Skip Ribbon Commands
Skip to main content

Deciding Which Applications to Migrate to Azure

Factors to consider in deciding whether to migrate applications from on premise infrastructure to Azure IaaS

Andrew Walman

05/08/2016


​​​ Microsoft Azure - the cloud for Modern Business 

There are now so many supported platforms on Azure IaaS, not to mention the applications and services you can connect to them available on Azure PaaS, we can start with the notion that every application could be moved to Azure. We should then debunk some of the commonly held misconceptions as to why you shouldn’t migrate an application, and move on to why you should move applications to Azure. Finally, we’ll isolate the few actual reasons as to why you wouldn’t migrate a particular application.

Migration Misconceptions

Some of the commonly held misconceptions we hear about hosting migrations in Azure are below:

  • The cloud is insecure – This is a common objection to moving to the cloud that presupposes that the cloud is somehow less secure than the on premise infrastructure. This may be based on some early failures of consumer-grade cloud services, such as Apple’s iCloud, Dropbox, Gmail etc. Microsoft have taken a security first approach to engineering Azure, with trust being at the core. They know that subscription services, all of which they deliver on the Azure, are the future of the company, and if people don’t trust the platform, that future is gone. To this end, the Azure cloud includes cutting edge security features that just can’t be replicated on premise – such as the artificial intelligence platform used to predict future threats from analysing previous attempts.
  • Microsoft Azure is only for Microsoft platforms – Microsoft support a plethora of 3rd party platforms on their cloud, and it’s possible to choose ready-made images of Unix, Linux, Oracle, Hadoop, MySQL, CentOS, Mongo DB, not to mention specialist networking platforms such as Cisco, Fortinet, Barracuda – the new Microsoft mantra is very much any platform is welcome, and open source is good. And if it’s not available in the store, there’s nothing stopping you uploading your own images – if it runs on a virtual machine, it will run on Azure. Now we’re in the age of containers and nested virtual machines, the isolation from the host platform makes it virtually irrelevant. That’s before you even consider the ease of which cross-cloud and hybrid solutions are with the connectivity methods available.
  • This application is too complex – technically any application that runs on premise could be recreated in the cloud, particularly in a hybrid network scenario. Complexity generally translates to cost of migration, and its costs that will stop a migration, not technical complexity. These can then be balanced against the potential cost savings the cloud can bring, particularly in Big Data/Big Compute.
  • We’ll be breach of EU data protection/subject to US anti-terror legislation (Patriot Act etc.) – Here’s the official statement on Microsoft’s compliance with EU data protection law from Brad Smith, President and Chief Legal Officer, Microsoft, following the announcement that US Safe Harbor framework isn’t valid. https://blogs.microsoft.com/on-the-issues/2015/10/06/a-message-to-our-customers-about-eu-us-safe-harbor/

