We performed a comparison between Icinga and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Zabbix, Datadog, Auvik and others in Network Monitoring Software."The single dashboard is a valuable feature."
"We can manage the entire system across the network and troubleshoot the pain points."
"This solution has a self-healing handler where if the service is down, it is automatically restarted."
"The best thing about the solution is how it highlights errors, the issues, and what needs my attention. The solution directs me to areas that I should look for first."
"The apply rules feature saves a lot of time."
"It is really easy in Icinga to create your own plugin and integrate it without any fuss. And it works just perfectly fine."
"The drafts are easy but what I like about Icinga is that there are many add-ons that you can download."
"I like the ability to amend and adjust things really easily, which is useful in a case where you could make it auto-discover and then set a template to say all of these applications or servers under this template have an automatic threshold set that you’d set up manually."
"Icinga does the job and is fairly stable."
"Icinga has multiple automation and integration features. There is an API for everything and a web UI for configurations. The APIs enable you to automate tasks in Icinga. We can also use plugins to talk to the API. The Icinga Director talks to a database in the background, and you can import settings from the CMDB to all systems in Icinga."
"Its dashboard is valuable. If you have a good knowledge of how to create a dashboard, you can create any dashboard related to cybersecurity. If fine-tuned, the alarms that are triggered for instant review are also very valuable and useful."
"The ability to view all of these different logs, then drilling down into specific times or into specific data sources, has proved to be the greatest aspect in decreasing our troubleshooting overhead time."
"We solve issues that we previously could not since we now have the data."
"Exporting is a good feature. It helps me out when I have to do reports. I do a lot of exporting and crunching of the numbers. Dashboards are okay for showing to the leadership, but for doing statistics and updating tickets, the export feature is very beneficial for me."
"This is a straightforward solution, easy to configure."
"It helps streamline troubleshooting and log analysis."
"The most useful feature for me is the ability to create different kinds of alerts and set a different kind of denominator that will capture the real event. That is helpful for a power user like me."
"Compared to IBM QRadar, Splunk Enterprise Security offers faster alert resolution."
"The technical support needs improvement."
"The Wi-Fi side needs improvement."
"The user interface should be improved."
"Icinga’s automation could be improved."
"There is room for improvement in multi-tenancy. It's not perfect, not even really good. It's average, but it should be improved."
"I think the software is quite good, but we have had problems with getting it to recognize certain areas and amend certain checks, where we needed so we would have to create backend scripts for those checks. Though, being open source, it has the support to create backend scripts, it would be better to have these scripts in-built."
"We have found some problems with Nagios, and support isn't very responsive."
"The tool currently fails to provide notifications to users."
"One of the areas that are frustrating is remote monitoring for more than one machine."
"In general, the product does not look good. However, it does what it is supposed to do. So, the improvements should focus on usability and UI."
"The Enterprise Security app could be improved. We have had trouble with it working from the first day."
"We were inundated with the amount of alerts and alarms that we could get out of it. It is also a resource hog and we didn't have the resources to support it on-prem so we're taking it offline now."
"It would be nice if Splunk reduced the cost of training. Their training sessions are way too costly."
"From the commercial point of view, they have to bring down their costs."
"The CIM model is the method Splunk uses to normalize data and categorize its important parts, but it is quite complex."
"For on-premise, it's more about optimization. With such a heavy byte scale of data that we are operating on, the search for disparate data sometimes takes about a minute. This is understandable considering the amount of data that we are pumping into it. The only optimization that I recommend is better sharding, when it comes to Splunk, so that data retrieval can be faster."
"I'd say I am happy with the technical support, not elated. They provide great support, but sometimes they don't have the answers that I need."
"The security can be improved."
More Juniper Mist Premium Analytics Pricing and Cost Advice →
Icinga is ranked 22nd in Network Monitoring Software with 17 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. Icinga is rated 7.6, while Splunk Enterprise Security is rated 8.4. The top reviewer of Icinga writes "A stable, scalable and cost-effective solution that helps with inbuilt scripts for easy modification". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Icinga is most compared with Zabbix, Checkmk, Nagios Core, Nagios XI and ServiceNow IT Operations Management, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.