Quickly migrating apps into the Cloud

Many critical, web-based applications such as purchase order systems can only be accessed in the company's network, because they run in the Intranet. Microsoft’s Azure AD Application Proxy offers a simple solution for making available on-premises web applications through the Azure AD Portal. Users are authenticated through Azure AD and the user context is forwarded to the on-premises web application. 

The on-premises systems are then made available in a VPN without dial-in but can still be made secure using Azure's security functions. To access the on-premises systems, Azure builds a secure tunnel on an application proxy connector. The required adjustments for the on-premises system environment are minimal. For example, companies can quickly reverse the adjustments after the crisis situation has passed. The cost of migrating in both directions is relatively low. 

Often, employees working from home who access company systems are no longer able to perform certain work or approval processes, or they are no longer able to do so within the required time frame. To accelerate these processes, companies often only need to simplify one single step (e.g. approval signature) for their employees. 

Through the platforms Azure/O365/D365, Microsoft provides gateway components for this purpose. They can be used to migrate individual interaction steps from on-premises systems into the Cloud. With the help of Power Platform components, these solutions can be made available independent of the device, i.e. in equal measure for cellular phones, tablets and PCs. Here too, on-premises gateway components create a secure connection to the end points in the Cloud. 

Rapid implementation and almost no required adjustments to existing processes avoid interruptions in the existing workflows. In this way, approval steps in particular can be provided without a VPN connection, and employees are able to react more quickly even outside of the company's network. The cost of such an implementation is also low, as only single process steps are adjusted. 

Client/server solutions in particular often exchange large volumes of data, which puts considerable stress on the company's Internet connections. These processes frequently involve special applications in specific departments, such as documentation systems. Usually, they are hosted via on-premises VM systems.  

Azure also enables the hosting of VMs. This means that on-premises applications can be easily migrated by migrating the VMs. Companies benefit from access and direct authentication via Azure. In this way, a VPN is no longer required as the Azure network is also available as an option (and depending on the connection). This relieves the pressure on company Internet connections and improves access performance. The VMs remain in the domain, i.e. in the company's operating processes. The cost for the rapid VM migration to Azure can be kept to a minimum because only few adjustments must be made to the existing architecture.  

In the medium term, it pays to convert existing solutions on the basis of Azure components, in order to take greater advantage of the benefits offered by the Cloud. By the latest after the short-term conversion, companies should begin to adjust their applications accordingly, so they can benefit from the advantages of accessing applications via scalable Cloud architectures. 

Options include a direct migration from? on-premises applications, as well as a gradual redesign according to Lift & Shift. The solution architecture is based on tailor-made Azure components. They enable server-less and micro-service architectures. 

The advantages of this solution are: 

• Easy scaling, particularly during high peak times 
• No fixed operating costs for components, instead costs are based on inquiries/expected useful life 
• Reduction in access rate for the company network