Sentinel Reviews

Name: Sentinel
Brand: OpenText
Rating: 3.8 (17 reviews)

Vendor: OpenText

3.8 out of 5

17 reviews
82% willing to recommend

Leave a review

What is Sentinel?

Sentinel is a robust platform offering seamless native integration, enhanced security through transactional data, and a user-friendly interface reminiscent of Microsoft Windows. Its capabilities in threat detection, monitoring, and business intelligence integration make it an attractive choice for organizations.

Get the Sentinel Buyer's Guide and find out what your peers are saying about Sentinel, CrowdStrike Falcon, Wazuh and more!

Sentinel is the #18 ranked solution in top Security Information and Event Management (SIEM) solutions. PeerSpot users give Sentinel an average rating of 7.6 out of 10. Sentinel is most commonly compared to CrowdStrike Falcon: Sentinel vs CrowdStrike Falcon. Sentinel is popular among the large enterprise segment, accounting for 48% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 10% of all views.

Helped 890,088 peers since 2012

Featured Sentinel reviews

Simon Johnston

Manager, Customer Success at Coltek Business Soltuions

I don't really have experience working with these solutions. I promote them for our clients, but I don't work with them. I can't share my experience with these tools as I make assumptions about that. For both Adlumin and CrowdStrike, both confirm that they're scalable and enterprise-ready and all those kinds of things. We haven't had any specific problem with either of those. We just have a preference for which one we would prefer. If somebody says they want to use a different one from the one that we prefer, then we have to find reasons why they aren't. But scalability is not one of the reasons that one is better over the other. I don't really have advice for people that are looking into using Sentinel; just do your research across what is available. On a scale of one to ten, I rate Sentinel a seven.

Read full review

JaideepSingh

Technology Specialist at a government with 51-200 employees

Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.

Read full review

reviewer2543502

Security Engineer at a financial services firm with 10,001+ employees

If I compare it with traditional SIEMs, it is much better because traditional SIEMs have their limitations and are more graphical user interface-based. The ability to do advanced hunting queries allows us to extract data in a more efficient way based on behavior in the organization or client network. The scope of querying, log retention, and investigating facts is much better with Sentinel.

Read full review

Sentinel mindshare

As of April 2026, the mindshare of Sentinel in the Security Information and Event Management (SIEM) category stands at 2.9%, down from 3.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Security Information and Event Management (SIEM) Mindshare Distribution
Product	Mindshare (%)
Sentinel	2.9%
Splunk Enterprise Security	7.0%
IBM Security QRadar	5.2%
Other	84.9%

Security Information and Event Management (SIEM)

PeerResearch reports based on Sentinel reviews

Type	Title	Date
Category	Security Information and Event Management (SIEM)	Apr 26, 2026	Download
Product	Reviews, tips, and advice from real users	Apr 26, 2026	Download
Comparison	Sentinel vs Splunk Enterprise Security	Apr 26, 2026	Download
Comparison	Sentinel vs Wazuh	Apr 26, 2026	Download
Comparison	Sentinel vs IBM Security QRadar	Apr 26, 2026	Download

Valuable Features

Sentinel users value its Correlation Engine for policy rule generation, business intelligence for tracking activities, streamlined integration, and automation features. Its scalability, intuitive web interface, and threat visibility enhance security operations. Advanced querying supports tailored responses to threats. Anomaly dashboards facilitate zero-day attack identification, while email alerts improve monitoring efficiency. The user-friendly GUI and native integration promote ease of use. Sentinel ensures smooth connections, leveraging cloud-based capabilities to enhance threat detection.

"One of the most valuable features is the business intelligence engine; it's very important because it keeps track of everything that's happening and alerts us if something is different than expected."
"Transactional user information improves security, prevents fraud, and promotes best practices."
"The most valuable feature is the flexible log for identifying security threats inside an application."

Room for Improvement

Sentinel requires enhancements in its Correlation Engine, device support, and agent development flexibility. Users find the Java desktop app and WMI integration cumbersome, preferring full web-based management. Cloud connectivity needs expansion beyond Microsoft, Google, and Amazon. The platform's user interface and dashboards are criticized for lacking simplicity and flexibility. Extensive Unix scripting skills are needed, and documentation on security aspects is insufficient. Its integration with various cloud systems and customization options also demand improvement.

