Summary Prerequisites and limitations Architecture Tools Epics Related resources

Migrate IIS-hosted applications to Amazon EC2 by using appcmd.exe

Deepak Kumar, Amazon Web Services

Summary

When you migrate Internet Information Services (IIS)-hosted applications to Amazon Elastic Compute Cloud (Amazon EC2) instances, you need to address several authentication challenges. These challenges include re-entering domain credentials for application pool identities and potentially regenerating machine keys for proper website functionality. You can use AWS Directory Service to establish trust relationships with your on-premises Active Directory or create a new managed Active Directory in AWS. This pattern describes a clean migration approach that uses the backup and restore functionality of IIS on Amazon EC2 instances. The approach uses appcmd.exe to uninstall and reinstall IIS on the target EC2 instances, enabling successful migration of IIS-hosted websites, application pool identities, and machine keys.

Prerequisites and limitations

Prerequisites

An active AWS account for the target server.
A functional source IIS server with websites hosted on it.
Understanding of IIS working principles such as administration and configuration.
System administrator access on both the source and target servers.
Completed migration of the source IIS server to the target AWS account. You can use migration tools such as AWS Application Migration Service, an Amazon Machine Image (AMI) snapshot-based approach, or other migration tools.

Limitations

Some AWS services aren’t available in all AWS Regions. For Region availability, see AWS Services by Region. For specific endpoints, see Service endpoints and quotas, and choose the link for the service.

Product versions

IIS 8.5 or IIS 10.0

Architecture

Source technology stack

Windows Server with IIS 8.5 or IIS 10.0 installed

Target technology stack

Windows Server with IIS 8.5 or IIS 10.0 installed
Application Migration Service

Target architecture

The following diagram shows the workflow and architecture components for this pattern.

Workflow to migrate IIS-hosted applications to Amazon EC2.

The solution includes the following steps:

Install and configure the AWS Replication Agent on the source IIS server in your corporate data center. This agent initiates the replication process and manages data transfer to AWS.
The AWS Replication Agent establishes a secure connection to Application Migration Service and begins replicating the source server data, including IIS configurations, websites, and application files.
Application Migration Service launches EC2 instances in the application subnet with the replicated data. The target EC2 instance runs IIS and contains the migrated applications with their associated Amazon Elastic Block Store (Amazon EBS) volumes. After the initial replication, Application Migration Service continues to sync changes until you're ready to cut over to the new environment.

Tools

AWS services

AWS Application Migration Service helps you rehost (lift and shift) applications to the AWS Cloud without change and with minimal downtime.
Amazon Elastic Block Store (Amazon EBS) provides block-level storage volumes for use with Amazon EC2 instances.
Amazon Elastic Compute Cloud (Amazon EC2) provides scalable computing capacity in the AWS Cloud. You can launch as many virtual servers as you need and quickly scale them up or down.

Other tools

Internet Information Services (IIS) for Windows Server is a web server with a scalable and open architecture for hosting anything on the Web. IIS provides a set of administration tools, including administration and command line tools (for example, appcmd.exe), managed code and scripting APIs, and Windows PowerShell support.

Epics

Task Description Skills required

Task	Description	Skills required
Create backups of IIS-hosted websites, configuration key, and `WAS` key.	To create backups for IIS-hosted websites, the configuration key (`iisConfigurationKey`), and the `WAS` key (`iisWasKey`), use appcmd.exe on the source server. Use the following steps: Open a command prompt and run as administrator. Run the following command: `c:\windows\system32\inetsrv` Run the following command, replacing `<backupname>` with your value: `appcmd.exe add backup "<backupname>"` To export the configuration key and the `WAS` key, do the following: Run the following command: `cd c:\windows\Microsoft.NET\Framework\v2.0.50727 5. aspnet_regiis.exe -px "iisConfigurationKey"` Run the following command: `C:\temp\iisConfKey.xml -pri` Run the following command: `aspnet_regiis.exe -px "iisWasKey" C:\temp\iisWasKey.xml -pri`	IIS Administrator

Create backups of IIS-hosted websites, configuration key, and WAS key.

To create backups for IIS-hosted websites, the configuration key (iisConfigurationKey), and the WAS key (iisWasKey), use appcmd.exe on the source server. Use the following steps:

Open a command prompt and run as administrator.
Run the following command: c:\windows\system32\inetsrv
Run the following command, replacing <backupname> with your value: appcmd.exe add backup "<backupname>"

To export the configuration key and the WAS key, do the following:

Run the following command: cd c:\windows\Microsoft.NET\Framework\v2.0.50727 5. aspnet_regiis.exe -px "iisConfigurationKey"
Run the following command: C:\temp\iisConfKey.xml -pri
Run the following command: aspnet_regiis.exe -px "iisWasKey" C:\temp\iisWasKey.xml -pri

IIS Administrator

Task	Description	Skills required
Uninstall IIS on the target server.	To uninstall IIS on the target server, use the following steps: Sign in to the server with administrator rights. Go to Server manager. Choose Manage, Remove Roles and features, Next, and Next. Clear the web IIS checkbox and then choose Next, Next. Select the Restart destination server automatically checkbox. When the uninstallation is completed, the system reboots. Validate that IIS uninstalled successfully by going to `C:\Windows\System32\inetsrv` and confirming that this folder is empty.	IIS Administrator
Install IIS on the target server.	To install IIS on the target server, use the following steps: Sign in to the server with administrator rights. Go to Server manager. Choose Add roles and features, Next, Next, Next, and Next. Select the Webserver IIS checkbox. When prompted, choose Add features. Choose all the checkboxes that are shown in App development, Add features, Select all features. You can select features at a granular level just before the confirmation. Choose Install.	IIS Administrator

Task	Description	Skills required
Restore IIS websites and configuration.	To restore the IIS backups that you created from the source server on the target server, use the following steps: Create a folder named `backup` in the `C:\windows\system32\inetsrv` folder and place the source backup folder inside it. Open a command prompt and run as administrator. Run the following command: `cd C:\windows\system32\inetsrv` Run the following command: `C:\windows\system32\inetsrv\appcmd.exe list backup` Run the following command: `C:\windows\system32\inetsrv\appcmd.exe restore backup <sourcebackup>` Run the following command: `cd c:\windows\Microsoft.NET\Framework64\v2.0.50727\` Run the following command: `aspnet_regiis.exe -pi "iisConfigurationKey" C:\temp\iisConfKey.xml -exp` Run the following command: `aspnet_regiis.exe -pi "iisWasKey" C:\temp\iisWasKey.xml -exp` Reset IIS, and go to Application Pool Identity and Website advanced settings to re-enter the password.	IIS Administrator

Related resources

AWS documentation

Installing the AWS Replication Agent (AWS Application Migration Service documentation)

AWS Prescriptive Guidance

Microsoft resources

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Migrate Db2 to Amazon EC2 with HADR

Migrate Microsoft SQL Server to Amazon EC2 using AWS MGN