ManageEngine Log360 Reviews

If the client does not have much knowledge regarding the SOC and cyber, then ManageEngine Log360 is good because you can get default reports.

It is easier to deploy than are other SIEMs, which is great. You can also get an overview of your environment, which is very handy.

It's difficult to find which conditions have been applied to a report because they are provided by default by ManageEngine. However, with other SIEMs if you want to create a report, they provide details, like which conditions are triggering certain reports. This needs to be there in ManageEngine. It would be good to know which parameter has been applied to the report that is updating the system.

The on-premises solution is very slow. When I move to another tab inside Log360 or in the SIEM, even if my system is running on 36 GB and with a high processor, it takes a lot of time to get into the alert page or the search page.

It takes a long time to load a single page. With other solutions, such as Splunk, Securonix, Wazuh, I can quickly grab the details within seconds, but with ManageEngine, it takes a lot of time.

I've been using it for about four months.

Compared to the scalability of other solutions, ManageEngine Log360's scalability is average.

I have contacted technical support, and they solved a particular issue I was facing.

The initial setup was easy and not complex. One person can handle the deployment.

The deployment was done in-house.

My client has a yearly license. I think the cost is not expensive compared to that of other SIEMs, given the service it is providing.

Compared to other SIEMs, ManageEngine gives you the reports by default, which is good for small enterprises. Other solutions require one person to monitor user accounts. So, if your firm is not huge, then you can install ManageEngine Log360 to get password sharing and all other details.

I don't recommend using ManageEngine Log 360 in large organizations with more than 300 employees because they require certain compliance policies.

Overall, I would give this solution a six out of ten.

The reports that you can run are really nice. They give you a lot of standard reports, which are nice, and the ability to run some custom ones, too. It takes some intuitive thinking to use it, but overall it's generally user-friendly; although it takes some digging to find the report you're looking for — it's almost overkill by data.

They have been doing some webinars for their solutions that run-down through it, and those are actually quite helpful. What they're doing for their improvement is kind of nice. They're sending out a series of webinars and then you can log on and ask live questions to the engineers as they're taking you through the use of the product. I am actually finding that quite helpful.

I've had to go leaps and bounds, wondering where stuff was at. There's a lot of tabs to go through. There's a lot of information presented within the system and knowing where to go in it is taking that process through, like, "You go here, you look there, you see this here. Can you think of a use case where you would want to know that?" They ask those questions and they get responses in their webinars and I think that's quite valuable.

They're giving you an hour to go through it and they're covering most of the material in 45 minutes. They need to actually have the product explained a little bit better than just, "Here you go." I think Varonis is a little bit more, "Hey, these are the alerts you have." And then on the right, it drives you right to where you need to go. With ManageEngine, you need to actually have an idea of what you want to do with the information you're looking at. It doesn't drive you in the direction — that's a con. Varonis kind of drives you down. On the right, it gives you the event list and you can go through it and drive to the data on the individual alert. ManageEngine gives you the alert and then you need to know where to go. 

Because I haven't been using it long enough, I am not too sure what's missing. I am comparing it with Varonis. The two seem to be lining up a lot, but Varonis is a little bit better as it gives me real-time alerts for the file shares. It takes a little bit of time for Log360 to actually learn your environment. I am dealing with a lot of alerts that aren't exactly valid because it just doesn't know yet.

The learning environment time is a little bit lengthy, but I think it's necessary. Since Varonis was already in the environment, I have no idea how long that took for it to learn that behavior. It's hard for me to compare the two in that aspect, but that's what I'm dealing with. That's what I would expect somebody else to be dealing with if they just got the product and they didn't have anything.

I have been using ManageEngine Log360 for the past couple of months.

Overall, on a scale from one to ten, I would give ManageEngine a rating of eight. It gives me a lot of information. Without the webinars, I'd give it a seven.

If they improved their alerting capabilities, I'd give them a higher rating. For example, "Click here to drive down, and here are the recommended steps for evaluating this alert." If it did that, I would give it a rating of ten. That's really the thing that they need. They need to drive their traffic on their platform as opposed to you having to guess where to go.

The primary use case of this solution to look for anomalies in our traffic to see if there is anything out of the ordinary. We don't have the resources to perform deep analysis. This solution provides us with a report of what is breaking the normal routine.

The most valuable features of this solution are the consolidating of the reports, being able to take action and send them to email several addresses. We can divide the graces to different co-workers. 

You can have all of the logs from servers to network and it gets sent out to the correct owners. This is very helpful. Previously, we had several different products provide different functions. For example, there would be one product for the servers, one for the network, and one for the firewall, whereas now we have everything consolidated.

The GUI needs to be improved. The graphical interface could be made easier to use when you are connecting to different network equipment. For the service it is straightforward. It is a hassle when you have different manufactures for switches and realtors. Simplifying the user interface would be very helpful.

There are issues with stability.

In the next release, I would suggest to include not only for enterprise-level switches but also small business-level switches in the system. Some of our offices experienced issues when they had both local switches. Also, simplify the interface when you are adding network equipment.

I have been using this solution since July 2019.

We are using the most updated version, but I know that there will be another update available here in the spring.

We have experienced some issues when we do a re-start. 

The service can be delayed at its start. It varies from just a few minutes to 20 to 30 minutes. It does come on but it's very delayed at the start. It could be because I have all of my management products on the same server, and that could affect the starting time on it also. This has been the only buggy behavior that I have seen so far.

We have had a couple of issues when we run some cloud switches. At times, when you restart the server, you have to restart the switches afterward.

This solution is scalable if you have the money for it.

We currently have an open ticket in regards to the stability issues that we are experiencing, but I have only received a response that they are looking into it.

