WFM supermarket e-commerce application is lifted from Rackspace and shifted to AWS Cloud
The eStore smart WFM platform that exclusively sells organic products, hosted both production and pre-production environments on Rackspace. The client planned to migrate these environments to AWS. Mindtree was chosen to execute this migration and the set-up of eStore smart Platform in AWS. The client had 40+ servers, 700GB data, five different applications, SSRS and .net technologies
The client wanted to make business implications for both industrial and consumer audiences in retail industry. They were looking for a high-performing, low-cost infrastructure to fulfill their organizational vision/mission. They wanted to redirect their attention to core applications and reduce the resources required to manage the infrastructure that runs them.
Mindtree helps its customers achieve successful transition to cloud with zero business impact. Mindtree executed this project in two phases, namely, assessment & design phase where the details of the existing setup are collected and analyzed for compatibility with AWS; and the second phase of build & implementation where the actual migration is executed as per the plan.
The assessment and design phase included activities like requirement gathering, analysis of eStore platform websites, identify the workflow between applications and its dependencies. Also, gathering the current application & infrastructure security requirements, align and agree with WFM for implementation was needed. The applications, network & security, monitoring, backup, automation, infra tools, and integrations within Dev, UAT and Prod environments analyzed.
The migration solution is highly available and uses lift and shift strategy. We created a failover environment through the use of two availability zones. If something went wrong with the primary zone, the secondary zone will continue to deliver service to customers. In addition to setting up, to meet both internal security and HIPAA requirements, Mindtree team included security policy, monitoring, key management, patching and more into their technology foundation and processes for the new service.
Backup and restore strategy was used for MySQL database migration. Backup and retention from AMI has been implemented for the backup of the database. Backup is also enabled for Amazon RDS Instance and SQL Server Instances.
The network access-list was created to control the traffic within the VPC and between the VPC. With single sign-on implemented for application access and integrated with Azure AD, all communication to/from application use encrypted channel SSL/TLS.
AWS IAM was used to integrate with Azure Active Directory to provision identities in the AWS system and assign permissions. This leverages active directory accounts with MFA for secure login to AWS system and avoids creation of independent user accounts in AWS environment.
AWS Simple AD Service was implemented for LDAP authentication on EC2 and joining these EC2 to domain.
Amazon CloudWatch was used to collect and track metrics, monitor log files and set alarms. Basic monitoring was enabled for all WFM servers. Dashboard and alarms were enabled through MWatch, Mindtree's monitoring tool. MWatch is an integrated IT infrastructure management and secured service delivery platform. MWatch provides a consolidated view of applications and infrastructure by integrating the service desk with monitoring tools.
New Relic is a performance management solution that enables developers to diagnose and fix application performance problems in real time. New Relic agents were installed on all EC2 instances for APIM Monitoring.
Sumo Logic was implemented to collect and analyze machine data (logs) to gain deep visibility across full application and infrastructure stack.
Application pushes data to S3 buckets located in another account. Cross account access was established using trust relationship and secured it using IAM role.
As part of business support plan, to provide the client with efficient performance and value for money, we opted for an AWS Trusted Advisor. This helped us stand by our promise of providing the best resources at optimized costs.
CloudTrail was used to monitor and log all the activities performed by all users using API and AWS Console. This is mainly used for auditing the activities and getting details of who has performed the changes and if they have been enabled in this AWS environment.
With the help of the implemented solution, the new infrastructure became flexible, with improved performance and on demand scalability to meet growing seasonal demands of the ecommerce platform. It also ensured best security implementation and achieving HIPAA compliance. The customer also accomplished operational excellence by implementing automation – auto scaling deployment, effective monitoring, patching servers etc. This enabled the ecommerce platform firm to extend its new infrastructure as it grows its user base and adds new features and functionality as per business with ease.