ILMT is the gate to sub capacity pricing. Deployed wrong, it silently converts your estate to full capacity billing. Six steps done right.
ILMT decides whether IBM bills 16 cores or 200. This guide covers the six deployment steps, the four contractual requirements, and the quarterly cadence that keeps sub capacity eligibility alive.
ILMT is the contractual gate to sub capacity licensing, and sub capacity is routinely the difference between paying for 16 cores and paying for 200. The IBM sub capacity terms require an eligible tool deployed, configured, and reporting; without it, full physical capacity applies.
That makes ILMT a financial control, not a SAM hygiene item. A single uncovered VMware cluster can swing seven figures of PVU exposure.
The math is blunt. A 200 core vSphere cluster at 70 PVUs per core counts as 14,000 PVUs at full capacity, while the same WebSphere workload pinned to 16 virtual cores licenses 1,120 PVUs under sub capacity. ILMT is the only evidence IBM accepts that the smaller number is real.
Miss any one of the four and the discount has no contractual foundation. The old small estate escape hatch is also gone: IBM withdrew manual sub capacity counting as of May 1, 2023, per the sub capacity terms FAQ, so an approved tool is now the only path for almost every buyer.
ILMT is a four part stack: a server application, a DB2 or SQL Server database, scanners on every eligible host, and a VM Manager Tool that reads your hypervisors. Clear the prerequisites before the project starts, because the slowest item is never the software.
Small and mid size estates should take the all in one installer, which deploys the ILMT server with a bundled DB2 database at no additional license charge. Larger or segmented estates run ILMT on the BigFix platform with agents carrying the scan schedules.
Isolated zones such as DMZ hosts and validated systems use the disconnected scanner, with results moved by file transfer.
The buyer side point: the tool is free and the infrastructure is modest, but the eligibility it protects is routinely worth seven figures. Fund it accordingly.
A correct deployment is a six step sequence: server build, agent rollout, VM manager connections, catalog classification, report validation, and operational handover. Most failed estates skipped step three or six. The ILMT documentation covers mechanics; the sequence below covers survival.
Sequence beats speed. Estates that pass audits finished steps one to three inside the first month, then spent the remaining time on catalog quality and report validation; the 90 day window is a ceiling, not a target.
ILMT deployment failure modes and their cost
| Failure mode | Typical cause | Financial effect |
|---|---|---|
| Uncovered hosts | Agent rollout skipped acquisitions or DMZ | Full capacity PVU on those hosts |
| Missing VM manager link | vCenter credentials never provisioned | Sub capacity calculation invalid |
| Stale catalog | No quarterly catalog update | Bundled components billed standalone |
| Unreviewed reports | No named owner | Errors compound across audit window |
IBM fixes the data cadence: capacity scans every 30 minutes, software scans at least once per 30 days, and a signed report at least once per quarter. The ILMT scan frequency documentation sets weekly software scans as the default and monthly as the minimum.
The mechanics matter because sub capacity bills on peak virtual capacity within the reporting period. A host with no valid scan for a stretch cannot prove what it consumed, and IBM's default audit position is to price unproven periods at full physical capacity.
The same logic applies at deployment. The 90 day install window starts at the first eligible product deployment, not at the SAM team's convenience, and a late install leaves a permanently uncovered period that resurfaces in the audit data request two years later.
IBM minimum data cadence for sub capacity eligibility
| Data feed | Default | Minimum allowed | If it lapses |
|---|---|---|---|
| Capacity scan | Every 30 minutes | Every 30 minutes | Capacity peaks unproven |
| Software scan | Weekly | Once per 30 days | Gap period priced at full capacity |
| VM manager collection | Every 12 hours in central mode | Connection kept live | Physical capacity invisible; eligibility fails |
| Audit report | Quarterly | Quarterly, signed, retained two years | No defensible history at audit |
| ILMT version | Current release | Prompt upgrade per Passport Advantage | IBM can challenge tool validity |
The buyer side control is simple: alert when any eligible host's software scan age passes 21 days. That leaves a week of margin before the data becomes a gap an auditor can price.
Three failures dominate: agent gaps on edge estates, stale catalogs, and reports nobody reviews. In 18 of the 25 remediation projects behind this guide, the tool was installed and running; the operations around it had failed.
The pattern is consistent: deployments fail after go live, not during it. Fund the operating cadence like a financial control, because that is what it is.
Validation is a four step runbook: check scan health, reconcile coverage, sample audit the report, then sign and archive the same day. Run it quarterly at minimum, monthly in volatile estates.
Classification deserves its own pass. Review every newly discovered component and confirm bundled products map to their parent entitlements, because this is where the 10 to 25 percent PVU inflation hides.
