USM Anywhere™

USM Anywhere Deployment Types and Scalability

USM Anywhere scales with your business needs. Using the following deployment types you can add or remove sensors, bring on additional cloud servicesA cloud service is any resource that is provided over the Internet. The most common cloud service resources are Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS)., and scale central log management as your business needs change.


USM Anywhere provides VMware ESXi and Microsoft Hyper‑V sensors to support an on-premises (private cloud) deployment.

VMware ESXi features:

  • ESXi API asset discovery
  • ESXi log monitoring and alerting
  • NIDS packet inspection
  • Network asset discovery

Microsoft Hyper-V features:

  • Network-based intrusion detection system (NIDS) packet inspection
  • Network asset discovery

Cloud and Multi-Cloud

USM Anywhere provides Amazon Web Services (AWS) Microsoft Azure, and Google Cloud Platform (GCP) sensors to support deployment on a public cloud. If your organization deploys resources into both of these cloud services, you can use both sensors to monitor your assets.

Amazon Web Services features:
  • AWS API asset discovery
  • CloudTrail monitoring and alerting
  • Amazon S3 access log monitoring and alerting
  • ELB access log monitoring and alerting
  • AWS infrastructure assessment
  • Network-based intrusion detection system (NIDS) packet inspection

Microsoft Azure features:

  • Azure API asset discovery
  • Azure Monitor REST API (formerly Insight Logs) monitoring and alerting
  • Azure infrastructure assessment
  • Azure security alerts
  • Azure Windows log locations

Google Cloud Platform features:

  • GCP API asset discovery
  • Cloud Pub/Sub monitoring and alerting
  • Audit logs
  • Stackdriver audit logs

Hybrid Cloud

A hybrid cloud deployment uses a combination of private (VMware vSphere, Hyper‑V) and public cloud (AWS, Azure, GCP) sensors.