Try our new research platform with insights from 80,000+ expert users
Vishal  Rajavat - PeerSpot reviewer
Security Operations Center Analyst at a tech services company with 11-50 employees
Real User
Is easy to deploy but does not provide the conditions triggering the default reports
Pros and Cons
  • "It is easier to deploy than are other SIEMs, which is great. You can also get an overview of your environment, which is very handy."
  • "It's difficult to find which conditions have been applied to a report because they are provided by default by ManageEngine. However, with other SIEMs if you want to create a report, they provide details, like which conditions are triggering certain reports. This needs to be there in ManageEngine. It would be good to know which parameter has been applied to the report that is updating the system."

What is most valuable?

If the client does not have much knowledge regarding the SOC and cyber, then ManageEngine Log360 is good because you can get default reports.

It is easier to deploy than are other SIEMs, which is great. You can also get an overview of your environment, which is very handy.

What needs improvement?

It's difficult to find which conditions have been applied to a report because they are provided by default by ManageEngine. However, with other SIEMs if you want to create a report, they provide details, like which conditions are triggering certain reports. This needs to be there in ManageEngine. It would be good to know which parameter has been applied to the report that is updating the system.

The on-premises solution is very slow. When I move to another tab inside Log360 or in the SIEM, even if my system is running on 36 GB and with a high processor, it takes a lot of time to get into the alert page or the search page.

It takes a long time to load a single page. With other solutions, such as Splunk, Securonix, Wazuh, I can quickly grab the details within seconds, but with ManageEngine, it takes a lot of time.

For how long have I used the solution?

I've been using it for about four months.

What do I think about the scalability of the solution?

Compared to the scalability of other solutions, ManageEngine Log360's scalability is average.

Buyer's Guide
ManageEngine Log360
December 2024
Learn what your peers think about ManageEngine Log360. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.

How are customer service and support?

I have contacted technical support, and they solved a particular issue I was facing.

How was the initial setup?

The initial setup was easy and not complex. One person can handle the deployment.

What about the implementation team?

The deployment was done in-house.

What's my experience with pricing, setup cost, and licensing?

My client has a yearly license. I think the cost is not expensive compared to that of other SIEMs, given the service it is providing.

What other advice do I have?

Compared to other SIEMs, ManageEngine gives you the reports by default, which is good for small enterprises. Other solutions require one person to monitor user accounts. So, if your firm is not huge, then you can install ManageEngine Log360 to get password sharing and all other details.

I don't recommend using ManageEngine Log 360 in large organizations with more than 300 employees because they require certain compliance policies.

Overall, I would give this solution a six out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1474485 - PeerSpot reviewer
IT Security Admin at a university with 51-200 employees
Real User
A user-friendly log management and alerting solution
Pros and Cons
  • "The reports that you can run are really nice."
  • "It takes a little bit of time for Log360 to actually learn your environment."

What is most valuable?

The reports that you can run are really nice. They give you a lot of standard reports, which are nice, and the ability to run some custom ones, too. It takes some intuitive thinking to use it, but overall it's generally user-friendly; although it takes some digging to find the report you're looking for — it's almost overkill by data.

They have been doing some webinars for their solutions that run-down through it, and those are actually quite helpful. What they're doing for their improvement is kind of nice. They're sending out a series of webinars and then you can log on and ask live questions to the engineers as they're taking you through the use of the product. I am actually finding that quite helpful.

I've had to go leaps and bounds, wondering where stuff was at. There's a lot of tabs to go through. There's a lot of information presented within the system and knowing where to go in it is taking that process through, like, "You go here, you look there, you see this here. Can you think of a use case where you would want to know that?" They ask those questions and they get responses in their webinars and I think that's quite valuable.

They're giving you an hour to go through it and they're covering most of the material in 45 minutes. They need to actually have the product explained a little bit better than just, "Here you go." I think Varonis is a little bit more, "Hey, these are the alerts you have." And then on the right, it drives you right to where you need to go. With ManageEngine, you need to actually have an idea of what you want to do with the information you're looking at. It doesn't drive you in the direction — that's a con. Varonis kind of drives you down. On the right, it gives you the event list and you can go through it and drive to the data on the individual alert. ManageEngine gives you the alert and then you need to know where to go. 

