So your vendors supplies you with a license file that means you can only use your legal entitlement hence you are always compliant, right?
Have you ever reviewed the license file against you entitlement records?
Experience has shown errors can exist in the license file which can mean you are not benefiting from your full investment or you are able use more licenses than purchased.
Technical teams tend to receive the license files in organisations and can deploy without knowledge of what has been purchased.
Both of these are business risks and with the latter being your responsibility to check, could have financial implications in a compliance engagement.
When did you last check your license files?