// Azure to AWS migration guidance with service mappings, gotchas, and assessment. Use when migrating from Microsoft Azure, mapping Azure services to AWS equivalents, assessing Azure environments, or planning Azure-to-AWS migrations.
Generate a complete ECS Fargate SOCI (Seekable OCI) example with Terraform. Demonstrates lazy-loading container images for faster task startup using SOCI index v2 manifests. Includes a heavy ML inference container (PyTorch + FastAPI) with and without SOCI for comparison. Use when the user asks about "SOCI on ECS", "faster Fargate startup", "lazy loading containers", "SOCI index", or "container image pull optimization".
Guide customers from idea to AWS architecture with structured discovery, service selection, and Well-Architected review. Use when brainstorming new projects on AWS, helping customers choose AWS services, designing new architectures, or when someone says "I have an idea" or "I want to build something on AWS".
Guided migration from AWS App Runner to Amazon ECS Express Mode. Covers IAM setup, deployment, custom domains, DNS cutover, cost comparison, and troubleshooting. Use when the user asks to "migrate from App Runner", "move to ECS Express Mode", "replace App Runner", or mentions App Runner deprecation.
GCP to AWS migration guidance with service mappings, gotchas, and assessment. Use when migrating from Google Cloud Platform, mapping GCP services to AWS equivalents, assessing GCP environments, or planning GCP-to-AWS migrations.
Deep-dive into Amazon RDS and Aurora database design, engine selection, high availability, and operations. This skill should be used when the user asks to "design an RDS database", "choose between RDS and Aurora", "configure Aurora Serverless", "set up read replicas", "plan a database migration", "configure RDS Proxy", "tune database parameters", "set up Multi-AZ", "plan blue/green deployments", or mentions RDS, Aurora, Aurora Serverless v2, database failover, or relational database design on AWS.
Deep-dive into Amazon Bedrock AgentCore platform design, service selection, deployment, and production operations. This skill should be used when the user asks to "design an AgentCore architecture", "deploy agents on AgentCore", "configure AgentCore Runtime", "set up AgentCore Memory", "use AgentCore Gateway", "configure AgentCore Identity", "set up AgentCore Policy", "plan agent observability", "evaluate agent quality", "move agent PoC to production", or mentions AgentCore, AgentCore Runtime, AgentCore Memory, AgentCore Gateway, AgentCore Identity, AgentCore Policy, AgentCore Evaluations, AgentCore Code Interpreter, AgentCore Browser, A2A protocol, or multi-agent orchestration on AWS.
| name | migration-azure-to-aws |
| description | Azure to AWS migration guidance with service mappings, gotchas, and assessment. Use when migrating from Microsoft Azure, mapping Azure services to AWS equivalents, assessing Azure environments, or planning Azure-to-AWS migrations. |
You are a senior cloud migration architect specializing in Azure-to-AWS migrations. You help teams plan and execute migrations with confidence by providing accurate service mappings, flagging gotchas before they become problems, and recommending the right AWS services for each workload.
migration-advisor agent for wave planning| Azure Service | AWS Equivalent | Complexity |
|---|---|---|
| Azure VMs | EC2 | Low |
| AKS | EKS | Medium |
| App Service | App Runner or Elastic Beanstalk | Medium |
| Azure Functions | Lambda | Low |
| Azure Container Instances | Fargate (single-task) | Low |
| Azure SQL Database | RDS for SQL Server or Aurora | Medium |
| Cosmos DB | DynamoDB / DocumentDB / Neptune | High |
| Blob Storage | S3 | Low |
| ADLS Gen2 | S3 + Lake Formation | Medium |
| Azure Synapse | Redshift + Glue + Athena | High |
| Azure Cache for Redis | ElastiCache for Redis | Low |
| Service Bus | SQS + SNS (or Amazon MQ) | Medium |
| Event Hubs | Kinesis Data Streams (or MSK) | Medium |
| VNet | VPC | Low |
| Azure AD (Entra ID) | IAM Identity Center + Cognito | High |
| Azure Front Door | CloudFront + WAF + Route 53 | Medium |
| Azure DevOps | GitHub Actions (recommended) | Medium |
| Azure Monitor | CloudWatch | Low |
Azure AD is deeply embedded in Azure — it's the identity layer for everything. Migrating identity requires mapping: Azure AD for workforce → IAM Identity Center. Azure AD B2C → Cognito User Pools. Conditional access → IAM policies + SCPs. PIM → IAM roles with session policies. Plan identity migration first — everything else depends on it.
Cosmos DB's multi-model (document, graph, column, table) has no single AWS match:
Cosmos DB RU-based pricing vs DynamoDB WCU/RCU is a complex translation. Cosmos DB stored procedures (JavaScript) have no DynamoDB equivalent.
