Best practices

Run a dry-run migration before any live migration to catch misconfigurations, missing CRDs, and provisioner mismatches before they become problems on the target cluster.

Review the extraction summary (SUMMARY.json) to verify resource counts and identify any unexpected resources before proceeding with migration.

Use a phased migration approach for large clusters. Start with non-critical workloads, validate functionality, and then gradually move remaining applications.

Capture baseline performance metrics before migration to enable accurate post-migration comparison.

Follow the principle of least privilege and grant the minimum permissions required to perform a task. For more information, see Grant least privilege and Security best practices in the IAM documentation.

Encrypt data in transit by using TLS for all Kubernetes API server communications and inter-service traffic.

Install required CRD operators on the target Amazon EKS cluster before migrating workloads that depend on them.

Keep the source cluster operational during and after migration to provide a rollback path until you have fully validated the new environment.

Train your team on Amazon EKS-specific features and AWS integrations. Update runbooks and operational procedures before cutover.

Monitor spending closely during migration. Use AWS Cost Explorer to track expenses and optimize resource usage.

For clusters with hundreds of nodes and thousands of pods, engage AWS Support for guidance on planning, testing, and troubleshooting complex scenarios.

Schedule the migration window during a low-activity period to minimize impact on dependent applications.