We performed a comparison between Splunk Enterprise Security and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It has a big user base, so the community is useful."
"The most valuable features of the solution are it is straightforward to use and the documentation is good for finding out how to get the data you are looking for."
"The solution's most valuable feature is that it helps with our use cases to detect anomalies in our data and it is important to my company since we have a lot of data on different logs on the systems."
"Splunk has significantly helped with aggregation and correlation of critical logs. Not having to grep on each individual server has made everyone more efficient."
"It has the ability to correlate data, analyze and review it."
"Recently, Splunk upgraded to version 9.0.02, which includes excellent data dashboards and visualization effects."
"Our clients are easily able to modify and evolve their implementations."
"Compared to IBM QRadar, Splunk Enterprise Security offers faster alert resolution."
"The virtualization solution supports data center virtualization, network and security."
"I like the interface."
"The setup and installation are very easy."
"The solution is quite user-friendly."
"It is a highly stable solution...It is a highly scalable solution."
"It is very scalable and can handle a large workload."
"The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting."
"vRealize Log Insight has been running without any issues."
"Writing queries is a bit complicated sometimes."
"Deployment is not difficult but the lock sources and configurations can take time."
"The CIM model is the method Splunk uses to normalize data and categorize its important parts, but it is quite complex."
"We find that the maintenance process could be a lot better."
"Over time I will have more requirements and I can foresee the solution could improve the search algorithm to run and output the data faster."
"Many of my clients want to get better at Splunk, but they're afraid of using the tool because they feel it's too complex for them."
"The support that is included with the standard licensing fee is very bad."
"Free-floating panels in the dashboards are like a glass table."
"The tool is expensive."
"What I'd like to improve in vRealize Log Insight is the licensing model. VMware provides vRealize Log Insight along with the VMware Cloud Foundation, but customers who would like to go for the native VMware would have to procure vRealize Log Insight separately. Today, vRealize Log Insight is offered on two different licenses, one is based on the number of VMs, and the other is based on the number of physical codes on the machine. If VMware can provide a bundle offer for customers who procure more than ten licenses, where you can have an option to run, for example, three hundred machines on vRealize Log Insight with no extra cost, this would encourage more people to adopt the solution. What I'd like to see in the next release of vRealize Log Insight is for a cloud option to be available, which would be a pay-as-you-go licensing model that would allow me to pick and choose what I'll monitor. For example, I have one thousand and three hundred critical servers, and the seven hundred servers for basic development, I don't want to monitor on vRealize Log Insight today, so I should be able to pick what I need to monitor on the solution and only pay for that specific instance. If VMware can apply these changes, it would help VMware customers to procure more or adopt more of vRealize Log Insight even in smaller projects."
"Log Insight should be better at dealing with audits and security logs. We use another product called QRadar for that."
"The pricing of the solution could be improved."
"The solution should be more user-friendly. The user interface and dashboard could be simplified."
"Paid or free does not matter, but it is complex to find good training material for vRealize Log Insight."
"Integration with other vendors is something that could be improved, they could add more vendors."
"Log retention should have more options for user control."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Splunk Enterprise Security is ranked 1st in Log Management with 240 reviews while VMware Aria Operations for Logs is ranked 10th in Log Management with 24 reviews. Splunk Enterprise Security is rated 8.4, while VMware Aria Operations for Logs is rated 8.2. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of VMware Aria Operations for Logs writes "Gives a clear forecast about existing machines, and has an automation feature that helps in reducing a lot of ambiguities and managing operational efficiencies". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel, whereas VMware Aria Operations for Logs is most compared with Elastic Security, LogRhythm SIEM, Graylog, Fortinet FortiAnalyzer and IBM Security QRadar. See our Splunk Enterprise Security vs. VMware Aria Operations for Logs report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.