"This product's connection to certain types of cloud systems could be improved."
"Documentation for security aspects could be improved. It is difficult to find clear information about encryption or risks that are addressed."
"The dashboard and customer view should be improved."

ROI

Sentinel ensures ROI by monitoring user behavior to forestall malicious activities, reducing extra security expenses. Integration features contribute to financial benefits. Clients generally experience favorable financial outcomes, frequently within a lease timeframe, often under three years. Calculating financial gains from antivirus services remains challenging since potential losses, if absent, aren't quantifiable.

Pricing

Sentinel is described as a subscription-based solution with pricing perceived as moderate to expensive, most suitable for large organizations. Licensing offers flexibility, occasionally providing discounts for long-term partners. Sentinel typically requires a support contract with NetIQ for maintenance, with upgrades available annually. Pricing is aligned with competitors, yet challenges arise with currency exchange for some users. Additional packages, like Sentinel Rapid Deployment, cater to specific needs but entail separate costs.

"Sentinel is moderately priced."
"Sentinel is a subscription-based solution."
"Sentinel's slightly on the expensive side."

Popular Use Cases

Sentinel is used for log collection, filtering, and security management. Its primary use includes investigating suspicious activities, such as unauthorized access or unusual behaviors, by integrating with systems like Active Directory. Users appreciate its simple interface and its role in monitoring security events and managing alarms. It serves as a hub for IT and security teams and supports integration with other tools, offering enhanced threat detection capabilities and advanced query modifications.

Service and Support

Sentinel customer service is generally well-received, although there are mixed feelings about support. Some appreciate the human touch and knowledgeable engineers, while others face challenges in obtaining timely help. Support staff's ability varies, with backend support seen as more effective. High priority cases receive quick attention, but less urgent issues can take longer. Access to a dedicated engineer with a support contract is beneficial. Experiences suggest inconsistent service levels across inquiries.

Deployment

Sentinel's initial setup experience varied among users. Some found it complex due to network variables and custom integrations, especially with Azure architecture, while others described it as straightforward or easy, particularly those familiar with Linux. Duration for deployment ranged from minutes to a few months, depending on familiarity and complexity. Virtual appliances and guided processes facilitated setup for some, and team sizes for management varied. Proper guidance made basic integrations simpler with well-known devices.

Scalability

Many users report Sentinel as highly scalable, especially when cloud-based and integrated with Identity Manager or User Application Portal. It scales efficiently up to 24,000 events per second; beyond that level, additional technologies like Hadoop can enhance scalability. Some face challenges due to technical expertise or specific requirements, but scalability is often rated positively. Enterprise businesses benefit from it, especially for large-scale operations. Due to pricing dynamics, it's popular among diverse sectors.

Stability

Sentinel is noted for being stable and reliable, with several users highlighting its strong performance and minimal downtime. Some mention needing more RAM, particularly with Java issues, and concerns over network changes requiring restarts. There are occasional regional outages related to updates, but users find the system robust. Many rate its stability highly, citing support for high event volumes without facing significant issues. Despite a few network-related challenges, Sentinel maintains a positive reputation for stability.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Sentinel Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	3
Large Enterprise	4

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	122
Midsize Enterprise	82
Large Enterprise	190

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

10%

Computer Software Company

Manufacturing Company

Comms Service Provider

Government

Retailer

Outsourcing Company

Healthcare Company

Performing Arts

University

Insurance Company

Media Company

Educational Organization

Hospitality Company

Construction Company

Wholesaler/Distributor

Energy/Utilities Company

Real Estate/Law Firm

Consumer Goods Company

Transportation Company

Non Profit

Marketing Services Firm

Recreational Facilities/Services Company

Legal Firm

Non Tech Company

Logistics Company

Aerospace/Defense Firm

Renewables & Environment Company

Security Firm

Compare Sentinel with alternative products

Learn more about Sentinel

Sentinel simplifies security management with its advanced features, including the Kusto Query Language and automation abilities that reduce the complexity of coding tasks. The platform's correlation engine allows for efficient rule generation, while its threat visibility and intelligence features offer preparation against risks. Advanced hunting queries, anomaly dashboards, and scalability options enhance its utility. Users appreciate its seamless connections with Microsoft tools and ability to improve threat detection through cloud and business intelligence integration. However, enhancements could improve documentation on security aspects, simplify dashboards, and optimize drag-and-drop features. There are suggestions for better device integration, a shift to web interfaces, and improved customization options, although some users face challenges with Unix scripting.