Audit readiness is a quarterly cadence, not a deployment artifact. The estates that pass audits without drama review the report, the coverage KPI, and the catalog version every quarter, and they archive the signed report the same day.
Treat agent coverage below 98 percent as an incident. Every uncovered eligible host is a full capacity claim waiting for an audit letter.
Expect requests for the quarterly report archive, agent coverage proof, and catalog versions, mapped against the ILMT configuration documentation. The report history is the exhibit; the install is assumed.
The standard advice is that deploying ILMT is the finish line, and many SAM teams celebrate at go live. We disagree. In roughly 18 of the 25 ILMT remediation projects Morten Andersen ran in 2024 to 2025, the tool was installed and technically working; what failed was operations. Catalogs aged, acquisitions never entered scope, and reports sat ungenerated for quarters, which voided sub capacity eligibility exactly as if the tool were absent. The buyer side move is to fund the quarterly operating cadence with the same seriousness as the deployment project, because IBM audits test the report history, not the install date.
Source: Redress Compliance advisory engagement file, 2024 to 2025.
IBM does not audit whether you installed ILMT. It audits whether ILMT was telling the truth every quarter for the last two years.
IBM accepts exactly two third party tools for sub capacity in 2026: HCL BigFix Inventory and Flexera One with IBM Observability IT Asset Management, per the sub capacity licensing terms. Anything else, including general SAM suites, leaves the estate at full capacity.
Two qualifiers matter. ILMT Lite with the disconnected scanner is pre approved when fewer than 5,000 VMs or LPARs are in scope of virtualization capacity. And containerized IBM software under Container Licensing uses the IBM License Service instead, with its own snapshot retention duties.
| Tool or path | 2026 status | Best fit | Watch out |
|---|---|---|---|
| ILMT | Default, no charge | Most estates | Needs a funded quarterly cadence |
| HCL BigFix Inventory | Approved | Estates already on BigFix | Commercial license; identical reporting duties |
| Flexera One with IBM Observability ITAM | Approved | Flexera ITAM shops | Configuration must match IBM counting rules |
| ILMT Lite with disconnected scanner | Pre approved under 5,000 VMs or LPARs | Small or isolated estates | Manual package movement invites scan gaps |
| Manual counting | Retired May 1, 2023 | None | Full capacity applies without a tool |
| IBM License Service | Required for container licensing | OpenShift and Kubernetes workloads | Separate from ILMT; retain snapshots |
The buyer side rule: changing tools never changes obligations. The 90 day window, the scan cadence, and the quarterly signed report apply identically to every approved path, so pick the tool your operations team will actually run.
Pair this guide with the ILMT sub capacity guide, the wider IBM knowledge hub, or an estate review with the IBM advisory practice.
Yes, with narrow exceptions for very small estates and approved alternative tools. The sub capacity terms require an eligible tool deployed, configured, and generating retained quarterly reports; otherwise full capacity applies.
Within 90 days of deploying your first sub capacity eligible product under Passport Advantage. Late deployment risks full capacity assessment for the uncovered period.
Because sub capacity math compares virtual cores to physical capacity. Without vCenter or equivalent hypervisor visibility, ILMT cannot see physical capacity and the calculation, and your eligibility, fails.
Quarterly at minimum, with two years of reports retained. Generate, validate against a host sample, have the named owner sign off, and archive the same day.
We hold estates to 98 percent or better of eligible hosts. Every uncovered host is exposed to full capacity billing, so coverage gaps are incidents, not backlog items.
IBM can price the uncovered period at full physical capacity, counting all physical cores instead of assigned virtual cores. The starting audit position is full capacity back billing plus support, which is negotiable but expensive leverage to concede.
Yes. IBM accepts HCL BigFix Inventory and Flexera One with IBM Observability IT Asset Management as approved sub capacity tools. The 90 day deadline, scan cadence, and quarterly signed report duties apply identically.
The tool itself is no charge for Passport Advantage customers, and the bundled DB2 database is free for ILMT use. Budget for modest server infrastructure and a slice of an operations role; the real cost is discipline, not licensing.
IBM's minimum software scan frequency is once per 30 days, with capacity scans every 30 minutes. A host whose last software scan is older than 30 days is a data gap that auditors can price at full capacity.
Partially. ILMT Lite with the disconnected scanner is pre approved when fewer than 5,000 VMs or LPARs are in scope, but the manual counting exception for small estates ended May 1, 2023.
The ILMT coverage checklist, report validation method, and the audit response sequence for estates that need sub capacity to hold.
Used across more than five hundred enterprise engagements. Independent. Buyer side. Built for procurement leaders running the next renewal cycle.