OpsGuru Named 2024 AWS Canada Regional Partner of the Year
OpsGuru's Data Modernization services will empower your business with updated data infrastructure, advanced analytics and AI, and improved scalability and performance.
Learn Moreadd
Unlock the full potential of cloud migration with OpsGuru's Cloud Modernization services. We can refactor apps and use cloud-native features to future-proof your business.
Learn Moreadd
Maximize business resilience with OpsGuru’s 24/7 AWS Managed Cloud Operations Services. Get round-the-clock monitoring, proactive incident response, and cloud reliability.
Learn Moreadd
Enhance your applications with OpsGuru's Cloud Native Development services. Use custom strategies and cloud technology to cut costs while improving scalability, resilience, and operations.
Learn Moreadd
Enhance your cloud security with OpsGuru, a trusted Arctic Wolf Partner. Our Arctic Wolf consultants provide threat detection, incident response, and expert remediation to safeguard your cloud environment. Talk to a security advisor today!
Learn Moreadd
Maximize your data's potential with OpsGuru, a trusted Databricks consulting partner. From data engineering to analytics and machine learning, our Databricks consultancy provides tailored solutions to accelerate your cloud journey.
Learn Moreadd
Enhance your cloud security with OpsGuru, a trusted DoiT Partner. Our DoiT consultants provide threat detection, incident response, and expert remediation to safeguard your cloud environment. Talk to a security advisor today!
Learn Moreadd
Enhance your cloud security posture with OpsGuru, a trusted Fortinet consulting partner. Our experts provide tailored cloud security solutions using Fortinet's data-driven platform. Talk to a cloud security expert today!
Learn Moreadd
Data-centric approach to cloud security so you can establish multiple layers of defense, ensuring immediate risk remediation and compliance without disrupting your business.
Learn Moreadd
Explore the latest news from OpsGuru.
See Alladd
Discover our customer success stories through case studies showcasing OpsGuru’s innovative solutions.
See Alladd
Learn more about our upcoming events and how to connect with OpsGuru through conferences, webinars, and immersion days.
See Alladd
Unlock customer success stories, insights, and cloud strategies through our solution-based ebooks.
See Alladd
Find the latest industry news, insights, and more on our Blog.
See Alladd
  • Customer Success
January 6, 2025
Kubernetes workloads migration from Azure AKS to Amazon EKS

Kubernetes workloads migration from Azure AKS to Amazon EKS

Background

Authomize continuously monitors client organizations’ identities, access privileges, assets, and activities, to secure all apps and cloud services. It seamlessly connects to a client’s apps and cloud services, and collects all relevant information to graph’s data-lake to help client organization security teams achieve Zero Trust.

Authomize provides organizations with comprehensive observability, actionable insights, and remediation automation, enabling adherence to security and compliance requirements.

The Challenge

Authomize needed a solution that would facilitate rapid launch of their Kubernetes-based application platform for complex deployments in AWS making sure to establish AWS Best Practices foundations and to enable robust and reliable application deployments that meet Companies’ security and compliance requirements.

Authomize knew they needed a partner who had a deep level of expertise in the cloud platform, Kubernetes, Helm, and Infrastructure as Code to maximize their success on Amazon Web Services.

Our Solution

Authomize engaged OpsGuru, a certified AWS Premier Partner, due to the team’s extensive AWS experience and a proven track record with complex workload migrations.

With OpsGuru’s help, Authomize was able to migrate its Kubernetes workloads to AWS with a simple and manageable resources hierarchy using Terraform and Helm for all of their environments.

High-Level Overview Of Accounts And Networking
High-Level Overview Of Accounts And Networking

High-Level Overview Of Traffic Flow
High-Level Overview Of Traffic Flow

OpsGuru worked alongside the Authomize engineering team to review and customize their infrastructure code and software development lifecycles. This process ensured that Authomize was able to rapidly deploy workloads to development and production environments leveraging AWS advanced features.

  • Account Isolation

    Environment-specific AWS accounts allowed resources grouping within environments as well as workload isolation. A centralized shared services account was used for the CI/CD and as a centralized container image repository for the environment-specific AWS accounts.

  • Network Design

    Implemented VPCs in each AWS account, with utilization of AWS PrivateLink to safely interact with AWS services such as S3, and VPC peering to inter-connect environment-specific VPCs with a shared services VPC.

  • Kubernetes Baseline

    Implemented infrastructure components and configuration management solution for frictionless management of the Amazon EKS clusters with configurable Amazon EC2 managed node groups.

  • Efficient Load Balancing

    Implemented nginx-ingress Ingress Controller within the EKS clusters to utilize Amazon ELB load balancing for the ingress resources and services of type loadbalancer.

  • Secrets and Configuration management

    Utilized AWS Systems Manager Parameter Store and AWS Secrets Manager for configuration storage of the Kuberenetes secrets through Kubernetes Secrets Store CSI Driver with AWS provider.

OpsGuru then assisted the Authomize team in their migration to the newly built AWS platform by extending the existing Helm charts to support deployment into AWS EKS.

After the completion of the project, OpsGuru provided comprehensive training sessions for Authomize’s team as well as documentation and operational playbooks for the newly designed systems. The training and documentation included the operation of EKS, short-lived credentials with IRSA and observability tools, among other topics.

The Result

As a result of the collaboration between the teams, Authomize was able to rapidly migrate the existing Azure AKS workloads to EKS, without any side effects or downtime in the process. All the components have been successfully deployed and validated allowing Authomize to effortlessly continue with their platform development on AWS.