What needs improvement?

Because I haven't been using it long enough, I am not too sure what's missing. I am comparing it with Varonis. The two seem to be lining up a lot, but Varonis is a little bit better as it gives me real-time alerts for the file shares. It takes a little bit of time for Log360 to actually learn your environment. I am dealing with a lot of alerts that aren't exactly valid because it just doesn't know yet.

The learning environment time is a little bit lengthy, but I think it's necessary. Since Varonis was already in the environment, I have no idea how long that took for it to learn that behavior. It's hard for me to compare the two in that aspect, but that's what I'm dealing with. That's what I would expect somebody else to be dealing with if they just got the product and they didn't have anything.

For how long have I used the solution?

I have been using ManageEngine Log360 for the past couple of months.

What other advice do I have?

Overall, on a scale from one to ten, I would give ManageEngine a rating of eight. It gives me a lot of information. Without the webinars, I'd give it a seven.

If they improved their alerting capabilities, I'd give them a higher rating. For example, "Click here to drive down, and here are the recommended steps for evaluating this alert." If it did that, I would give it a rating of ten. That's really the thing that they need. They need to drive their traffic on their platform as opposed to you having to guess where to go.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
ManageEngine Log360
December 2024
Learn what your peers think about ManageEngine Log360. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
Information Systems Manager at a non-profit with 1-10 employees
Real User
Consolidating and automatically sending reports has been useful in detecting network anomalies
Pros and Cons
  • "You can have all of the logs from servers to network and it gets sent out to the correct owners. This is very helpful."
  • "The graphical interface could be made easier to use when you are connecting to different network equipment."

What is our primary use case?

The primary use case of this solution to look for anomalies in our traffic to see if there is anything out of the ordinary. We don't have the resources to perform deep analysis. This solution provides us with a report of what is breaking the normal routine.

What is most valuable?

The most valuable features of this solution are the consolidating of the reports, being able to take action and send them to email several addresses. We can divide the graces to different co-workers. 

You can have all of the logs from servers to network and it gets sent out to the correct owners. This is very helpful. Previously, we had several different products provide different functions. For example, there would be one product for the servers, one for the network, and one for the firewall, whereas now we have everything consolidated.

What needs improvement?

The GUI needs to be improved. The graphical interface could be made easier to use when you are connecting to different network equipment. For the service it is straightforward. It is a hassle when you have different manufactures for switches and realtors. Simplifying the user interface would be very helpful.

There are issues with stability.

In the next release, I would suggest to include not only for enterprise-level switches but also small business-level switches in the system. Some of our offices experienced issues when they had both local switches. Also, simplify the interface when you are adding network equipment.

For how long have I used the solution?

I have been using this solution since July 2019.

We are using the most updated version, but I know that there will be another update available here in the spring.

What do I think about the stability of the solution?

We have experienced some issues when we do a re-start. 

The service can be delayed at its start. It varies from just a few minutes to 20 to 30 minutes. It does come on but it's very delayed at the start. It could be because I have all of my management products on the same server, and that could affect the starting time on it also. This has been the only buggy behavior that I have seen so far.

We have had a couple of issues when we run some cloud switches. At times, when you restart the server, you have to restart the switches afterward.

What do I think about the scalability of the solution?

This solution is scalable if you have the money for it.

How are customer service and technical support?

We currently have an open ticket in regards to the stability issues that we are experiencing, but I have only received a response that they are looking into it.

They are working on it, but they haven't had experience with the type of switch that we have. The one that we have is one of the smaller ones, and they only have the larger ones that they have been testing on.

The technical support is ok. They are quick in responding, within three to four hours you will receive a response.

Which solution did I use previously and why did I switch?

Previously we were using several small products, and some were in-house developed. We also had log forwarding (WEF) by Microsoft. It is an app that you can put on your server so that we can define what you want to forward to your email. The problem is that the report is not consolidated. It is per occurrence .