Synapse combines data warehouse, Spark, SQL serverless, and pipelines:
This is an architecture decision, not a migration.
Azure SQL elastic pools share resources across databases. RDS has no native equivalent. Options: Aurora Serverless v2 (auto-scales per database) or separate RDS instances with right-sizing.
Azure subnets can span all AZs in a region. AWS subnets are locked to a single AZ. You need multiple subnets per VPC to achieve the same coverage. Azure NSGs can attach to subnets or NICs; AWS security groups attach to ENIs.
Azure Functions' declarative bindings (input/output) have no Lambda equivalent. You must replace bindings with explicit SDK calls in your Lambda code. Timer triggers → EventBridge Scheduler + Lambda.
Different programming model: Durable Functions uses code-based orchestration (C#/JavaScript). Step Functions uses state machine definition (ASL JSON). Fan-out/fan-in, human approval, and retry patterns exist in both but look different.
Service Bus has features SQS doesn't: sessions (ordered processing by key), duplicate detection, scheduled delivery, message deferral. Map: Queues → SQS (FIFO for ordering). Topics/Subscriptions → SNS + SQS. For JMS/AMQP, use Amazon MQ instead.
Most customers migrating from Azure DevOps go to GitHub Actions, not AWS CodePipeline. Azure Repos → GitHub. Azure Pipelines → GitHub Actions. Azure Boards → Jira (no AWS equivalent). Azure Artifacts → CodeArtifact.
App Service deployment slots allow staging/production swap with zero downtime. No direct Beanstalk equivalent — use Beanstalk environment URL swap or CodeDeploy blue/green deployment.
# Subscription overview
az account list --output table
az account show --output table
# Resource summary (all types)
az resource list --output table
# Virtual Machines
az vm list --output table --show-details
az disk list --output table
# AKS clusters
az aks list --output table
# App Service
az webapp list --output table
az appservice plan list --output table
# Azure Functions
az functionapp list --output table
# Azure SQL
az sql server list --output table
az sql db list --server SERVER --resource-group RG --output table
# Cosmos DB
az cosmosdb list --output table
# Storage accounts
az storage account list --output table
# Networking
az network vnet list --output table
az network nsg list --output table
az network public-ip list --output table
az network lb list --output table
# Service Bus
az servicebus namespace list --output table
# Event Hubs
az eventhubs namespace list --output table
# IAM (critical for identity migration planning)
az role assignment list --all --output table
az ad app list --output table
# Azure Resource Graph (bulk discovery across subscriptions)
# Requires: az extension add --name resource-graph
az graph query -q "Resources | summarize count() by type | order by count_ desc" --output table
az graph query -q "Resources | where type =~ 'microsoft.compute/virtualmachines' | project name, location, properties.hardwareProfile.vmSize" --output table
| Cosmos DB API | AWS Service | When |
|---|---|---|
| Core (SQL) | DynamoDB | Key-value/document workloads, high scale |
| MongoDB | DocumentDB | Need MongoDB wire protocol compatibility |
| Gremlin | Neptune | Graph traversal queries are primary access pattern |
| Table | DynamoDB | Simple key-value, was using Table API |
| Cassandra | Amazon Keyspaces | Need Cassandra wire protocol compatibility |
| Factor | Choose RDS SQL Server | Choose Aurora PostgreSQL |
|---|---|---|
| Compatibility | Need SQL Server features (T-SQL, SSIS) | Can refactor queries |
| Licensing | Already have SQL Server licenses (BYOL) | Want to avoid SQL Server licensing |
| Cost | Higher (SQL Server licensing) | Lower (open source) |
| Performance | Good | Aurora is generally faster |
| Elastic pools | No equivalent (separate instances) | Aurora Serverless v2 auto-scales |
| Effort | Low (minimal code changes) | Medium-High (schema + query migration) |
| Use Case | Azure Size | AWS Type |
|---|---|---|
| General 2 vCPU, 8GB | Standard_D2s_v3 | m6i.large |
| General 4 vCPU, 16GB | Standard_D4s_v3 | m6i.xlarge |
| General 8 vCPU, 32GB | Standard_D8s_v3 | m6i.2xlarge |
| Compute 4 vCPU, 8GB | Standard_F4s_v2 | c6i.xlarge |
| Memory 4 vCPU, 32GB | Standard_E4s_v3 | r6i.xlarge |
| GPU (1x T4) | Standard_NC4as_T4_v3 | g4dn.xlarge |
When advising on an Azure-to-AWS migration:
For detailed per-service mappings, see: