Migration using Azure portal
Applies to: ✔️ Windows VMs ✔️ Linux VMs ✔️ On-premises environment ✔️ Azure Arc-enabled servers
This article explains how to use the Azure portal to move schedules and machines from Automation Update Management to Azure Update Manager. With minimal clicks and automated way to move your resources, it's the easiest way to move if you don't have customizations built on top of your Automation Update Management solution. For more details on what this portal tool is doing in the backend, please refer to migration scripts
Azure portal experience
To access the portal migration experience, you can use several entry points.
Select the Migrate Now button present on the following entry points. After the selection, you're guided through the process of moving your schedules and machines to Azure Update Manager. This process is designed to be user-friendly and straight forward to allow you to complete the migration with minimal effort.
You can migrate from any of the following entry points:
Select the Migrate Now button.
The migration blade opens. It contains a summary of all resources including machines, and schedules in the Automation account. By default, the Automation account from which you accessed this blade is preselected if you go by this route.
Here, you can see how many of Azure, Arc-enabled servers, non-Azure non Arc-enabled servers, and schedules are enabled in Automation Update Management and need to be moved to Azure Update Manager. You can also view the details of these resources.
After you review the resources that must be moved, you can proceed with the migration process which is a three-step process:
Prerequisites
This includes two steps:
a. Onboard non-Azure non-Arc-enabled machines to Arc - This is because Arc connectivity is a prerequisite for Azure Update Manager. Onboarding your machines to Azure Arc is free of cost, and once you do so, you can avail all management services as you can do for any Azure machine. For more information, see Azure Arc documentation on how to onboard your machines.
b. Download and run PowerShell script locally - This is required for the creation of a user identity and appropriate role assignments so that the migration can take place. This script gives proper RBAC to the User Identity on the subscription to which the automation account belongs, machines onboarded to Automation Update Management, scopes that are part of dynamic queries etc. so that the configuration can be assigned to the machines, MRP configurations can be created and updates solution can be removed.
Move resources in Automation account to Azure Update Manager
The next step in the migration process is to enable Azure Update Manager on the machines to be moved and create equivalent maintenance configurations for the schedules to be migrated. When you select the Migrate Now button, it imports the MigrateToAzureUpdateManager runbook into your Automation account and sets the verbose logging to True.
Select Start runbook, which presents the parameters that must be passed to the runbook.
For more information on the parameters to fetch and the location from where it must be fetched, see migration of machines and schedules. Once you start the runbook after passing in all the parameters, Azure Update Manager will begin to get enabled on machines and maintenance configuration in Azure Update Manager will start getting created. You can monitor Azure runbook logs for the status of execution and migration of schedules.
Deboard resources from Automation Update management
Run the clean-up script to deboard machines from the Automation Update Management solution and disable Automation Update Management schedules.
After you select the Run clean-up script button, the runbook DeboardFromAutomationUpdateManagement will be imported into your Automation account, and its verbose logging is set to True.
When you select Start the runbook, asks for parameters to be passed to the runbook. For more information, see Deboarding from Automation Update Management solution to fetch the parameters to be passed to the runbook.