The design objectives of VMware Validated Design for Intelligent Operations provide fine-grained details about the scope, performance, hardware, and other critical factors.

Table 1. Objectives of the Intelligent Operations Use Case

VMware Validated Design Objective


Main objective

Common monitoring scenarios implemented on top of the Operations Management Layer of the SDDC.

Scope of deployment

Most scenarios in this use case assume that you deployed the following components.

  • Virtual infrastructure layer (ESXi, vCenter Server, NSX)

  • Operations management layer (vRealize Operations Manager, vRealize Log Insight)

  • Other components, as listed in the introduction to each scenario.

Cloud type

Private cloud

Number of regions and disaster recovery support


Dual-region SDDC.

Maximum number of virtual machines

  • 10,000 running virtual machines

  • Churn rate of 150 virtual machines per hour

Churn rate is related to provisioning, power cycle operations, and decommissioning of one tenant virtual machine by using a blueprint in the cloud management platform. A churn rate of 100 means that 100 tenant workloads are provisioned, pass the power cycle operations, and are deleted.

Number of clusters

Dual-cluster setup

The validated design requires the following clusters for SDDC deployment.

  • Management cluster. Runs the virtual machines of the management products.

  • Shared edge and compute cluster

    • Runs the tenant workloads.

    • Runs the required NSX services to enable north-south routing between the SDDC and the external network, and east-west routing inside the SDDC.

Data center virtualization

  • Compute virtualization

  • Software-defined storage in the management cluster

  • Network virtualization

Scope of guidance

The scope of guidance depends on the scenario. The Scenarios documentation changes as the Validated Design use case is extended with more scenarios. Some example scenarios are as follows. See the Scenarios documentation for the complete current set.

  • Monitoring the SDDC Using Out-the-Box Dashboards in vRealize Operations Manager

  • Monitoring the SDDC at Scale

Overall availability

99% availability

Planned downtime is expected for upgrades, patching, and on-going maintenance.

Authentication, authorization, and access control

  • Use of Microsoft Active Directory as a central user repository.

  • Use of service accounts with minimum required authentication and Access Control List configuration.

  • Use of basic tenant accounts.

Certificate signing

Certificates are signed by an external certificate authority (CA) that consists of a root and intermediate authority layers.


Because this design is based on the VMware Validated Design for the Software-Defined Data Center, it supports hardening options.

  • Tenant workload traffic can be separated from the management traffic.

  • The design uses a distributed firewall to protect all management applications. To secure the SDDC, only other management solutions and approved administration IP addresses can directly communicate with individual components.