ArcSight Logger Review

Good search capability that is simple to use


What is our primary use case?

We use this solution for archiving log feeds.

What is most valuable?

The most valuable feature is the search capability, which is simple to use. We can easily search for certain events.

What needs improvement?

We have had problems with archiving.

The license for ArcSight Logger has given us problems.

I would like to see better integration with ArcSight ESM.

It would be helpful if this solution had some of the features from the ArcSight Command Center.

For how long have I used the solution?

I have been using ArcSight Logger for three years.

What do I think about the stability of the solution?

This solution is stable. The availability depends on the nodes.

What do I think about the scalability of the solution?

ArcSight Logger is scalable.

We have approximately 30 users over a 24-hour period for the whole network.

What other advice do I have?

I am the technical support person for all of our on-site components.

My advice for anybody who is implementing this solution is to use ArcSight ESM to correlate the logs and display them on the dashboard.

I would rate this solution an eight out of ten.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More ArcSight Logger reviews from users
...who work at a Government
...who compared it with IBM QRadar
Add a Comment
Guest