No more typing reviews! Try our Samantha, our new voice AI agent.
ArcSight Logger Logo

ArcSight Logger Reviews

Vendor: OpenText
3.8 out of 5
Leave a review

What is ArcSight Logger?

ArcSight Logger effectively manages vast log data volumes, streamlining complex query execution and data compression while supporting various devices to meet compliance needs.

Get the ArcSight Logger Buyer's Guide and find out what your peers are saying about ArcSight Logger, Wazuh, Splunk Enterprise Security and more!
ArcSight Logger is the #40 ranked solution in Log Management Software. PeerSpot users give ArcSight Logger an average rating of 7.6 out of 10. ArcSight Logger is most commonly compared to Wazuh: ArcSight Logger vs Wazuh. ArcSight Logger is popular among the large enterprise segment, accounting for 38% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 11% of all views.
Buyer's Guide
ArcSight Logger
April 2026
Get the report
Helped 891,869 peers since 2012

Featured ArcSight Logger reviews

Read more reviews

ArcSight Logger mindshare

As of April 2026, the mindshare of ArcSight Logger in the Log Management category stands at 0.9%, up from 0.8% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Log Management Mindshare Distribution
ProductMindshare (%)
ArcSight Logger0.9%
Splunk Enterprise Security6.6%
Wazuh6.1%
Other86.4%
Log Management

PeerResearch reports based on ArcSight Logger reviews

TypeTitleDate
CategoryLog ManagementApr 29, 2026Download
ProductReviews, tips, and advice from real usersApr 29, 2026Download
ComparisonArcSight Logger vs WazuhApr 29, 2026Download
ComparisonArcSight Logger vs Splunk Enterprise SecurityApr 29, 2026Download
ComparisonArcSight Logger vs CriblApr 29, 2026Download
Suggested products
TitleRatingMindshareRecommending
Wazuh3.76.1%81%50 interviewsAdd to research
Splunk Enterprise Security4.26.6%93%386 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

ArcSight Logger offers scalability, flexible log collection options, real-time awareness, efficient query capabilities, and excellent device support with multi-tenancy. It provides detailed event visibility, robust log management, and advanced security analytics. Its user-friendly interface allows for complex queries and customization. Additionally, it offers strong data retention and compliance features, integration with SIEM tools, and efficient machine learning for threat detection. Users appreciate its performance, powerful searching tools, and comprehensive log aggregation capabilities.
  • "As the name suggests, it's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
  • "ArcSight provides the basic information that we want."
  • "Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."

Room for Improvement

ArcSight Logger needs improvement in user interface simplicity, speed, and adaptability. Users find it challenging to navigate and suggest enhancing the dashboard and search functionality. They note the lack of advanced features like AI, analytics, and integration with other systems. The platform's complexity requires specialized expertise. Users also criticize its outdated nature, limited reporting abilities, and inadequate connector support. They express concerns about its high cost and reduced technical support quality after corporate changes.
  • "Apart from that, it's a very complex tool and is not easy to implement and maintain."
  • "Scaling this product is painful."
  • "The solution could be improved in maintenance settings."

ROI

ArcSight Logger improved operational efficiency by making log collection and fraud investigation more seamless. Users reported decreased operational time and described the tool as cost-effective with a positive return over the past year, especially when addressing enterprise requirements for log management and SIEM. One challenge noted was its expense, with licensing covering only essential servers. Professional services were suggested for effective deployment, further enhancing resource use from the start.

Pricing

ArcSight Logger pricing is perceived as costly compared to competitors, but its features justify the expense for many. Users suggest preparing for unexpected incidents by acquiring extra licenses. Pricing structures include annual subscriptions, three-year terms, and lifetime licenses, with some preferring the latter to avoid recurring fees. Licensing is considered complex, with setup challenges noted. Despite cost concerns, many find the investment worthwhile for its capabilities, although exploration of alternatives like ArcSight Recon is ongoing.
  • "We have a lifetime license, so we don't pay a monthly fee."
  • "Pricing is reasonable compared to similar tools on the market. They offer perpetual licenses."
  • "I rate the product’s pricing a seven out of ten, where one is inexpensive, and ten is expensive."