Why Applications Should Be Moved to Azure

  • The application is given the focus – For on premise applications, attention has to be given to the platform(s) the application runs on, together with the infrastructure those platforms run on. This inevitably means some resources, however small, must be dedicated to that, even when the application is using a shared platform. With the amount of services Azure has to offer, applications can take advantage of pre-existing services to both reduce the amount of resources an application consumes, and enable developers/application architects to focus solely on the application’s business purpose. For example, a web application on premise would require web servers, database servers, backup, load balancing, authentication – it may share some or all of these services with other applications, but it’s still consuming elements of all those resources, and all of them must be supported and maintained, together with their underlying platforms and infrastructure. All those same services are required in Azure, the difference being they are all delivered to the application without any need for the developer/architect to consider how they are supported/maintained/provided.
  • Applications benefit from scale – Many business applications have non-uniform usage patterns. This may be as simple as the staff intranet being busier during the day, to financial batch processes that run overnight once a month. On-premise infrastructures that support these application platforms have to be able to access the computing resources needed to run applications at their maximum usage, which usually means they are underused most of the time. Storage is also over-provisioned, as it has to be allocated “up front” for the lifetime of the application. In Azure, all resources are flexible, meaning applications can scale up and down as needed. Everything is paid for on a consumption basis, so you also only pay for what you use – so the application that only requires scale once a month, only incurs charges once a month. Storage too can be provisioned for many terabytes, but is only paid for as those terabytes get used. Scale is also automated – applications scale on demand, according to which resources are needed.
  • Availability is built-in – as well as the resources an application needs to run, developers/architects also need to consider what happens to an application if those resources are interrupted, from a database failure to a power outage. This will often involve the platform engineers building in levels of redundancy into the infrastructure and application layers. Again these may be shared, but add to the costs and complexity of every application that the organisation has. In Azure, the PaaS and IaaS services have multiple layers of redundancy designed to ensure 99.95% uptime, and these sit outside of the application layer, “invisible” to it and the people who run it. Because the cost of this redundancy is born by all the users of Azure, it adds nothing to the cost of an individual application.
  • Business need is given focus – In large, complex IT environments, the costs of maintaining an individual application, and any comparisons to the benefits it brings, are difficult to quantify. Just tracking the resources they use is hard when applications are shared across platforms and a common infrastructure. In Azure, every application resource is quantifiable, billable and can reported on. Monthly usage reports can be generated that show how each resource is used. The EA billing platform can split subscriptions to individual departments (IT should not be the only one), and each can be given a cap. This focus on how much an application costs the people that use it means IT can become a cost-generator, rather than a just a cost centre, as it recharges the cost of providing application services to the departments that run a particular application.
  • IT becomes a can-do service – The inherent flexibility of Azure, combined with the rapid speed of provisioning (and tear down) of services, gives IT new capabilities when it comes to prototyping, testing and deploying applications. It’s no longer necessary to assess the impact an application would have in the production environment, as each is effectively isolated from the other. It becomes economically viable to run dedicated server instances for individual databases, that still benefit from high availability features. Storage costs aren’t even a consideration anymore. Ready to go services, such as mobile notification hubs, cognitive services, and analytics, reduce the time needed to develop applications. Existing applications can also take advantage of these connected services, improving their business value by adding features with relative ease.

Factors Affecting Why You Wouldn't Migrate a Particular Application

Given all of the above, there isn’t many reasons why you wouldn’t consider moving an application to Azure. Here’s some of the potential show stoppers:

  • Complexity/Cost – As previously mentioned, some applications are so complex (or so old), that cost of migration becomes a factor. Finding people who understand the application well enough to do the migration, and have time to do it, will contribute to these costs. This has to be weighed against the potential savings Azure can bring, which can be difficult to quantify before it’s migrated, and without knowing what the application costs to run where it is. One way of doing this may be to estimate what it would cost to redevelop the application for Azure, which may reduce its complexity and/or bring it up to date, making it both cheaper to run and more capable.
  • Licensing/Legal Restrictions – particularly with 3rd party applications, or applications that rely on 3rd party components, there may licensing restrictions imposed on where and how the application can be run. This is a particular issue with applications that use server node licensing, or rely on some aspect of the hardware (such as SMBIOS ID), but absence of these technical restrictions doesn’t mean legal restrictions don’t exist. In such cases, an updated agreement may need to be sought with the vendor, together with updated software to overcome the technical licensing method – which could mean a version upgrade. Microsoft themselves place restrictions on where their licences can be run – for example, its only recently been made possible to “bring your own licence” to Azure for SQL server.
  • Support – similar to the above, some 3rd party applications may place restrictions on supported environments. Some may insist that the application is installed on premise, or on customer hardware, otherwise it won’t be in a supported state. A decision would need to made as whether vendor support is needed (which may preclude updates/patches being available), or the advantages of moving to Azure outweigh the benefits of vendor support. Again, many vendors are moving to support agreements that include cloud infrastructures, and will work to certify applications on specified cloud platform configurations. Again a version upgrade may be required.

Top Blog Posts From Fuse

 

 

Recovering Workflow History after 60 dayshttps://www.fusecollaboration.com/blog/recovering-workflow-history-after-60-daysRecovering Workflow History after 60 days
Simple Incoming Email with On Premises SharePoint and Exchangehttps://www.fusecollaboration.com/blog/simple-incoming-email-with-on-premises-sharepoint-and-exchangeSimple Incoming Email with On Premises SharePoint and Exchange
Allowing anonymous users to add items to SharePoint listshttps://www.fusecollaboration.com/blog/allowing-anonymous-users-to-add-items-to-sharepoint-listsAllowing anonymous users to add items to SharePoint lists
How to use SaaS solutions to identify sensitive datahttps://www.fusecollaboration.com/blog/how-to-use-saas-solutions-to-identify-sensitive-dataHow to use SaaS solutions to identify sensitive data
Using Microsoft Azure Active Directory for SharePoint 2013 Authenticationhttps://www.fusecollaboration.com/blog/using-microsoft-azure-active-directory-for-sharepoint-2013-authenticationUsing Microsoft Azure Active Directory for SharePoint 2013 Authentication

