Try our new research platform with insights from 80,000+ expert users

ArcSight Logger vs Fortinet FortiAnalyzer comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024
 

Categories and Ranking

ArcSight Logger
Ranking in Log Management
28th
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
31
Ranking in other categories
No ranking in other categories
Fortinet FortiAnalyzer
Ranking in Log Management
8th
Average Rating
8.0
Reviews Sentiment
7.3
Number of Reviews
90
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2024, in the Log Management category, the mindshare of ArcSight Logger is 0.9%, down from 1.4% compared to the previous year. The mindshare of Fortinet FortiAnalyzer is 2.4%, down from 3.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Geraldo Freitas - PeerSpot reviewer
Enhances our security incident investigation but not good for correlation
Investigation is good when you know what you want to search for in Logger. The most difficult part is parsing the logs and configuring the parsers. For investigation, it's good. For correlation, it's not good. We use Sentinel, and Sentinel has pre-built use cases that are much easier to configure. So, it enhances our security incident investigation. We have inbound integration, but configuring the parsers is sometimes very difficult. We only have two use cases where we have a correlation set up. We send the information to Check Point to block IP addresses when we see a lot of blocks from the same source. We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist. So, it offers the ease of integration.
Kiarash Heydari - PeerSpot reviewer
We can automate event-based handling solutions, is stable, and is great for heavy traffic
The solution has very heavy features. Similar to when we get an app, usually, it's less than what we want. When we send all our logs over to the analyzer, it almost crashed on the first try. We must first get our logs tuned up and then set up the Fortinet FortiAnalyzer or it will crash. This is very complicated and heavy work for such a simple task, and it's a big issue for that app. The setup of the solution can be improved because it is currently complex. The cost of the solution is high and can be improved.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We haven't had any crashes or bugs. It is stable."
"It's an efficient solution."
"Our return on investment for implementing ArcSight Logger over the past 12 months has been positive."
"We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist."
"The machine learning is a good feature."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"The technical support team is good...It is a scalable solution."
"It provides in-depth information on business activities once we log into the system."
"The feature that I have found the most valuable is to be able to see everything in our network in a single task. A single menu and the graphical bar charts that it provides to give insights are very useful. It also gives very good metrics on bandwidth utilization, CPU, and device performance. It is very simple and easy to use as well."
"The event handling solution in the platform is very good and useful."
"It's easy to set up the product."
"The most valuable feature of the solution is reporting."
"The most valuable features of the solution are report generation and traffic logs."
"The solution is easy to use and easy to integrate."
"The most valuable feature of Fortinet FortiAnalyzer is the capturing of traffic for reports."
"The product can scale."
 

Cons

"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this."
"The product's connectors should work better and the user manuals need an update."
"The console in older versions is not user-friendly."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"The initial setup was a little bit complex."
"We find that the search and access functionality is quite slow."
"The platform is quite expensive. They should reduce its cost."
"The UI could use some improvement. It can be tough for a beginner to navigate because you don't know what to do even if you read the guide. I've talked to some users who said that they couldn't figure out what to do even after looking at the documentation."
"Their in-house technical support is extremely slow to respond. We have our own in-house team to manage issues so clients don't have to wait over two weeks for a response to issues."
"I think some improvement is required in real-time log monitoring, as sometimes it gets stuck or displays results after a delay."
"The deployment of Fortinet FortiAnalyzer is not complex, but integrating it with firewalls can take some time, depending on the number of firewalls."
"Though FortiAnalyzer has improved over the last few versions, the user interface still has room for improvement. It's a bit dated-looking."
"The technical support takes at least two days to reply on any ticket post raised on their website."
"From my point of view, at this time, the solution isn't lacking any features or functionalities."
"It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software. It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow."
 

Pricing and Cost Advice

"The pricing is quite harsh."
"Pricing is reasonable compared to similar tools on the market. They offer perpetual licenses."
"ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition."
"ArcSight is an expensive solution."
"I rate the product’s pricing a seven out of ten, where one is inexpensive, and ten is expensive."
"I would rate the product a seven out of ten since it's an enterprise product."
"It's not cheap at all as it's a big product and has been in the market for quite some time now."
"We have a lifetime license, so we don't pay a monthly fee."
"Its worth spending on FortiAnalyzer if you have multiple firewalls in your network."
"The cost of the license is high."
"I rate Fortinet FortiAnalyzer's pricing as five out of ten."
"I won't say the solution is too costly since it is available at a fair price."
"t varies depending on your needs. However, after-sales support is expensive."
"Fortinet FortiAnalyzer is quite an expensive tool."
"The number of licenses required directly corresponds with the number of devices connected."
"The price of Fortinet FortiAnalyzer is expensive."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
824,168 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Computer Software Company
15%
Government
10%
Manufacturing Company
6%
Computer Software Company
18%
Government
8%
Financial Services Firm
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about ArcSight Logger?
We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist.
What is your experience regarding pricing and costs for ArcSight Logger?
The pricing isn't the problem. We have a lifetime license, so we don't pay a monthly fee.
What needs improvement with ArcSight Logger?
The solution has room for improvement. We're currently upgrading to the newer version, where they have something like Kafka, a hub for all solutions feeding information into Logger. However, I thin...
What do you like most about Fortinet FortiAnalyzer?
The reporting features, which offer customization, real-time insights, and compliance support, are particularly noteworthy aspects.
What is your experience regarding pricing and costs for Fortinet FortiAnalyzer?
Fortinet FortiAnalyzer is quite an expensive tool. On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing an eight out of ten.
What needs improvement with Fortinet FortiAnalyzer?
Fortinet has a new bug every month, which needs to be improved.
 

Also Known As

Micro Focus Arcsight Logger, HPE Arcsight Logger
No data available
 

Learn More

 

Overview

 

Sample Customers

China Merchants Bank, Bank AlJazira, Banca Intesa
General Directorate of Information Technology
Find out what your peers are saying about ArcSight Logger vs. Fortinet FortiAnalyzer and other solutions. Updated: December 2024.
824,168 professionals have used our research since 2012.