If you have access to your AWS security credentials, you can create your public cloud account in VMware Cloud services.


Make sure that the following permissions have been set in your AWS account to ensure that the account works correctly with VMware Cloud services.

  • AmazonEC2ReadOnlyAccess, to collect data on Amazon Elastic Block Store (EBS) blocks and computes.

  • AmazonVPCReadOnlyAccess, to collect data on a Virtual Private Cloud (VPC)

  • CloudWatchLogsReadOnlyAccess, to collect metrics from AWS

Make sure that you have your AWS security credentials available. AWS security credentials consist of the access key ID and secret key associated with your AWS account. If you did not make a note of these credentials when you set up your account, you can create new credentials. See How Do I Create AWS Security Credentials


  1. Sign in to VMware Discovery.
    • If you are adding a cloud account for the first time, the list of cloud account types that you can create is displayed.

    • If you have already added a cloud account, select Manage > Cloud Accounts, and click Add New.

  2. Select Amazon Web Services.
  3. Select IAM User, and click Next.
  4. Enter your access key ID and your secret access key, and click validate to verify your credentials.
  5. To help you identify this account, enter a nickname, and click Add.

    You can view a summary of the account resources on the Summary page.

  6. To edit the account, click Manage > Cloud Account, and click the account nickname.