IBM MQ Review

It gave us the ability to search through the data based on the identity of the person, the machine, or the IP address.


What is most valuable?

I've used other solutions, but the most valuable features of this solution are the search capabilities, consolidating the data and searching through the data. I think that these are some of the key things.

How has it helped my organization?

For this organization, it was the first log management solution. So, it definitely gave us the ability to search through the data when we had events. We could search based on the identity of the person, or the machine, or the IP address. We could do a lot of different searches.

We could also do payload searches and depending on how much capacity you have, you can do quite a lot with it.

What needs improvement?

I want to see a three-dimensional perspective to the data. I don't want to see just an event perspective to the data. I want to be able to identify a user and within clicks, know the whole activity of the user. I don't want to see it in events. I want to see it in the relevant information.

There needs to be a little bit more of investment for enhancing the user interface. That is the main thing, i.e., to make it represent the state of the actual incident response and how you would troubleshoot an incident. It was a major position by IBM when they bought it. But, we see a lot of things being done around the Cognitive side, around the Watson side, but what we're not seeing growth in, is the actual tools interface and usability.

We wanted to be able to see seamless identification of log sources, seamless categorization, normalizing of log sources and seamless alerts. All those things that are required for solution maturing, it has to be able to take data and make sense of it by itself, without a lot of input. Those are the areas that they can really improve it.

What do I think about the stability of the solution?

It's been stable. Stability hasn't been a problem, as long as you have enough capacity. It's all about sizing it right for the size of your environment.

What do I think about the scalability of the solution?

We drop packets every day. So depending on how our log volume increases or reduces, you see the impact on the packets being dropped.

How are customer service and technical support?

We've used it and it hasn't been great. It didn't seem like we could get the answers we needed without having to use professional services. For a solution like this, there are little things like, how to tune it, how to upgrade it and that as a customer we don't feel the need to use professional services for. We want to be able to just find a document on how to upgrade and that has been difficult to find.

Which solution did I use previously and why did I switch?

We didn't have a previous solution. We inherited it as part of another acquisition, of another purchase from IBM and then we scaled it up to meet our capacity.

How was the initial setup?

I was involved in the setup process. We got the basic functionality working, which is not difficult. It's getting the full value out of this solution that was harder.

What other advice do I have?

From an analytics perspective, it's a good tool but you have to have the resources to own it. It's not only about buying it, nor is it about the capacity, but somebody has to care and feed it. It's not one of those you put it in and you can walk away and just consume the data. If you don't care and feed it, you won't get what you need out of it.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest
Sign Up with Email