AWS re:Invent 2016: Develop Your Migration Toolkit (ENT312)
AWS re:Invent 2016: Develop Your Migration Toolkit (ENT312)
 
Solved: Your Most Dreaded Test Environment Management Challenges
Solved: Your Most Dreaded Test Environment Management ChallengesSolved: Your Most Dreaded Test Environment Management Challenges
Solved: Your Most Dreaded Test Environment Management Challenges
 

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
Amazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Amazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
Amazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Amazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
Amazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Amazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
Amazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
Amazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
Amazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
Amazon Web Services
 

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
Big Data per le Startup: come creare applicazioni Big Data in modalitĂ  Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Build on AWS: Migrating And Platforming

  • 1. Build on AWS: Migrating And Platforming Adrian De Luca Head of Solution Architecture, APAC
  • 4. Transforming PandaCRM 3 Tier App On Premises Java Microservices Cloud Polyglot SOA Hybrid Java
  • 5. What we will explore today… Migrating & Platforming Building & Modernizing Optimizing & Delivering
  • 6. Monolith Identity On Premesis Monolithic Elastic Beanstalk Cognito Lift&Shift IAM How to get there with AWS RDS / Aurora CustomerExperience CodePipeline CodeCommit CodeStar CodeBuild DevOps Provisioning ECS CloudFormation Optimizing & DeliveringBuilding & ModernizingMigrating & Platforming Microservices Lambda API Gateway CloudWatch Full Cloud SaaS
  • 8. Lets follow a 3 Step process… Landing Zone Platform Tenancy Options VPC and Networking VPN/Direct Connect Application Migration Stack Provisioning Application Re-packaging Application Deployment Database Migration Database Migration Service Configuration Replication Task
  • 9. Before we start… Platform Tenancy Options
  • 11. Tenant Isolation • Define differences and relationship between User Identity & Tenant Identity models • Consider how Personally Identifiable Information (PII) be managed
  • 12. Preventing Cross Tenant Access In Multi-tenant systems, need to consider how identity the model will grant or constrain access to resources
  • 13. Access to Landing Zone Selection Consideration based on • Cost • Data Transfer Size • Reliability • Security • Timeline Access defines more than ease of use of the customer exeprince
  • 14. Other Landing Zone Considerations TENANCY LANDING ZONE OPTION AWS Fully Managed Service SILO SECURITY: q Network: Security Groups, NACLs and subnet isolation q Data at Rest: Elastic Block Storage,S3 and Relation Database Service (RDS) encryption. q Data at Transit: HTTPS for web traffic and database connection. q Access Management : Identity Access Management (IAM). GOVERNANCE: q Licensing : BYOL (GPL and Oracle JAVA). q Regulatory: Mitigated by using silo tenancy. OPERATIONS: q Deployment : CI/CD AWS Deployment Service + Elastic Beanstalk q Monitoring: Cloud Watch + Elastic Beanstalk enhanced health q Provisioning: Elastic Beanstalk / Cloud Formation q Auto-Scaling: Elastic Beanstalk
  • 15. Application Migration PandaCRM is 3 tier Java Application: • Migration strategy : Lift and shift (Re-Host) • Two options for the Landing Zone Design:- • OPTION 1: Migrate to SELF managed services. • OPTION 2: Migrate to AWS managed services. • Both options doesn’t vary much in the security and governance part • Varies in code packaging, operation and platform.
  • 16. Option 1 - Migrate to SELF managed services AWS Services: Only Elastic Compute (EC2) or EC2 and Relation Database Service (RDS). Design: Only EC2 Architecture EC2 and RDS Architecture
  • 17. Option 1 - Migrate to SELF managed services When to use Option 1 : • Want to leverage existing Java platform expertise and standards. • Need to integrate AWS environment into existing on-premises development and deployment processes. • Require flexibility in Operating System and Java platform selection, version, and configuration. • Plan to deploy third-party Java applications with sophisticated installers, manual license configuration, or extensive external dependencies.
  • 18. Option 2 - Migrate to AWS managed services AWS Services : Elastic Beanstalk (EB),Elastic Load Balancer (ELB), Relation Database Service (RDS). Design:
  • 19. Option 2 - Migrate to AWS managed services Stack Provisioning Options stack Custom Platform (Ubuntu + Tomcat) Tomcat Platform Cloud Formation Cloud Formation Template Stack Provisioning Option B Stack Provisioning Option A
  • 20. Option 2 - Migrate to AWS managed services Required information to build a stack on Elastic Beanstalk
  • 21. Option 2 - Migrate to AWS managed services When to use Option 2 : • Require minimal OS changes. • Either run on Apache Tomcat 7 or 8, or are packaged with your own web container. • Elastic Beanstalk supports the following packaging and deployment mechanisms: qCustom applications developed and deployed directly to Elastic Beanstalk using Eclipse and the AWS Toolkit for Eclipse qApplications packaged into a JAR, WAR, or ZIP file, then deployed with the Elastic Beanstalk console, EB CLI, or Elastic Beanstalk API calls. qTo deploy multiple applications to one Elastic Beanstalk environment, customers can bundle multiple WAR files into a single ZIP file.
  • 22. Database Migration Use Database Migration Service (DMS) to migrate the database (data) for Panda CRM. VPN Target RDS Database Source Database Replication Server DMS Replication Replication STEP BY STEP GUIDE 1. Set the pre-requisite settings for DMS on the source DB. 2. Create DMS Replication Instance. 3. Add the Connection Information for the source and target database. 4. Test the database connection for source and target through the wizard. 5. Create task (Set the task settings and table mapping) 6. Start the replication. 7. Plan cutover.
  • 23. Database Migration – What about changes? DMS Change Data Capture (CDC) :- • Performs continuous data capture from the source. • The copy of the target database (RDS) is up-to-date with small delta differences from the source. • DMS simplifies database migration and cutover. Database Migration Service
  • 24. Before going Live: Integration & Validation Integration • Automatically ensures integration within the stack. (Load balancer, Web/App and Database ). • You must ensure security group, NACLs and connection string are configured correctly. Validation • Automatically performs connectivity validation within the stack. (Load balancer, Web/App and DB ). • Application health check can be enable through Enhanced Health check. • Load Test and Pen test should be performed on the application. • There are ISV tools and marketplace tools to help the partner on this. Elastic Beanstalk
  • 25. Why Elastic Beanstalk? Elastic Beanstalk provides the ability to achieve all the SaaS reference architecture requirements with combination of other AWS services.
  • 26. In Summary • Identity and Isolation need to planned for up front • Elastic Beanstalk should be highly considered to host a monolithic application as a SaaS platform in the cloud. • Other AWS managed services help with the heavy lifting of management and operation in the cloud so you can focus on development. • Follow the migration practice diligently to achieve similar success results. • Leverage the AWS migration tools to accelerate the migration phases of the application.