Recommended Pages

 

 

About Fuse Collaborationhttps://www.fusecollaboration.com/fuse-home/aboutAbout Fuse Collaboration
Hosted Skype for Businesshttps://www.fusecollaboration.com/technologies/skype-for-business/hosted-skype-for-businessHosted Skype for Business
Skype for Businesshttps://www.fusecollaboration.com/technologies/skype-for-businessSkype for Business
Microsoft 365 Enterprisehttps://www.fusecollaboration.com/technologies/office-365/microsoft-365-enterpriseMicrosoft 365 Enterprise
SharePoint Deployment Planning Services (SDPS)https://www.fusecollaboration.com/fuse-services/consultancy/sdpsSharePoint Deployment Planning Services (SDPS)

 About us

Fuse Collaboration Services is a Cloud Solution Provider and Microsoft Gold Partner specialising in delivering SharePoint, Skype for Business, and Azure cloud-based solutions. Based in Northampton, UK.

Microsoft Gold Partner Logo showing 5 competencies

Read more

 Latest Tweets

 Latest Blog

 

 

How to use SaaS solutions to identify sensitive data1497<p class="lead">​​​​​​​​​​​This article is going to look specifically at how we implement the use of software (SaaS) to enable your organisation to become ready for the GDPR quickly and easily, without interruption to your end users.</p><p> <strong>The first step in getting ready for the GDPR is to know what data your organisation holds</strong>. At the time of writing this article, the new legislation is only <strong>268 </strong>days away and the four main questions you n​eed to be able to answer to ensure your organisation is ready are&#58;</p><ul><li>What data does your organisation hold?</li><li>Where is the data kept?</li><li>Why do you need to use or keep the data?</li><li>Do you have consent to use the data?​</li></ul><div class="thumbnail"> <img class="img-responsive" alt="A padlock on a background of binary data" src="/ourblog/PublishingImages/Pages/How-to-use-SaaS-solutions-to-identify-your-data,-ensuring-your-organisation-is-ready-for-the-GDPR/shutterstock%20Data%20protection%20GDPR%20blog.jpg" style="max-width&#58;500px;" />​</div>​ <h3>What is defined as sensitive data under the GDPR?</h3><p>In terms of the GDPR, sensitive data is defined as personal data, but goes further than the Data Protection Act and includes online identifiers such as an IP address. The GDPR applies to both automated personal data and manual filing systems. You can be held responsible for breaching the GDPR by allowing personal data to be compromised either by&#58;</p><p>Misuse - using data for purposes other than that defined and recorded&#160;consent given for;</p><p>or </p><p>for data breaches, even if the breach was a malicious act (hacking), if you can't prove you had adequate data security measures and processes.&#160;​</p><div class="row"><div class="col-md-6"><h4>Will my company have GDPR sensitive data?</h4><p>Data that can identify any individual, such as a name, National Insurance number, passport, IP address or even biometric data - a soon as this is recorded in any system, in a file, a database record, or even on paper - that data then falls under the remit of the GDPR. As every organisation has staff records, every company will be affected by GDPR to some extent. </p><p>However, the more individuals you deal with, and the longer you hold that data for, the more prone you are to breaches of the legislation. Companies that perform data processing, even on behalf of other companies, and particularly those that use personal data records for multiple purposes (for example re-marketing) are at most exposure to GDPR.</p></div> <div class="col-md-6"><h4>​Examples of who will be most affected&#58;&#160;</h4><ul><li>Retailers – High street shops and online retailers storing customer profiles</li><li>Health Sector -&#160; Hospitals, doctor’s surgeries, scientific research organisations, pharmaceutical companies, with patient records</li><li>Education sector - Schools, colleges and universities, storing current and past student records</li><li>Financial sector – Banks, mortgage and insurance providers, with customer accounts</li><li>Recruitment companies - candidate records</li><li>Charity organisations - records of donors and recipients</li><li>Estate Agents - vendor and client records </li><li>Legal profession – Solicitors, CPS and courts - client records.</li></ul> ​</div></div><hr />​ <h3>​How to identify data and ensure all your data is GDPR compliant?&#160;</h3><p>There is an easy and quick way to find out what data you hold and you will be relieved to know we work alongside companies that are currently releasing SaaS solutions that are designed purely to scan, discover and analyse your data, to ensure you only hold data that is GDPR compliant.