Analytics functionality is built natively into the VMware SD-WAN Edge for collecting data inline. However, by default, Analytics is deactivated for Edges. For those Enterprise customers with Analytics activated, the Enterprise Administrators can create Analytics Edges.

To create a new SD-WAN Edge with Analytics, perform the following steps.

Prerequisites

  • Ensure that all the necessary system properties to activate Analytics are properly set in the SD-WAN Orchestrator. For more information, contact your Operator Super User.
  • Ensure that the Analytics functionality is activated for the Customer before provisioning an Analytics Edge.
    Note: For more information, see VMware Edge Network Intelligence Configuration Guide available at https://docs.vmware.com/en/VMware-SD-WAN/index.html.
  • The SD-WAN Orchestrator must be on 5.0.1.0 and the SD-WAN Edges must be running a minimum of 4.3.1 code. You can review the software image installed on each edge by navigating to Configure > Edges. The table on the Edges page will have a column that displays Software version of Edge per customer.

Procedure

  1. In the Enterprise portal, navigate to Manage Customers.
  2. Select a customer and then go to Configure > Edges.
    The Edges screen appears.
  3. Click New Edge at the top-right corner of the screen.
    The Provision New Edge dialog box appears.
  4. In the Name textbox, enter a unique name for the Edge.
  5. From the Model drop-down menu, select an Edge model.
  6. From the Analytics drop-down menu, select one of the following Analytics modes to be configured for the Edge:
    • Application Analytics - Gains access to fault isolation and Application-specific Analytics.
    • Application and Branch Analytics - Gains access to Application-specific Analytics and Branch Analytics.
    • By default, None is selected, which implies Analytics is deactivated for the Edge.
    Under the Analytics drop-down menu, you can find the remaining number of Analytics licenses that is available to be provisioned as an Analytics Edge. As an Administrator, you can also change the Analytics mode for a specific Edge from the Edge Overview screen.
  7. From the Profile drop-down menu, select a profile to be assigned to the Edge.
  8. From the Edge License drop-down menu, select an Edge License from the available list. The list displays the licenses assigned to the Enterprise, by the Operator.
  9. From the Authentication drop-down menu, you can select one of the following certificate-based authentication options:
    • Certificate Not Required - Edge uses a pre-shared key mode of authentication.
    • Certificate Acquire - This option is selected by default, and instructs the Edge to acquire a certificate from the certificate authority of the SD-WAN Orchestrator, by generating a key pair and sending a certificate signing request to the Orchestrator. Once acquired, the Edge uses the certificate for authentication to the SD-WAN Orchestrator and for establishment of VCMP tunnels.
      Note: After acquiring the certificate, the option can be updated to Certificate Required.
    • Certificate Required - Edge uses the PKI certificate.
  10. In the Custom Info textbox, enter custom information associated with the Edge, if needed.
    Customer information should not exceed 255 characters.
    Note: Super User and Standard Admin users of Enterprise/MSP/Operator roles (with UPDATE_EDGE privilege) can add or update the Custom Info for an Edge.
  11. To apply High Availability (HA), select the High Availability checkbox.
  12. In the Serial Number textbox, enter the serial number of the Edge, which is optional. If specified, the serial number must match the serial number of the Edge when activated.
    Currently, the best way to find the serial number is via visual inspection. You can find the serial number on the Chassis.
  13. In the Contact Name and Contact Email textboxes, enter the name and email address of the site contact for the Edge.
  14. Click the Set Location link to set the location of the Edge.
  15. Click Create.

Results

An Analytic Edge is provisioned for the selected customer. Once the Edge is provisioned, the Analytics functionality collects data, performs deep packet inspection of all traffic, identifies network application and correlates traffic with user information.

What to do next

To send the collected analytics data to the Cloud Analytics Engine, you must configure an Analytics interface on which the Edge transmits Analytics data. For more information, see Configure an Analytics Interface on an Edge.