Popular Use Cases

Organizations use ArcSight Logger primarily for log management, including data retention, query execution, and incident response. It monitors perimeter defenses, security events, and collects logs for compliance. It manages logs from IT assets, networks, databases, and servers. Additionally, it integrates with SIEM tools and applications for fraud prevention and alert management. Its on-premise deployment is favored for firewall and Windows events, facilitating log archiving and structured long-term storage.

Service and Support

ArcSight Logger support varies; some find it efficient, praising knowledgeable and cooperative teams, while others note delays and lack of reactivity. Users mention the community helping more in emergencies. Technical expertise is sometimes found lacking after company changes. They provide timely responses, yet deployment support and critical log issue handling could improve. Disruptions from personnel shifts occur but are managed. Some rely on partners for enhanced assistance with implementation and configuration challenges.

Deployment

ArcSight Logger's initial setup can be perceived differently. Some found it straightforward, especially with the appliance version, while others experienced complexity due to multiple components and specific network requirements. Proper training and documentation were key factors in easing the complexity. Deployment time varied, with some installations taking hours and others extending to several weeks. Integrating with existing systems and ensuring data privacy required additional effort, which added to the overall complexity for some users.

Scalability

ArcSight Logger demonstrates robust scalability for larger organizations, accommodating high volumes of data and users efficiently. However, smaller entities may encounter challenges, requiring specific configurations to enhance performance. Adding connectors and expanding resources positively influence its operations. Organizations needing to integrate extensive infrastructure appreciate its user-friendly licensing model. While the impact on digital transformation is noted, some users experience operational difficulties, conflicting data management, and complex storage requirements. Flexibility appears crucial in optimizing ArcSight Logger in diverse environments.

Stability

Users report that ArcSight Logger is generally stable with occasional issues. Some experience stability when using smart connectors, while others note rare problems during upgrades or under heavy loads like DDoS attacks. The system's reliance on Java and console-related concerns prompts some users to suggest further improvements. In most cases, ArcSight Logger is seen as reliable with few crashes and bugs, maintaining functionality across different circumstances. Stability ratings vary, but many rate it positively.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our ArcSight Logger Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business7
Midsize Enterprise9
Large Enterprise12
By reviewers
By visitors reading reviews
Company SizeCount
Small Business77
Midsize Enterprise51
Large Enterprise79
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
11%
Comms Service Provider
8%
Marketing Services Firm
7%
Computer Software Company
7%
Construction Company
6%
Healthcare Company
6%
Manufacturing Company
6%
Government
5%
Outsourcing Company
4%
Retailer
4%
Performing Arts
4%
Real Estate/Law Firm
4%
Media Company
3%
Recreational Facilities/Services Company
3%
Consumer Goods Company
3%
University
3%
Insurance Company
2%
Non Tech Company
2%
Educational Organization
2%
Legal Firm
1%
Transportation Company
1%
Energy/Utilities Company
1%
Pharma/Biotech Company
1%
Non Profit
1%
Logistics Company
1%

Compare ArcSight Logger with alternative products

Go!

Learn more about ArcSight Logger

ArcSight Logger, known for scalability, simplifies handling extensive log data and executes complex queries swiftly. Its data compression features, coupled with versatile device support, allow for smooth security analytics and log collection. Users appreciate its real-time network insights and intuitive interface. However, improvements are needed in indexing speed, user navigation simplification, enhanced system integration, advanced analytics, and comprehensive threat management. Companies leverage ArcSight Logger for on-premises log management, vital for IT asset event monitoring and compliance within telecom and enterprise sectors.

What are the key features?
  • Scalability: Handles large log data volumes efficiently.
  • Complex Query Execution: Quickly executes intricate queries.
  • Data Compression: Optimizes storage with excellent compression.
  • Device Support: Out-of-the-box compatibility with numerous devices.
  • Customization: Easily customizes to user needs.
  • Security Analytics: Provides robust analytics for security requirements.
  • Real-time Insights: Offers awareness of ongoing network activities.
What benefits and ROI should be considered?
  • Compliance Assurance: Meets audit requirements with comprehensive insights.
  • Time Efficiency: Fast query execution reduces analysis time.
  • Reduced Storage Costs: Data compression lowers storage expenses.
  • Enhanced Security: Improves security posture with real-time analytics.

In industries like telecom and enterprise, ArcSight Logger facilitates on-premises deployments to manage logs, process queries, and integrate with security tools, essential for incident response. It aids in retaining logs, monitoring Windows events, overseeing communications, and is employed in fraud prevention and security monitoring involving syslog servers.

