USM Anywhere™

USM Anywhere Deployment Types and Scalability

USM Anywhere scales with your business needs. Using the following deployment types you can add or remove sensors, bring on additional cloud servicesA cloud service is any resource that is provided over the Internet. The most common cloud service resources are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS)., and scale central log management as your business needs change.

On-Premises Deployment

USM Anywhere provides VMware ESXi and Microsoft Hyper‑V Sensors to support an on-premises (private cloud) deployment. The following table summarizes the capabilities each type of deployment has:

VMware ESXi Microsoft Hyper-V
  • ESXi API asset discovery
  • ESXi log monitoring and alerting
  • Network-based intrusion detection system (NIDS) packet inspection
  • Network asset discovery
  • NIDS packet inspection
  • Network asset discovery

Cloud Deployment

USM Anywhere provides Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP) Sensors to support deployment on a public cloud.

AT&T Threat Detection and Response for Government (AT&T TDR for Gov), the Federal Risk and Authorization Management Program (FedRAMP)-authorized version of USM Anywhere, provides AWS, Azure, and GCP Sensors for the corresponding government cloud environment.

If your organization possesses resources in more than one cloud environments, you can deploy multiple sensors to monitor your assets. The following table summarizes the capabilities each type of deployment has:

AWS Azure GCP
  • AWS API asset discovery
  • AWS CloudTrail monitoring and alerting
  • Amazon Simple Storage Service (S3) access log monitoring and alerting
  • Elastic Load Balancing (ELB) access log monitoring and alerting
  • AWS infrastructure assessment
  • NIDS packet inspection
  • Azure API asset discovery
  • Azure Monitor Representational State Transfer (REST) API monitoring and alerting
  • Azure infrastructure assessment
  • Azure security alerts
  • Azure Microsoft Windows log locations
  • GCP API asset discovery
  • Cloud Pub/Sub monitoring and alerting
  • Audit logs
  • Stackdriver audit logs

Hybrid Cloud Deployment

A hybrid cloud deployment uses a combination of on-premises sensors (VMware, Hyper‑V, or both) and cloud sensors (AWS, Azure, or GCP).

Related Video Content

To view other related training videos, click here.