Try our new research platform with insights from 80,000+ expert users

ArcSight Logger vs VMware Aria Operations for Logs comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ArcSight Logger
Ranking in Log Management
31st
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
31
Ranking in other categories
No ranking in other categories
VMware Aria Operations for ...
Ranking in Log Management
9th
Average Rating
8.2
Reviews Sentiment
6.2
Number of Reviews
27
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Log Management category, the mindshare of ArcSight Logger is 0.8%, down from 1.2% compared to the previous year. The mindshare of VMware Aria Operations for Logs is 1.2%, down from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Geraldo Freitas - PeerSpot reviewer
Enhances our security incident investigation but not good for correlation
Investigation is good when you know what you want to search for in Logger. The most difficult part is parsing the logs and configuring the parsers. For investigation, it's good. For correlation, it's not good. We use Sentinel, and Sentinel has pre-built use cases that are much easier to configure. So, it enhances our security incident investigation. We have inbound integration, but configuring the parsers is sometimes very difficult. We only have two use cases where we have a correlation set up. We send the information to Check Point to block IP addresses when we see a lot of blocks from the same source. We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist. So, it offers the ease of integration.
LarsChristensen - PeerSpot reviewer
Efficient troubleshooting with precise log filtering and an easy setup
The tool could benefit from improved filter settings and dashboarding. While there are dashboards available, they are often created by community members and may not work after updates. It would be beneficial to have a roadmap for these dashboards to ensure consistent functionality. It would also be advantageous if the tool could process even large amounts of data faster, though this may be more related to data movement challenges rather than the software itself.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"It's a robust, mature product and you can do some really complex operations and analytics."
"In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"We haven't had any crashes or bugs. It is stable."
"It provides in-depth information on business activities once we log into the system."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"ArcSight provides the basic information that we want."
"The ability to narrow into a specific time to filter heavy hitters and anomalies is extremely valuable."
"The solution's simplicity, flexibility, and extensibility are valuable features as we can integrate everything in vRealize."
"One of the things I like about it is its interface. When it comes to generating reports on VMs and stuff, it's very quick. This is very handy for the technical team, who need to generate reports quickly. So that's really good."
"It is a very useful tool if you have a VMware environment."
"It gives the customer a quick overview, so they don't have to dig. There's a clear dashboard with many sensors in a single space. He gets a helicopter view of his environment, but he can investigate further if there are serious issues. It's pretty user-friendly."
"We use the on-premises version of this solution for log analysis and to find details about certain issues."
"I rate the overall solution a ten out of ten."
"The most valuable features are log centralization and long-term retention for logs."
 

Cons

"The initial setup was a little bit complex."
"The solution could be improved in maintenance settings."
"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"The solution should make it possible to integrate network analysis features."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"I would like to see better scheduling in the next release of this solution."
"It would be better if the product is cheaper."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"They should improve their web interface to make it more user-friendly."
"The solution should be more user-friendly. The user interface and dashboard could be simplified."
"The solution isn't user-friendly for admins."
"Log Insight should be better at dealing with audits and security logs. We use another product called QRadar for that."
"The dashboard needs to be improved because this is what I need to monitor my infrastructure."
"What I'd like to improve in vRealize Log Insight is the licensing model. VMware provides vRealize Log Insight along with the VMware Cloud Foundation, but customers who would like to go for the native VMware would have to procure vRealize Log Insight separately. Today, vRealize Log Insight is offered on two different licenses, one is based on the number of VMs, and the other is based on the number of physical codes on the machine. If VMware can provide a bundle offer for customers who procure more than ten licenses, where you can have an option to run, for example, three hundred machines on vRealize Log Insight with no extra cost, this would encourage more people to adopt the solution. What I'd like to see in the next release of vRealize Log Insight is for a cloud option to be available, which would be a pay-as-you-go licensing model that would allow me to pick and choose what I'll monitor. For example, I have one thousand and three hundred critical servers, and the seven hundred servers for basic development, I don't want to monitor on vRealize Log Insight today, so I should be able to pick what I need to monitor on the solution and only pay for that specific instance. If VMware can apply these changes, it would help VMware customers to procure more or adopt more of vRealize Log Insight even in smaller projects."
"The tool does not provide a centralized pane for monitoring."
"I don't use the solution on a day to day basis, so I'm not sure what specifically can be improved."
 

Pricing and Cost Advice

"It's not cheap at all as it's a big product and has been in the market for quite some time now."
"ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition."
"ArcSight is an expensive solution."
"The pricing is quite harsh."
"Pricing is reasonable compared to similar tools on the market. They offer perpetual licenses."
"We have a lifetime license, so we don't pay a monthly fee."
"I rate the product’s pricing a seven out of ten, where one is inexpensive, and ten is expensive."
"I would rate the product a seven out of ten since it's an enterprise product."
"It is not cheap. But it is worth it."
"I think it is a reasonably priced product."
"The licensing cost for vRealize Log Insight is a little higher, so in terms of cost, it all depends upon what kind of environment you have. If you have a complete virtualized environment, or at least you're using a ninety-five percent virtualized environment, then vRealize Log Insight will play a very good role because it is a VMware component, so it has very tight integration with other VMware components and systems. This means you don't have to procure any other monitoring and management tool, and you don't need a separate automation tool. vRealize Log Insight will have an upper hand if your environment is purely virtualized on VMware. If you're using a mix of physical and virtual components, for example, a 50:50 ratio, then you need to have a third-party component to manage overall monitoring."
"The license cost for any other monitoring tool is too high compared to this product."
"The product's price is reasonable, but when it comes to SQL licensing, it's a bit expensive."
"The pricing has been updated recently."
"Pricing is good because it is part of the suite package. It comes in a bundle for us."
"Pricing could always be lower. If it were free, I would be more satisfied."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Computer Software Company
16%
Government
8%
Manufacturing Company
6%
Computer Software Company
15%
Government
12%
Financial Services Firm
11%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about ArcSight Logger?
We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist.
What is your experience regarding pricing and costs for ArcSight Logger?
The pricing isn't the problem. We have a lifetime license, so we don't pay a monthly fee.
What needs improvement with ArcSight Logger?
The solution has room for improvement. We're currently upgrading to the newer version, where they have something like Kafka, a hub for all solutions feeding information into Logger. However, I thin...
What do you like most about vRealize Log Insight?
The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting.
What is your experience regarding pricing and costs for vRealize Log Insight?
Pricing for VMware Aria Operations for Logs can depend on several variables, including the workload and the customer. The price has risen significantly, and for smaller customers, the cost can be u...
What needs improvement with vRealize Log Insight?
It is not the main tool in my stack. I can do similar tasks using solutions like Grafana ( /products/grafana-reviews ). My focus is mainly on finding alternatives for hypervisor and automation purp...
 

Also Known As

Micro Focus Arcsight Logger, HPE Arcsight Logger
vRealize Log Insight
 

Overview

 

Sample Customers

China Merchants Bank, Bank AlJazira, Banca Intesa
Wildlands Adventure Zoo, Medic Mobile, IBM, Seventy Seven Energy, Baystate Health, Osis, Oxford University, Columbia University, Siemens, Cardinal Health, Ashdod Port, Vasakronan, Sydney Adventist Hospital, University of Derby
Find out what your peers are saying about ArcSight Logger vs. VMware Aria Operations for Logs and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.