Prepare – Discovery and assessment - AWS Prescriptive Guidance

Prepare current SAS Grid workload assessment Prepare SAS security assessment Prepare SAS Grid migration assessment Set up a new AWS environment (for new AWS users only)

Prepare – Discovery and assessment

Prepare current SAS Grid workload assessment

Goal: Capture the infrastructure requirements for SAS Grid on AWS.
Tasks:
- Gather RHEL performance information by running the gather_info.sh script on every system in the SAS infrastructure.
- Test throughput for your SAS file systems by running the rhel_iotest.sh script.
- Use the nmon command to monitor the performance of SAS on a Linux system.
  - Run nmon for several days for an average to above-average workload.
  - Collect data every 5 minutes for 24 hours.
- Return all logs and files to SAS for analysis.
- Analyze current utilization patterns and present infrastructure estimate in AWS.
Skills/roles: SAS consultant, SAS technical support, SAS Performance Lab

Prepare SAS security assessment

Goal: Gather requirements to create SAS security design documentation.
Tasks:
- Gather requirements:
  - Define functional security requirements for the SAS environment.
  - Determine whether compliance to an external standard is required.
  - Define user personas such as administrators, analysts, and report viewers.
  - Define organizational hierarchy, and determine how content will be organized and secured.
- Document SAS security design, including:
  - Metadata authorization model, which defines groups, roles, folders, server metadata, and access control templates.
  - File system security design, which identifies high-level, key SAS directories; the location, ownership, and permissions of those directories; and special files in those directories.
  - SAS security design specification document.
Skills/roles: SAS consultant

Prepare SAS Grid migration assessment

Goal: Review high-level SAS migration requirements, and use the SAS Migration Utility to analyze your SAS content and validate that it can be migrated successfully.
Tasks:
- Review high-level SAS migration requirements.
- Inventory the source SAS deployment:
Skills/roles: SAS consultant

Set up a new AWS environment (for new AWS users only)

Goal: If you’re a SAS customer who is new to AWS, you can use AWS Control Tower to set up a base environment. To migrate SAS Grid to AWS, you must add a VPC to your existing environment at a minimum.
Tasks:
- Use AWS Control Tower to set up a well-architected, multi-account environment that is based on security, compliance, and other AWS best practices. You could work within a single account. However, as your environment grows, it will be easier to manage it through a multi-account infrastructure.
- When the new AWS environment is set up, configure authentication:
  - For Windows servers, use AWS Directory Service or Active Directory Connector to connect to your existing on-premises Microsoft Active Directory. For added security, use multi-factor authentication (MFA). For more information about using AD Connector with MFA, see Enable MFA for AD Connector in the Directory Service documentation.
  - For Linux instances, you can use Directory Service with certain EC2 Linux instances. For details, see Manually Join a Linux Instance in the Directory Service documentation.
  - If on-premises access required, see Access to an on-premises network in the AWS Client VPN documentation.
Skills/roles: AWS architect

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Roles and responsibilities

Deploy – SAS software on AWS