Before you onboard with vRealize Network Insight Cloud you need to download data collectors and have certain information about your public and private cloud accounts available.

Before You Onboard with vRealize Network Insight Cloud

To... You need...
Sign up for and log in to vRealize Network Insight Cloud
  • A VMware ID

    Set up a VMware account with your corporate email address at

  • Sign up for vRealize Network Insight Cloud trial service.
    • To request for the trial service, you must use the same email ID that you entered at the time of creating VMware ID.
    • Ensure that you are not opted-out of VMware marketing emails and check your junk folder for any email communications from VMware. If you don't receive any activation links within one or two days, contact to get the manual link from the Cloud services.
    • The VMware team can use the Cloud Services Lead Referral link to refer the vRealize Network Insight Cloud service to the users.
Deploy Collector and connect to Cloud Platform
Connect to VMware Cloud Services. HTTPS port 443 open to outgoing traffic with access through the firewall to:
  • *


  • *

  • *

Add a vCenter server, NSX Manager, physical routers, switches or firewalls. The IP/FQDN and the credentials of the specific data source, such as a vCenter, NSX Manager, physical router, switch, or firewall. See, Adding a Data Source.
Add VMware Cloud on AWS
Add an AWS public cloud account.
Add an Azure public cloud account.
  • Azure Subscription details:
    • Tenant ID
    • Application ID
    • Application Secret Key
    • Subscription ID
  • Appropriate user permissions:
    • Microsoft.Resources/subscriptions/read
    • Microsoft.Compute/virtualMachines/read
    • Microsoft.Network/virtualNetworks/read
    • Microsoft.Network/networkSecurityGroups/read
    • Microsoft.Network/networkInterfaces/read
    • Microsoft.Network/applicationSecurityGroups/read
    • Microsoft.Storage/storageAccounts/read
    • Microsoft.Storage/storageAccounts/listkeys/action
    • Microsoft.Network/networkWatchers/queryFlowLogStatus/action

      Alternatively, for ease of use, you can add the Storage Account Key Operator Service Role, Network Contributor, and Reader permission.

  • Enable NSG flow data collection. For more information, see
Add VMware SD-WAN
  • At least one vRealize Network Insight Cloud for SD-WAN license.
    Note: If you are running the vRealize Network Insight Cloud trial service, license is not needed for adding VeloCloud Orchestrator and you can add up to 15 edges.
  • An user account with one of the following permissions:
    • Superuser
    • Standard Admin
    • Customer Support
  • VeloCloud Orchestrator and Edge version 3.3.1 or later.
  • The URL and credentials of the VeloCloud Orchestrator.
  • Open ports:
    • UDP 2055 between all Edges and the On-prem Collector.
    • TCP 443 between all On-prem Collector and VeloCloud hosted Orchestrator.
  • In the edge profile configuration of VeloCloud Orchestrator, use vRNI Collector’s IP address for NetFlow Collector IP and set the UDP port to 2055.
  • If your setup does not have a vCenter server, and you want to deploy your collector in a cloud environment, then you can deploy your collector in AWS. See, Setting up Network Insight Collector (AMI) in AWS for VMware SD-WAN.