We also had the Cisco Firewall.

How was the initial setup?

The initial setup was rather straightforward.

What about the implementation team?

I did not use a vendor or an integrator. I did it myself.

What other advice do I have?

I purchased the Bulk Package which included the Log360 application. 

My advice would be to read the setup manual first and contact ManageEngine to assist you with any questions.

When we performed a test setup, we had some unknowns so we contacted ManageEngine. They got back to us with some advice on how to approach the issues. We were able to solve the issues on our end.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Relationship Manager at Snapnet Ltd
Real User
Top 5Leaderboard
An average solution that needs improvement in AL and ML capabilities
Pros and Cons
  • "ManageEngine Log360 is not difficult to deploy."
  • "The solution needs to improve hub storage. It should integrate AI and ML capabilities."

What needs improvement?

The solution needs to improve hub storage. It should integrate AI and ML capabilities. 

How was the initial setup?

ManageEngine Log360 is not difficult to deploy. 

What's my experience with pricing, setup cost, and licensing?

ManageEngine Log360 is expensive compared to other products. 

What other advice do I have?

I rate the product a five out of ten. It is only an average solution. 

Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
PeerSpot user
reviewer1624491 - PeerSpot reviewer
Director of Information Technology at a aerospace/defense firm with 501-1,000 employees
Real User
Helpful for compliance, but pricing and support can be better
Pros and Cons
  • "It basically helps us. We have to stay in compliance with certain issues with some of our customers. We have to have these types of tools in place for protecting our network and our data. We're in the aerospace industry, so we have a lot of defense contracts. So, all those guys will make sure that we're protecting their information, and it does a good job in that aspect."
  • "Their technical support should be improved."

What is our primary use case?

We basically utilize the tool to monitor security events based on a logon process such as bad passwords, lockout, etc.

We are using its latest version. We just upgraded it over the weekend.

What is most valuable?

It basically helps us. We have to stay in compliance with certain issues with some of our customers. We have to have these types of tools in place for protecting our network and our data. We're in the aerospace industry, so we have a lot of defense contracts. So, all those guys will make sure that we're protecting their information, and it does a good job in that aspect.

What needs improvement?

Its pricing should be better. Pricing is definitely a big factor for us. 

Their technical support should also be improved.

For how long have I used the solution?

I have been using this solution for about three years.

What do I think about the stability of the solution?

It is pretty stable. We haven't had any problems with the system. I don't use the tool as much as my team does, so I really couldn't get into the specifics. It does what we want in terms of staying in compliance. 

What do I think about the scalability of the solution?

I'm not too familiar with its scalability.

How are customer service and technical support?

I haven't had very good support from those guys.

Which solution did I use previously and why did I switch?

I haven't used any other products, but I've heard of products like LogRhythm and Splunk, and they seem to be supreme to this particular product that we have.

What's my experience with pricing, setup cost, and licensing?

Its pricing is definitely huge compared to some of the other SIEMs. Its price should be improved.

What other advice do I have?

I would rate ManageEngine Log360 a six out of 10. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
IT Manager at a tech vendor with 51-200 employees
Real User
Monitoring and good reporting of active directory activities
Pros and Cons
  • "The most valuable feature is that this solution is more secure than others, and there are more applications and features as well."
  • "We can log in as a local user, and it's fine, but when we login with an Active Directory user, we cannot."

What is our primary use case?

The primary use case of this solution is for reports, file editing, Active Directory editing, and security alerting.

We monitor the action in the Active Directory. For example, if someone changes the password in the Active Directory or the password has failed in the login, or there is a change in policy, then we know which administrator has made the changes. 

We can see all of the reports from the Active Directory and the file server in Log360. It's a good application because the reports are good and it helps to find errors in the system.

What is most valuable?

The most valuable feature is that this solution is more secure than others, and there are more applications and features as well.

Another good feature is that we can install an application on another server and get a report on a single dashboard.

What needs improvement?

There are issues when we log into Log360 from the computer that is hosting the system. It does not connect to the Active Directory. For example, Linux cannot connect or log into Log360 with the Active Directory user. We can log in as a local user, and it's fine, but when we login with an Active Directory user, we cannot.

