We performed a comparison between ArcSight Logger and Graylog based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"The technical support team is good...It is a scalable solution."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"It's an efficient solution."
"We check a lot of logs in ArcSight Logger because we're running a massive database platform."
"It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
"The solution's most valuable feature is its new interface."
"I like the correlation and the alerting."
"Open source and user friendly."
"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."
"I am very proud of how very stable the solution is."
"We're using the Community edition, but I know that it has really good dashboarding and alerts."
"The build is stable and requires little maintenance, even compared to some extremely expensive products."
"It is used as a log manager/SIEM. It provides visibility into the infrastructure and security related events."
"The initial setup was a little bit complex."
"ArcSight has been sold two or three times, and the quality has decreased."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"The next release should have AI capabilities."
"I would like to see better scheduling in the next release of this solution."
"The integration with other systems could be improved."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"It would be better if the product is cheaper."
"I hope to see improvements in Graylog for more interactivity, user-friendliness, and creating alerts. The initial setup is complex."
"It would be great if Graylog could provide a better Python package in order to make it easier to use for the Python community."
"The infrastructure cost is the main issue. I like the rest. If the infrastructure costs could be lower, it would be fantastic."
"Elasticsearch recommendations for tuning could be better. Graylog doesn't have direct support for running the system inside of Kubernetes, so it can be challenging to fill in the gaps and set up containers in a way that is both performant and stable."
"I would like to see some kind of visualization included in Graylog."
"More customization is always useful."
"Dashboards, stream alerts and parsing could be improved."
"Since container orchestration systems are popular and Graylog fits the niche well, perhaps they could officially support running in docker containers on Kubernetes as a StatefulSet as a use case. That way, the declarative nature of Kubernetes config files would document their best case deployment scenario-"
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Graylog is ranked 11th in Log Management with 18 reviews. ArcSight Logger is rated 7.8, while Graylog is rated 8.0. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Graylog writes "Great detailed search features and easy Java integration, but needs improvement in integration with Python". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security and Wazuh, whereas Graylog is most compared with Grafana Loki, Wazuh, syslog-ng, Fortinet FortiAnalyzer and Splunk Enterprise Security. See our ArcSight Logger vs. Graylog report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
