Sendense Documentation

Provider Operating Models

How standalone, MSP-managed, and CSP-provisioned Sendense deployments relate to SHA and SCA.

Documents Home

Concept

Provider Operating Models

How standalone, MSP-managed, and CSP-provisioned Sendense deployments relate to SHA and SCA.

ReadyCurrentprovidermspcspscasha

Deployment Shapes

Standalone customer SHA
A customer operates their own Sendense Hub Appliance and controls the workflows available through their GUI and RBAC model.
MSP-managed customer SHA
A customer SHA can be enrolled into an MSP's SCA for telemetry and delegated remote management. Enrollment may be customer-led or MSP-led depending on the relationship.
CSP-provisioned tenant SHA
A CSP provisions and manages tenant SHAs through provider automation, with tenant access defined by the CSP's service model.

Core Rule

Any action exposed in the SHA GUI is customer-operable, subject to RBAC, edition, readiness gates, and provider access controls.

SCA changes who may be allowed to act across customer or tenant environments. It does not replace SHA as the hub for protection, recovery, EBA, SNA, snagent, controller, reporting, and health workflows.

Standalone Customer SHA

In a standalone deployment, the customer operates SHA directly. Customer administrators run deployment, protection, recovery, maintenance, and update workflows where they are exposed in the GUI.

Partner or support assistance is optional help, not the default owner of normal GUI operations.

MSP-Managed Customer SHA

In an MSP-managed deployment, the customer SHA is connected to an MSP SCA for telemetry and access-controlled remote operation. Enrollment into SCA can be customer-led or MSP-led depending on the relationship.

MSP actions are delegated actions that the customer has allowed under the agreed operating model. Customer-visible SHA GUI actions remain customer-operable unless the customer has chosen to delegate them.

CSP-Provisioned Tenant SHA

In a CSP-provisioned deployment, the CSP uses SCA as the provider platform layer for billing, API access, provisioning, and license management. Tenant SHA capacity is CSP-provisioned and enrolled through provider automation.

Tenant access is provider-defined: direct SHA GUI access, selected SHA capabilities, API access, or workflows exposed only through the provider's own platform. The CSP owns tenant provisioning and decides what operational surface each tenant receives.

What It Is Not

  • A provider operating model is not a component. It describes who may operate SHA and through what surface.
  • SCA is not a replacement for SHA.
  • MSP delegated access is not the same as CSP provider-controlled tenancy.
  • API-only tenant access is not a product limitation. It is an access model chosen by the CSP.

Related Docs