For how long have I used the solution?

I have been using this solution for one year.

We are using the latest updated version.

What do I think about the stability of the solution?

This solution is stable, we have not had any crashes.

What do I think about the scalability of the solution?

This solution is scalable. We have 100 computers. Scaling up is not a problem.

We have four users in the IT department.

What's my experience with pricing, setup cost, and licensing?

There is a cost for each feature used.

What other advice do I have?

I would recommend this solution to others. I have a friend who has installed it.

I would rate this solution a ten out of ten, it's a very good application.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1464771 - PeerSpot reviewer
Senior IT Support Analyst at a healthcare company with 51-200 employees
Real User
Support is not responsive and the stability needs improvement
Pros and Cons
  • "It is nice to be able to monitor and to have notifications."
  • "The support needs improvement."

What is most valuable?

It is nice to be able to monitor and to have notifications.

What needs improvement?

Right now, we can't even get it to work. 

The support needs improvement.

The stability needs to be improved.

What do I think about the stability of the solution?

ManageEngine Log360 is not a stable solution. It needs improvement.

How are customer service and technical support?

We have tickets in to get it fixed but we are not having a lot of luck.

What other advice do I have?

I would rate ManageEngine Log360 a three out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1165614 - PeerSpot reviewer
ME Product Engineer at a tech services company with 11-50 employees
Reseller
Large sizing, good reporting and offers a great shuttle import feature
Pros and Cons
  • "The reporting is great. Everything you need is in the report for you already."
  • "The matter of the data retention needs to be addressed."

What is most valuable?

The solution has many features that I like very much.

The user logs and files are great. The shuttle import is useful for imported logs and prices.

The reporting is great. Everything you need is in the report for you already.

The solution is quite large, which is useful for our level of business.

What needs improvement?

The matter of the data retention needs to be addressed.

The back-end, moving to a whole new server, needs the integration of the data already collected by this tool. Right now, this is lacking. I have some customers that have to collect data for a period of two years. That data needs to be mobile - and we are talking about two terabytes or three terabytes of logs. There's always a problem, where the old server is breaking or at the end of the life, and they need a whole new one and need to migrate, however, it is very hard to find a way to do this effectively.

In a future release, I would like to see some sort of feature that prepares one predefined installation. It would also be ideal if we could have separate servers for separate customers.

I would like to see that there are some items that are predefined, and some features to predefine some settings. For example, I would like to create some custom reports for customer complaints and be able to report the issues and put them into every part of the solution.

For how long have I used the solution?

I've been using the solution for the last two years now.

What do I think about the stability of the solution?

The stability is good. We haven't had any issues with bugs or glitches. It doesn't crash or freeze. When we need to access our data to check on things we can easily.

What do I think about the scalability of the solution?

The scalability is very good. Very nice. We have a distribution version for big IT environments in a global context. We can collect some old download data, to check them, from one place on one single server.

Our organization is quite large, and we have no trouble using this solution to manage the work.

How are customer service and technical support?

We've dealt with technical support in the past. I can say with certainty they have been very good, and very professional. There has been no problem getting help from them when we need it. They're easy to work with. We're satisfied with the level of service they provide to us.

How was the initial setup?

The initial setup was not complex. It was very straightforward. We didn't have any issues with the implementation.

How long it takes in total depends on if you are talking about a full deployment or just an installation. The more jobs, the more time it will take to configure the environment servers, and tasks of that nature. That's got to be solved. However, preparation for that part is most likely very easy and very simple for most organizations and should take perhaps six hours at a maximum.

What other advice do I have?

I am a part-time partner and I am a unique distributor.

We're using the corporate version of the solution. It's the biggest version you can get.

I'd rate the solution nine out of ten. I'm waiting on a new feature they promised us int he third quarter. Other than that, the solution has worked quite well for me and offers almost everything I need.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Buyer's Guide
Download our free ManageEngine Log360 Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free ManageEngine Log360 Report and get advice and tips from experienced pros sharing their opinions.