What are the most important features of Sentinel?

Native Integration: Offers seamless connections with Microsoft tools.
Enhanced Security: Utilizes transactional data for better protection.
User-Friendly Interface: Features a GUI similar to Microsoft Windows.
Automation Capabilities: Simplifies coding tasks with Kusto Query Language.
Advanced Threat Visibility: Strengthens risk preparation with intelligence features.

What benefits or ROI should users consider in reviews?

Improved Security Monitoring: Provides proactive threat detection.
Increased Efficiency: Offers automation, reducing manual efforts.
Scalability: Supports growth with adaptable features.
Integration Benefits: Ensures seamless connection with existing systems.

Sentinel finds application across sectors for logging, security event monitoring, and integration with tools like Microsoft Defender for Endpoint. Users from industries such as government and academic institutions leverage its advanced SQL query support for customized responses, enhancing security measures with AI capabilities in diverse environments.

Sentinel was previously known as NetIQ Sentinel, Novell SIEM.

Sentinel customers

Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast

Product Categories

Security Information and Event Management (SIEM)

Popular Comparisons

CrowdStrike Falcon vs Sentinel

Wazuh vs Sentinel

Splunk Enterprise Security vs Sentinel

IBM Security QRadar vs Sentinel

Microsoft Sentinel vs Sentinel

Elastic Security vs Sentinel

LogRhythm SIEM vs Sentinel

Cortex XSIAM vs Sentinel

Rapid7 InsightIDR vs Sentinel

Fortinet FortiSIEM vs Sentinel

Exabeam vs Sentinel

Coralogix vs Sentinel

Anomali vs Sentinel

USM Anywhere vs Sentinel

Stellar Cyber Open XDR vs Sentinel

See all alternatives

Sentinel Reviews Summary
Author info	Rating	Review Summary
Manager, Customer Success at Coltek Business Soltuions	3.5	I've used Sentinel for five to six years as our go-to antivirus. It's simple to use, stable, and integrates well. Pricing could improve, but overall it's reliable and scalable, earning it a solid seven out of ten.
Technology Specialist at a government with 51-200 employees	4.5	I deployed Sentinel for a government department to collect and analyze logs, enhancing security operations. The threat intelligence and alert setup were valuable, but improvements in reporting and dashboard analytics would be beneficial. We used Microsoft Azure for deployment.
Security Engineer at a financial services firm with 10,001+ employees	4.0	In our SOC operations, Sentinel offers comprehensive threat detection when used with Microsoft Defender, allowing advanced hunting and tailored SQL queries. It faces integration issues with certain devices and experiences regional outages, but outperforms previous solutions like RSA and ArcSight.
Service Provider at a comms service provider with 10,001+ employees	4.5	We use Sentinel to efficiently manage security events, enjoying its smart analysis and seamless Microsoft integration, though more customization and mixed deployment options would help. Clients experience ROI within three years, but flexibility and hosting options need improvement.
Principal Solution Architect at a comms service provider with 51-200 employees	4.0	I use Sentinel to monitor integration processes, finding it simple yet outdated and not user-friendly. Despite its age, the product offers ROI through integration capabilities, though improvements are needed for better usability in complex environments.
Senior Specialist: Solution Architecture at a tech services company with 501-1,000 employees	4.0	I find its native integration and user behavior tracking valuable for security and fraud prevention. It's stable and scalable. However, I desire better security documentation, outsourced authorization, and a unified user interface.
Compliancy, Security & Identity consultant at TMD informatisering BV	4.5	I find NetIQ Sentinel very valuable for its business intelligence engine and broad connectivity to logging systems. It's reliable and easy to set up. However, I think its integration with diverse cloud systems needs improvement.
CEO at ITCORE	5.0	I find Sentinel excellent, especially its flexible log for security threats. Setup, stability, and support are great. Improvements are needed for the dashboard and internal monitoring, but I rate it 10/10.

Title	Rating	Mindshare	Recommending
CrowdStrike Falcon	4.3	3.3%	97%	141 interviews Add to research
Wazuh	3.7	5.1%	81%	50 interviews Add to research

Sentinel Reviews

What is Sentinel?

Featured Sentinel reviews

Sentinel mindshare

PeerResearch reports based on Sentinel reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare Sentinel with alternative products

Learn more about Sentinel

Sentinel customers

Related questions

Product Categories

Popular Comparisons