- Flexibility when creating dashboards
- Automated cron searches
- Real-time and scheduled searches with alternate functionalities
- User-base integration with LDAP
It alerted many situations before other monitoring systems identified that there is a critical issue.
VMware and security device integration looks a bit complex.
I have used Splunk for almost three years.
As of now, we have had no issues with stability. It is running like a charm.
From a nodes perspective, there have been no scalability issues.
I can say that support is good.
We never used other solutions.
We used the Splunk Cluster setup. It was a bit complex to set up, but management-wise and stability-wise, it was awesome.
License costs fall under the NDA, but Splunk license costs are public, I believe.
We evaluated Logstash and others, but Splunk plays a pivotal role.
I would strongly recommend this product, as it would be very beneficial for service operations and management.