The product should improve its dashboards. Splunk has neat dashboards. Additionally, we would like to enhance the use cases provided by LogRhythm as its use case library is not as extensive as other tools. Its machine-learning capabilities need to improve when compared to other solutions. It lacks risk quantification in a single, transparent view for individuals such as CSOs. Consequently, presenting this information to a CSO or senior manager often requires manual reporting rather than relying on the dashboard. I recall experiencing integration challenges with LogRhythm UEBA, particularly when connecting with products not listed in its predefined integrations. These issues often manifest as parsing errors, even when attempting to integrate with cloud logs. 

We're now exploring the cloud version but unfortunately we've found that they are lagging in that space.

The UI could be improved a little bit.

LogRhythm UEBA's data aggregation needs to be improved. Open-source users do not have much documentation available. Documentation is available only for enterprise users. 

Better dashboarding. At the moment, the dashboard only has an hour. It will give you one period of time, versus being an active dashboard like the rest of the dashboards. It doesn't give you an active tally of what's going on. It just gives you a snapshot.

Also, better automation and response.

What needs improvement in LogRhythm UEBA is the pricing. Here in Asia, for example, in Sri Lanka, pricing is the primary concern, and this is the only area for improvement I see in LogRhythm UEBA.

The product could be user-friendly for someone who doesn’t have any prior experience working with it.

The search feature needs to be improved. 

The solution needs better filtering in the next versions.

It should have better mitigation with other solutions and be tightly integrated with other solutions. It has to be improved. 

It would be helpful if there were more guidance provided for integrating with unsupported devices.