&#160;&#160;<br></p><p>Our Partners have solutions that use metadata to scan and analyse data which has enabled the migration of data to SharePoint for some time. It’s this technology that’s enabled these new solutions to be <strong>created specifically for the use of identifying what data you have and if it is GDPR compliant</strong>. Using NPL (Natural programming language) such as “name”, “address” or “credit card number”) this process can be done in days not months and can easily identify documents in unstructured databases, file shares and SharePoint. </p><p>The discovery phase of the SaaS tool is an important part of the new solutions as they are designed around common datatypes that can be tagged easily e.g. names, addresses, age of document, author of document, credit card numbers, postcodes IP addresses. The solution we use comes with predetermined taxonomies which can be edited easily, to reflect the sector that your organisation works within. Dashboards are then accessed with detailed data analysis which identifies the data that will not be compliant with the GDPR. Additional columns appear alongside your files with a “true” or “false” label showing whether the files are compliant with the GDPR and our team of consultants are experienced in using this technology and can advise you depending on your specific IT infrastructure.</p><hr /><h3>Hype around the GDPR&#160;</h3><p>There is a lot of hype around the new GDPR coming out in May which appears to be fairly negative but instead of viewing it as a tiresome challenge that your organisation must overcome, I would advise viewing it as an excellent opportunity to gain a competitive edge within the market. Whatever your opinion is and I doubt there are many companies that relish the additional resources that will be needed to comply; from a customer’s perspective, it <strong>must </strong>be a good thing. The trust in any business relationship is one of the fundamental reasons why you have a successful company. In an age where we frequently see headlines describing yet another data breach, damage to a business’s brand and reputation is an expensive result of avoiding being compliant with the new regulations.</p><hr /><h3>What to do right now!&#160;</h3><p>The key decision makers in your organisation need to be made aware of the GDPR. They need to know that the first thing they need to do is to find out what data their organisation holds. This is where we come in.</p><p>Although GDPR isn’t an IT issue as it will ultimately fall to the responsibility of who is currently responsible for your Data Protection E.g. Compliance Managers, Data Protection Officers, Data Controllers and Office Managers, the team at Fuse will be able to provide a technical solution to determining what data is held.</p><p>Before any amendments to existing internal procedures, policies or customer facing documentation such as websites and application forms can be changed they must know what is relevant to the GDPR. It may be the case that a lot of the data you hold is ROT and this can simply be deleted. If you have a completely unstructured filing system and want to take the opportunity to improve the efficiency of your business we don't just offer technical expertise, we are experienced in developing proofs of concept, functional and technical specifications. We can either then take responsibility for delivering the project or work alongside your IT departments providing a technical lead.</p><p>It doesn’t matter whether you have an inhouse IT department or not as we can work alongside existing IT managers, Compliance or HR managers. An IT consultancy needs to be your first port of call as they can advise you as to which is the best SaaS solution for your business depending on the size of your business and your budget. Having expert knowledge of your IT infrastructure and how it works is important to ensure that the right solutions are used. The benefits of using SaaS is that your end users are not interrupted and your IT departments are not impacted either. </p><p>You need to weigh up the cost of using an IT consultancy who can implement the right tools against the extra resources it will take to trawl through and analyse your data manually. This can seem daunting, but it’s a great opportunity to get your data in order and have confidence that your organisation can be proud of its commitment to protecting the data of its employees, customers and suppliers.​</p><div class="well well-lg"><p class="lead">If you want further advice or a quote on how we can help you get ready for the GDPR call Fuse today on 01604 797979 or <a href="/_layouts/15/FIXUPREDIRECT.ASPX?WebId=4fc45909-2b6d-48b9-bcf9-a446e9d472d6&amp;TermSetId=c98895cd-d37f-4406-9cff-5480b4f829b6&amp;TermId=218eb0be-10f6-490a-82a7-a7fd47c8de90">contact us​</a></p></div>​l.ozier@fusecollaboration.com | Louise Ozier | 693A30232E777C6675736563735C6C2E6F7A696572 i:0#.w|fusecs\l.ozier28/08/2017 23:00:002017-08-28T23:00:00Z Ensuring your organisation is ready for the GDPR21/09/2017 23:16:131811htmlFalseaspx

 Contact us

Our address
12-14 Brookfield, Duncan Close
Moulton Park, Northampton
NN3 6WL
P: +44(0)1604 797979
Contact Us