Create migration user on Amazon AWS

Shares

Before you start the migration from Amazon AWS to Nutanix AHV you have to prepare user with access rights to the AWS VPC. You could leverage root user but I do recommend to create a separate user with minimal access rights.
First what we do is create a policy and then create a user and assign policy to the user.

Log in to the AWS console, from Services find IAM –> Policies –> Create policy –> Switch to JSON and copy over below JSON to the AWS console

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "VisualEditor0",
            "Effect": "Allow",
            "Action": [
                "ec2:DetachVolume",
                "ec2:AttachVolume",
                "ec2:DeleteSnapshot",
                "ec2:CreateSecurityGroup",
                "ec2:AuthorizeSecurityGroup*",
                "ec2:TerminateInstances",
                "ec2:DeleteTags",
                "ec2:CreateTags",
                "ec2:*Describe*",
                "ec2:RunInstances",
                "ec2:StopInstances",
                "ec2:CreateVolume",
                "ec2:DeleteVolume",
                "ec2:StartInstances",
                "iam:SimulatePrincipalPolicy",
                "ssm:DescribeInstanceInformation",
                "ec2:CreateSnapshot",
                "iam:GetUser",
                "ec2:*KeyPair*",
                "route53:CreateHostedZone",
                "route53:UpdateHostedZoneComment",
                "route53:GetHostedZone",
                "route53:ListHostedZones",
                "route53:DeleteHostedZone",
                "route53:AssociateVPCWithHostedZone",
                "route53:ChangeResourceRecordSets",
                "route53:DisassociateVPCFromHostedZone",
                "route53:ListResourceRecordSets",
                "route53:ListHostedZonesByName",
                "route53:GetHostedZoneCount"
            ],
            "Resource": "*"
        }
    ]
}

Review policy, provide name and description and hit create policy

Review policy rights

We have a security policy in place, now we can create a user and assign it to the policy. From the same security panel create a new user. Provide name for the user and check Programmatic Access in access type.

Adding new user in Amazon AWS

In permission window, choose “Attach existing policies directly” and find custom policy we created in step 1

Assigning security policy to new user

In next step, review details and create new user

New user with Nutanix Move access rights

Now, the user is ready and can be used to connect Nutanix Move to the Amazon AWS.

Link to Video – to be created


Useful links

0 0 votes
Article Rating

Artur Krzywdzinski

Artur is Consulting Architect at Nutanix. He has been using, designing and deploying VMware based solutions since 2005 and Microsoft since 2012. He specialize in designing and implementing private and hybrid cloud solution based on VMware and Microsoft software stacks, datacenter migrations and transformation, disaster avoidance. Artur holds VMware Certified Design Expert certification (VCDX #077).

You may also like...

Subscribe
Notify of
guest
8 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
Jayakumar

HI,

Do they charge for creating Users,policies,VPC ,IG,public IP ,EC2 instance and migration form AWS to AHV?

8
0
Would love your thoughts, please comment.x
()
x

FOR FREE. Download Nutanix port diagrams

Join our mailing list to receive an email with instructions on how to download 19 port diagrams in MS Visio format.

NOTE: if you do not get an email within 1h, check your SPAM filters

You have Successfully Subscribed!

Pin It on Pinterest