We performed a comparison between Splunk Enterprise Security and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Splunk UBA is useful for fraud detection and for detection of APTs, advanced persistent threats."
"The indexing and data collection are valuable."
"Splunk provides immediate visibility into key business metrics and new business insights that deliver immediate value."
"We primarily use it to correlate logs throughout the enterprise for both searching and use in investigations."
"I am satisfied with the support."
"it can explain to management about what kind of traffic is visiting the network. It can also explain other traffic coming in and out, along with protecting against malware."
"The client site login is pretty extensible and probably cost-effective."
"UBA, User Behavior Analytics, is a key feature."
"The solution is quite user-friendly."
"It is a highly stable solution...It is a highly scalable solution."
"The interface of the solution is good."
"The tool helps my company deal with security and log analysis, which are very important areas for us...It is a scalable solution."
"We are using it because we have a VMware product. It has its own built in dashboards for VMware products, and that's a good thing."
"It is a very useful tool if you have a VMware environment."
"The trace log is the solution's most valuable feature. It's very helpful in troubleshooting problems."
"It is very scalable and can handle a large workload."
"It is important to make sure that everything is built off of the threat models and all the underlying items within Splunk."
"Splunk could enhance its services by providing more comprehensive professional assistance aimed at optimizing our investment."
"I would like to get visibility into the data pipelines on heavy forwarders and indexers to see exactly their source and the cause of saturation when it occurs. This would help us learn even more about our high use applications."
"The pricing can be better."
"Splunk is very expensive. The license is based on the volume of the logs ingested. I was responsible for managing the contract with our service integrator. I don't know the precise details of the competing solution, but I have heard that Splunk is more expensive than others. I don't know what the going rate is on the market, but I think there are at least two competitors that are less expensive. We have experienced a few issues with our service providers in terms of log filtering and ingestion, so we continue to pay a bit more per day for our logs."
"Being a SIEM solution with a centralized dashboard, we would like to have more options to customize it."
"In terms of the interface, it could include some improvements for the look and feel."
"Not even Splunk's support guy, who came to our firm, could help with defining proper role management."
"The solution should be more user-friendly. The user interface and dashboard could be simplified."
"What I'd like to improve in vRealize Log Insight is the licensing model. VMware provides vRealize Log Insight along with the VMware Cloud Foundation, but customers who would like to go for the native VMware would have to procure vRealize Log Insight separately. Today, vRealize Log Insight is offered on two different licenses, one is based on the number of VMs, and the other is based on the number of physical codes on the machine. If VMware can provide a bundle offer for customers who procure more than ten licenses, where you can have an option to run, for example, three hundred machines on vRealize Log Insight with no extra cost, this would encourage more people to adopt the solution. What I'd like to see in the next release of vRealize Log Insight is for a cloud option to be available, which would be a pay-as-you-go licensing model that would allow me to pick and choose what I'll monitor. For example, I have one thousand and three hundred critical servers, and the seven hundred servers for basic development, I don't want to monitor on vRealize Log Insight today, so I should be able to pick what I need to monitor on the solution and only pay for that specific instance. If VMware can apply these changes, it would help VMware customers to procure more or adopt more of vRealize Log Insight even in smaller projects."
"Log retention should have more options for user control."
"Documentation is lacking, including some guide as to how to use the expressions. It is not clear how to look for a log, for example. Some examples in the documentation might be helpful. I think that VMware had good documentation, but it's no longer hosted. The documentation is not as easy to understand as it was before."
"The solution isn't user-friendly for admins."
"Log Insight should be better at dealing with audits and security logs. We use another product called QRadar for that."
"The pricing of the solution could be improved."
"From an improvement perspective, the tool needs to be made more user-friendly."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Splunk Enterprise Security is ranked 1st in Log Management with 228 reviews while VMware Aria Operations for Logs is ranked 10th in Log Management with 24 reviews. Splunk Enterprise Security is rated 8.4, while VMware Aria Operations for Logs is rated 8.2. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of VMware Aria Operations for Logs writes "Gives a clear forecast about existing machines, and has an automation feature that helps in reducing a lot of ambiguities and managing operational efficiencies". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security, whereas VMware Aria Operations for Logs is most compared with Elastic Security, LogRhythm SIEM, Graylog, IBM Security QRadar and Fortinet FortiAnalyzer. See our Splunk Enterprise Security vs. VMware Aria Operations for Logs report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.