How it Works - AlienVault USM Appliance

How it Works

Get Complete, Simple, & Affordable Security with USM Appliance


AlienVault USM Appliance provides the essential security capabilities in an all-in-one platform to ensure that resource-constrained organizations can effectively defend themselves against today’s advanced and continuously evolving threats.

ONLINE DEMO ENVIRONMENT:

Take a Test Drive of USM Appliance Now

explore the online demo

Detect Threats Within Minutes

As soon as AlienVault® USM Appliance™ is installed within your network, it starts collecting data. Moments later, you’ll start to see important information about devices, applications, user activity, and network traffic.

AlienVault’s USM Appliance is composed of a modular, scalable, three-tier architecture. There are three core components: a Sensor, a Server, and a Logger. You can deploy them as stand-alone products or integrated in an All-in-One device.

USM Appliance Sensor

Deployed throughout your network to collect logs and provide the five essential security capabilities you need for complete visibility.

USM Appliance Logger

Securely archives raw event log data for long-term storage, investigations, and compliance mandates.

USM Appliance Server

Aggregates and correlates information gathered by the Sensors, and provides single pane-of-glass management, reporting, and administration.

USM Appliance All-in-One

Combines a Sensor, Server, and Logger components into a single appliance to deliver all USM Appliance functionality in a single device.

Start Detecting Threats in 5 Easy Steps

Step One: Connect to the Network

Install the USM Appliance (virtual or hardware) in your environment

Step Two: Scan Your Network

Configure the USM Appliance interfaces & start monitoring assets and network traffic

Step Three: Monitor Servers & Networks

Be alerted to known threats and malicious behavior

Step Four: Collect Logs

Capture behavioral baselines and spot anomalies

Step Five: Detect & Respond To Threats

Identify threats, investigate incidents, and respond

Extend Detection Capability To Your Existing Applications

In addition to the built-in asset discovery, vulnerability assessment, intrusion detection, and behavioral monitoring controls, USM Appliance also includes hundreds of Plugins available for you to integrate data from the existing applications, systems, and devices on your network. AlienVault partners with leading security and networking vendors to extend the effectiveness of your USM Appliance platform to detect, prioritize, and respond to threats.

The AlienVault USM Appliance Plugin library provides source-optimized data collection for a complete range of technologies, making it easy for you to get complete visibility into your entire network.

See the most recent list of plugins for the USM Appliance platform. AlienVault will build a plugin for most commercially available products at no additional charge, so if you don’t see the device on this list, submit a request and we will build it for you. Read the Plugin Request KB Article and see how to request yours, now!

Virtual Machine Requirements

USM Appliance All-in-One
USM Appliance Standard

All Models

Remote Sensor

Server

Logger

Sensor

total cores

USM APPLIANCE ALL-IN-ONE:

8

4

USM APPLIANCE STANDARD:

8

ram (gb)

USM APPLIANCE ALL-IN-ONE:

16

8

USM APPLIANCE STANDARD:

24

storage (tb)
compressed / uncompressed

USM APPLIANCE ALL-IN-ONE:

5.0/1.0

USM APPLIANCE STANDARD:

6.0/1.2

9.0/1.8

6.0/1.2

Virtualization environment

USM APPLIANCE ALL-IN-ONE:

VMware ESXi 5.0+
Microsoft Hyper-V v3.0+

USM APPLIANCE STANDARD:

VMware ESXi 5.0+
Microsoft Hyper-V v3.0+

Take your Security to a New Level with AlienVault USM Appliance

With five essential security capabilities, USM Appliance delivers comprehensive security for organizations that need a powerful on-premises solution. Experience advanced threat detection and response today!

Watch a Demo ›
GET PRICE FREE TRIAL CHAT