Before you onboard with vRealize Network Insight Cloud you need to download data collectors and have certain information about your public and private cloud accounts available. Downloading data collectors is optional if you use only public cloud data sources.

Before You Onboard with vRealize Network Insight Cloud

To... You need...
Sign up for and log in to vRealize Network Insight Cloud
  • A VMware ID

    Set up a VMware account with your corporate email address at

  • Sign up for vRealize Network Insight Cloud trial service.
    • To request for the trial service, you must use the same email ID that you entered at the time of creating VMware ID.
    • Ensure that you are not opted-out of VMware marketing emails and check your junk folder for any email communications from VMware. If you don't receive any activation links within one or two days, contact to get the manual link from the Cloud services.
    • The VMware team can use the Cloud Services Lead Referral link to refer the vRealize Network Insight Cloud service to the users.
Deploy Collector and connect to Cloud Platform
Connect to VMware Cloud Services.
  • Open the HTTPS port 443 for outgoing traffic to the following domains on the platform:
    • *


    • *

    • *

  • Open the HTTPS port 443 for outgoing traffic to the following domains on the collector:
Add a vCenter server, NSX Manager, physical routers, switches or firewalls. The IP/FQDN and the credentials of the specific data source, such as a vCenter, NSX Manager, physical router, switch, or firewall. See, Adding a Data Source.
Add VMware Cloud on AWS
Add an AWS public cloud account.
Add an Azure public cloud account.
  • Azure Subscription details:
    • Tenant ID
    • Application ID
    • Application Secret Key
    • Subscription ID
  • Appropriate user permissions:
    • Microsoft.Resources/subscriptions/read
    • Microsoft.Compute/virtualMachines/read
    • Microsoft.Network/virtualNetworks/read

    • Microsoft.Network/networkSecurityGroups/read

    • Microsoft.Network/networkInterfaces/read

    • Microsoft.Network/applicationSecurityGroups/read

    • Microsoft.Storage/storageAccounts/read

    • Microsoft.Storage/storageAccounts/listkeys/action

    • Microsoft.Network/networkWatchers/queryFlowLogStatus/*

    • Microsoft.Network/networkWatchers/read

  • Enable NSG flow data collection. For more information, see
Add VMware SD-WAN
  • At least one vRealize Network Insight Cloud for SD-WAN license.
    Note: If you are running the vRealize Network Insight Cloud trial service, license is not needed for adding VeloCloud Orchestrator and you can add up to 15 edges.
  • An user account with one of the following permissions:
    • Superuser
    • Standard Admin
    • Customer Support
  • VeloCloud Orchestrator and Edge version 3.3.1 or later.
  • The URL and credentials of the VeloCloud Orchestrator.
  • Open ports:
    • UDP 2055 between all Edges and the On-prem Collector.
    • TCP 443 between all On-prem Collector and VeloCloud hosted Orchestrator.
  • In the edge profile configuration of VeloCloud Orchestrator, use vRNI Collector’s IP address for NetFlow Collector IP and set the UDP port to 2055.
  • If your setup does not have a vCenter server, and you want to deploy your collector in a cloud environment, then you can deploy your collector in AWS. See, Setting up Network Insight Collector (AMI) in AWS for VMware SD-WAN.