After you review the requirements and make sure that your Microsoft Azure environment is configured as needed, you can deploy the USM Anywhere Sensor for Azure. AT&T Cybersecurity provides the virtual machine (VM) template for the sensor and makes it available through the Microsoft Azure Marketplace for easy deployment.

To deploy a USM Anywhere Sensor from the Azure Marketplace

1. Go to the USM Anywhere Sensor Downloads page and click the icon of your specific sensor.

   If you are not already logged in to the Azure console, this link launches the Microsoft Azure Login page. Provide your Azure account credentials (username and password) and click Sign in.

2. On the page, review the details of the license and click Create.

   This takes you to the Create a virtual machine page, which guides you through the steps for deploying the USM Anywhere Sensor VM.

   

3. On the Basics tab, specify the required fields for the VM:

   • Subscription: Select the subscription into which the USM Anywhere Sensor should be installed.
   • Resource Group: Indicate whether you want to install the USM Anywhere Sensor into an existing resource group or into a new resource group. If new, enter a unique name.
   • Virtual machine name: Enter the name you want to use for the USM Anywhere Sensor VM.
   • Region: Select the region you want to deploy the USM Anywhere Sensor VM.
   • Image: This field is set to Unified Security Management (USM) Anywhere.
   • Size: This field is set to Azure Standard D2 v2.
   • Authentication type: Set this option to specify an SSH public key or a password for SSH Program to securely log into another computer over a network, execute commands in a remote machine, and move files from one machine to another through Secure Copy (SCP). access.

   • Username: Enter a username.

     Important: AT&T Cybersecurity recommends using sysadmin as the username. If you use a different name, you will need to "sudo up" to access the sensor console. See Checking Connectivity to the Remote Server for more information.

   

4. Click Next : Disks.
5. On the Disks tab, select Standard SSD as the disk type.
6. Click Next : Networking.

7. On the Networking tab, select the virtual network or subnet upon which the USM Anywhere Sensor VM should be installed. Keep the other defaults.

   Important: Make sure you install the USM Anywhere Sensor in the network that has sufficient connectivity to the assets that you want to monitor.

8. Click Review + create to keep the defaults on the remaining tabs.
9. On the Review + create tab, review your specifications and the cost summary.

10. Click Create.

    This starts the deployment of the USM Anywhere Sensor, which can take up to six minutes.

11. After deployment finishes, click Go to resource or go to the overview page of the VM and locate its public IP address.

    

12. Paste the IP address into your browser to launch the USM Anywhere Sensor Setup page.

    Important: This link requires that inbound port 80 is open for the sensor VM, which is not a default network setting on Azure. See Sensor Ports and Connectivity for more information.

Next...

Connect the Azure Sensor to USM Anywhere