They are working on it, but they haven't had experience with the type of switch that we have. The one that we have is one of the smaller ones, and they only have the larger ones that they have been testing on.

The technical support is ok. They are quick in responding, within three to four hours you will receive a response.

Previously we were using several small products, and some were in-house developed. We also had log forwarding (WEF) by Microsoft. It is an app that you can put on your server so that we can define what you want to forward to your email. The problem is that the report is not consolidated. It is per occurrence .

We also had the Cisco Firewall.

The initial setup was rather straightforward.

I did not use a vendor or an integrator. I did it myself.

I purchased the Bulk Package which included the Log360 application. 

My advice would be to read the setup manual first and contact ManageEngine to assist you with any questions.

When we performed a test setup, we had some unknowns so we contacted ManageEngine. They got back to us with some advice on how to approach the issues. We were able to solve the issues on our end.

I would rate this solution an eight out of ten.

The solution needs to improve hub storage. It should integrate AI and ML capabilities. 

ManageEngine Log360 is not difficult to deploy. 

ManageEngine Log360 is expensive compared to other products. 

I rate the product a five out of ten. It is only an average solution. 

We basically utilize the tool to monitor security events based on a logon process such as bad passwords, lockout, etc.

We are using its latest version. We just upgraded it over the weekend.

It basically helps us. We have to stay in compliance with certain issues with some of our customers. We have to have these types of tools in place for protecting our network and our data. We're in the aerospace industry, so we have a lot of defense contracts. So, all those guys will make sure that we're protecting their information, and it does a good job in that aspect.

Its pricing should be better. Pricing is definitely a big factor for us. 

Their technical support should also be improved.

I have been using this solution for about three years.

It is pretty stable. We haven't had any problems with the system. I don't use the tool as much as my team does, so I really couldn't get into the specifics. It does what we want in terms of staying in compliance. 

I'm not too familiar with its scalability.

I haven't had very good support from those guys.

I haven't used any other products, but I've heard of products like LogRhythm and Splunk, and they seem to be supreme to this particular product that we have.

Its pricing is definitely huge compared to some of the other SIEMs. Its price should be improved.

I would rate ManageEngine Log360 a six out of 10. 

The primary use case of this solution is for reports, file editing, Active Directory editing, and security alerting.

We monitor the action in the Active Directory. For example, if someone changes the password in the Active Directory or the password has failed in the login, or there is a change in policy, then we know which administrator has made the changes. 

We can see all of the reports from the Active Directory and the file server in Log360. It's a good application because the reports are good and it helps to find errors in the system.

The most valuable feature is that this solution is more secure than others, and there are more applications and features as well.

Another good feature is that we can install an application on another server and get a report on a single dashboard.

There are issues when we log into Log360 from the computer that is hosting the system. It does not connect to the Active Directory. For example, Linux cannot connect or log into Log360 with the Active Directory user. We can log in as a local user, and it's fine, but when we login with an Active Directory user, we cannot.

I have been using this solution for one year.

We are using the latest updated version.

This solution is stable, we have not had any crashes.

This solution is scalable. We have 100 computers. Scaling up is not a problem.

We have four users in the IT department.

There is a cost for each feature used.

I would recommend this solution to others. I have a friend who has installed it.

I would rate this solution a ten out of ten, it's a very good application.

It is nice to be able to monitor and to have notifications.

Right now, we can't even get it to work. 

The support needs improvement.

The stability needs to be improved.

ManageEngine Log360 is not a stable solution. It needs improvement.

We have tickets in to get it fixed but we are not having a lot of luck.

I would rate ManageEngine Log360 a three out of ten.

The solution has many features that I like very much.

The user logs and files are great. The shuttle import is useful for imported logs and prices.

The reporting is great. Everything you need is in the report for you already.

The solution is quite large, which is useful for our level of business.

The matter of the data retention needs to be addressed.

The back-end, moving to a whole new server, needs the integration of the data already collected by this tool. Right now, this is lacking. I have some customers that have to collect data for a period of two years. That data needs to be mobile - and we are talking about two terabytes or three terabytes of logs. There's always a problem, where the old server is breaking or at the end of the life, and they need a whole new one and need to migrate, however, it is very hard to find a way to do this effectively.

In a future release, I would like to see some sort of feature that prepares one predefined installation. It would also be ideal if we could have separate servers for separate customers.

I would like to see that there are some items that are predefined, and some features to predefine some settings. For example, I would like to create some custom reports for customer complaints and be able to report the issues and put them into every part of the solution.

I've been using the solution for the last two years now.

The stability is good. We haven't had any issues with bugs or glitches. It doesn't crash or freeze. When we need to access our data to check on things we can easily.

The scalability is very good. Very nice. We have a distribution version for big IT environments in a global context. We can collect some old download data, to check them, from one place on one single server.

Our organization is quite large, and we have no trouble using this solution to manage the work.

We've dealt with technical support in the past. I can say with certainty they have been very good, and very professional. There has been no problem getting help from them when we need it. They're easy to work with. We're satisfied with the level of service they provide to us.

The initial setup was not complex. It was very straightforward. We didn't have any issues with the implementation.

How long it takes in total depends on if you are talking about a full deployment or just an installation. The more jobs, the more time it will take to configure the environment servers, and tasks of that nature. That's got to be solved. However, preparation for that part is most likely very easy and very simple for most organizations and should take perhaps six hours at a maximum.

I am a part-time partner and I am a unique distributor.

We're using the corporate version of the solution. It's the biggest version you can get.

I'd rate the solution nine out of ten. I'm waiting on a new feature they promised us int he third quarter. Other than that, the solution has worked quite well for me and offers almost everything I need.