question

HernusBornman-3399 avatar image
0 Votes"
HernusBornman-3399 asked vipulsparsh-MSFT answered

Defender For IOT - Migration Strategy (OT Solution)

Hi all,

I have been requested to migrate the OT solution (Defender for IOT Stack) to a alternative Subscription.
I have noted that you cannot move the Workspace to a alternative subscription. ([Resource][1])

Is there a existing Strategy on moving the Stack, or is it preferred to re-deploy the stack (IOT Hub + Defender for IOT + Sentinel).
And reactivate the Sensor after the deployment has concluded.


Customer A: Currently Deployed
Customer B: To migrate to

Conclusion:
Migrate "Customer A" Defender for IOT stack to the "Customer B" Subscription.


Resources:
[1]: https://docs.microsoft.com/en-us/azure/azure-monitor/logs/move-workspace#move-your-workspace






azure-security-centermicrosoft-sentinelazure-iot
· 1
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

vipulsparsh-MSFT avatar image
1 Vote"
vipulsparsh-MSFT answered

@HernusBornman-3399 Thanks for reaching out. There is no specific migration strategy.

You can move the resources under 1 resource group, that resource group can then be moved to a different subscription.
In your case, you will also have to make sure that you see the subscription of the tenant you want it to be moved under the same tenant where the resources are currently.
For this you will need to follow : https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/move-resource-group-and-subscription#use-the-portal

"If the tenant IDs for the source and destination subscriptions aren't the same, use the following methods to reconcile the tenant IDs:

Transfer ownership of an Azure subscription to another account
How to associate or add an Azure subscription to Azure Active Directory"


Basically here are the steps which needs to be done :

Step 1: If dependent resources are distributed across different resource groups, first move them into one resource group.
Step 2: Move the resource and dependent resources together from the source subscription to the target subscription.
Step 3: Optionally, redistribute the dependent resources to different resource groups within the target subscription.


You can use the azure portal to move the resources to another subscription. Read more here : https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/move-resource-group-and-subscription#use-the-portal


180460-image.png

180350-image.png



Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.





image.png (75.3 KiB)
image.png (25.8 KiB)
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.