The situation.
The client is a Fortune 500 industrial manufacturer with 14 plant sites across North America, Europe, and Asia-Pacific. Total VMware vSphere estate at the time of the audit letter was 11,400 cores across 740 hosts, with a mixture of vSphere Standard, vSphere Enterprise Plus, and a small VCF footprint introduced through a 2025 pilot. The estate had grown through three corporate acquisitions over the prior eight years, two of which had inherited their own VMware entitlements through the original M&A documents.
Broadcom's audit letter arrived in October, scoped to "all entities controlled, directly or indirectly, by the parent" and to the trailing 36 months. The opening assertion, delivered six weeks later by Broadcom's deployed audit firm, was $14.2 million. The bulk of the assertion came from three sources: per-core minimum applied retroactively to every host, edition uplift across hosts where vCenter showed any Enterprise Plus feature enabled, and a sub-capacity reconstruction that ignored the client's documented VM-level CPU pinning.
The complication.
The client had a competent internal IT asset management team but had never managed a formal Broadcom audit. Two of the three acquisitions had been onboarded onto the parent's master vSphere agreement under the affiliate clause, but the third — acquired only fourteen months before the audit letter — was still operating under its pre-acquisition VMware EA with materially different per-CPU entitlements. Broadcom's auditor had rolled all three under a single per-core reconstruction.
Worse, the discovery data delivered by the auditor was based on a vCenter inventory pull that included 86 decommissioned hosts that had been powered down for 7-18 months but had not been removed from vCenter because of an unrelated vCenter upgrade freeze. Those stale hosts alone accounted for roughly $3.4 million of the opening claim.
The response.
Within 48 hours of engagement, the defence team produced a scope-limitation response challenging four elements of the audit notice. The newly acquired entity was carved out of the audit period for the months prior to its acquisition date, on the grounds that the parent's audit clause did not retroactively absorb pre-acquisition entitlements. That single argument removed approximately $2.6 million from the assertion.
The stale-inventory defence was the second major lever. Using change-management tickets, decommissioning records, and storage system snapshots, the team demonstrated that 86 hosts had been powered off prior to the audit period and were retained in vCenter only for inventory hygiene reasons. Broadcom's auditor accepted the removal of 71 of those hosts after two rounds of evidence review.
The edition reconciliation was the most technically intensive piece of the defence. Broadcom had applied an Enterprise Plus edition assumption to every host where any Enterprise Plus feature appeared enabled in vCenter, including features that were default-on in the underlying ESXi build but had never been configured or used in production. The team built a feature-utilisation report from vRealize Operations data showing actual feature consumption, and successfully reduced the edition uplift across approximately 4,800 cores from Enterprise Plus to Standard.
The final settlement was reached after a fourth round of formal counter-evidence. The client paid $2.1 million in true-up and converted the three-year forward subscription at a 38% discount to Broadcom's quoted list, in exchange for a non-amendable settlement-and-release of the audit period.
The outcome.
The documented saving against Broadcom's opening claim is $12.1 million. The forward-pricing concession, valued over the three-year term, adds a further $4.9 million in avoided spend. The client also recovered approximately 11 weeks of senior IT and finance time that had been allocated to the audit response and was redirected back into the planned VCF migration analysis.
The internal post-mortem identified three controls that the client did not have in place before the audit and now does: a quarterly inventory hygiene review of vCenter against the source-of-truth CMDB, a documented edition-feature mapping with per-host attestation, and a standing audit-readiness binder maintained by the IT asset management lead.
