You are using an unsupported browser. Please update your browser to the latest version on or before July 31, 2020.
close
You are viewing the article in preview mode. It is not live at the moment.
Home > Internal systems documentation > VCOE / SIRAS Infrastructure Migration Plan
VCOE / SIRAS Infrastructure Migration Plan
print icon
Feb 06, 2026

Project: Migration from VCOE Private Cloud to SIRAS/Azure Cloud

1. Summary

SIRAS is transitioning its application infrastructure from the Ventura County Office of Education (VCOE) private cloud to an Azure cloud environment managed by SIRAS and MBT. The migration includes production and training SQL databases, web servers, load balancing, firewalls, VPN access, and secure file transfer services.

 

The move ensures SIRAS/MBT has direct ownership, control, and scalability of its infrastructure while maintaining high availability, security, and compliance. This migration aligns Ventura County users’ SIRAS infrastructure with the rest of the SIRAS platform, streamlining management and simplifying operations. 

 

The direct benefits of this move for VCOE are primarily that the hosting and support for the infrastructure can be decommissioned.  All servers and resources currently committed to hosting the SIRAS application will be taken offline with no further need for support.  System upgrades and maintenance will no longer be VCOE's responsibility. On the SIRAS' end this move is important to ensure that future development and transitions of application architecture are consistent across environments.

 

Benefit Summary

  1. VCOE no longer has to maintain a SIRAS instance on their platform.
  2. Infrastructure will be updated from their legacy Microsoft systems to more stable modern hosting environment.
  3. Less downtime from monthly scheduled maintenance.
  4. SIRAS will be able to more seamlessly be able to keep the Ventura SIRAS platform up to date and current.
  5. Keep Ventura’s data secure through VPN gateway.

 

The target date for this migration now is Spring or Summer 2026.

 

2. Scope of Migration

On VCOE's end, setup and test before the production migration:

  • File Exchange SFTP can continue to be hosted by VCOE as it is currently
  • External access can be granted via certificate with permission for SIRAS to upload and download data transfer files.
  • On the cutover date, provide a backup copy of the production database
    - Successful trial database transfer completed Nov 2025
  • VCOE should provide redirects from the old to new domains:
    • siras.vcoe.orgsiras-vcoe.org (Production Server)
    • sirastraining.vcoe.org → training.siras-vcoe.org (Training Server)

 

On SIRAS' end:

  • Deployment of SQL database on Azure cloud
  • Deployment of application web servers to virtual machines
  • All VMs behind Firewall and Load Balancer
  • Full environment tested and ready 1+ week before launch date.

3. Target Architecture (Azure)

  1. Compute:
    • 4–8 Azure VMs for web servers (scalable set, behind load balancer).
  2. Database:
    • Azure SQL Database or SQL Server on Virtual Machine (IaaS)
    • Hourly SQL backup schedule to Azure geo-replicated private storage.
  3. Networking & Security:
    • Azure VPN Gateway for secure admin access.
    • PFsense and HAProxy Load Balancer for traffic distribution.
    • Azure Firewall + Network Security Groups (NSGs) for protection.
  4. File Transfer:
    • Secure FTP (Azure-hosted VM or Azure Storage with SFTP enabled).
    • Secure files exchange may be provided by VCOE
  5. Domains & DNS:
    • New domains: siras-vcoe.org, training.siras-vcoe.org

4. Migration Timeline and Approach

  1. Parallel Build: Azure environment is built fully in parallel to the VCOE environment.
    Two weeks before the planned cutover, SIRAS will deploy the webservers and database.
  2. Trial Migration: Full dress rehearsal with test database migration, new domains running, external SFTP file sharing, all tested the week before the cutover
  3. Final Cutover:
    • Weekend downtime window; application is brought offline.
    • Stop writes on VCOE database.
    • Transfer latest database backup to Azure SQL (lift-and-shift, single .bak file is adequate).
    • Bring up webservers in Azure and validate application function.
    • Update DNS to point to new domains.
    • Validate redirect rules at VCOE DNS.

5. Risks & Mitigations

Risk Mitigation
Downtime exceeds 24 hours Perform full trial migration to ensure timing. Have rollback plan to VCOE if needed.
Performance issues on Azure Run load tests during trial migration. Scale VM size or SQL tier accordingly.
DNS propagation delays Schedule cutover during low-traffic weekend.
FTP disruption Setup SFTP well ahead of cutover.  Integration could be migrated prior to shift.

6. Success Criteria

  • All applications accessible via siras-vcoe.org and training.siras-vcoe.org.
  • SQL database fully functional in Azure with no data loss.
  • Secure VPN access for authorized users.
  • Secure FTP available and tested.
  • Performance equal to or better than current VCOE-hosted environment.

7.  Financials

  • VCOE will be able to deallocate the 8 webservers, SQL databases and networking, likely significant cost savings.
 
close button
scroll to top icon