ArcSight Logger was previously known as Micro Focus Arcsight Logger, HPE Arcsight Logger.

ArcSight Logger customers

China Merchants Bank, Bank AlJazira, Banca Intesa

Related questions

  • 81
When evaluating Log Management tools and software, what aspect do you think is the most important to look for?
  • 445
Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
  • 82
Which Windows event log monitoring tool do you recommend?
  • 79
What is the difference between log management and SIEM?
  • 68
Splunk vs. Elastic Stack
  • 45
How can Cloudtrail logs be used effectively to improve log monitoring?
  • 126
Why hot data and cold data differences in SIEM solutions are not discussed sufficiently?
  • 166
When evaluating Log Management solutions, what aspect do you think is the most important to look for?
  • 57
When evaluating Log Management solutions, what aspects do you think are the most important to look for?
  • 46
Why are Log Management tools important for companies?

Product Categories

Product Categories
Log Management

Popular Comparisons

Popular Comparisons
Wazuh vs ArcSight Logger Logo
Wazuh vs ArcSight Logger
Splunk Enterprise Security vs ArcSight Logger Logo
Splunk Enterprise Security vs ArcSight Logger
Dynatrace vs ArcSight Logger Logo
Dynatrace vs ArcSight Logger
IBM Security QRadar vs ArcSight Logger Logo
IBM Security QRadar vs ArcSight Logger
Cribl vs ArcSight Logger Logo
Cribl vs ArcSight Logger
Elastic Security vs ArcSight Logger Logo
Elastic Security vs ArcSight Logger
Grafana Loki vs ArcSight Logger Logo
Grafana Loki vs ArcSight Logger
LogRhythm SIEM vs ArcSight Logger Logo
LogRhythm SIEM vs ArcSight Logger
Graylog Enterprise vs ArcSight Logger Logo
Graylog Enterprise vs ArcSight Logger
Elastic Stack vs ArcSight Logger Logo
Elastic Stack vs ArcSight Logger
USM Anywhere vs ArcSight Logger Logo
USM Anywhere vs ArcSight Logger
Sumo Logic Security vs ArcSight Logger Logo
Sumo Logic Security vs ArcSight Logger
Devo vs ArcSight Logger Logo
Devo vs ArcSight Logger
Fortinet FortiAnalyzer vs ArcSight Logger Logo
Fortinet FortiAnalyzer vs ArcSight Logger
syslog-ng vs ArcSight Logger Logo
syslog-ng vs ArcSight Logger
See all alternatives
 
ArcSight Logger Reviews Summary
Author infoRatingReview Summary
Sr. Cybersecurity Consultant IT/OT at EJADA4.0I primarily use ArcSight Logger for log collection in critical infrastructure industries, but its limited features, especially in behavior analysis, lead us to prefer alternatives like Splunk, which offers more comprehensive capabilities for log and threat analysis.
Analista de TI - suporte a redes e segurança at Tribunal de Contas da União3.0We don't have many use cases and expected our MSSP provider to offer more, but they didn't. The solution needs improvement, especially after being sold multiple times, leading to decreased quality. I wouldn't recommend ArcSight.
Senior Manager ICT & at Bangalore International Airport Limited4.0ArcSight Logger allows me to centralize event logs, assess alerts, and evaluate security risks. While valuable, it lacks pre-built connectors for varied systems like Windows and Unix. Despite this, it's superior to alternatives, offering unified log capture across devices.
SOC Engineer at a financial services firm with 1,001-5,000 employees3.5We use ArcSight Logger for Windows event management and log collection, but face challenges with cloud log onboarding and slow search functionality. Despite these issues and the lack of scalability, our return on investment has been positive.
Manager, Security Operations Centre at Phillips Consulting Limited3.0I primarily use ArcSight Logger for compliance purposes. The machine learning feature is beneficial, but I believe future releases should incorporate AI capabilities. I haven't used or considered other solutions, and there's no specific cloud provider mentioned.
CEO at Kapstone Technological Services LLP5.0ArcSight Logger is a proven and highly compatible solution for log collection and integration with SIEM tools, praised by customers and offering good data retention and integration. It could be improved with a lower price but provides worthwhile ROI.
Senior Officer IT at Tech Data Limited3.5We use ArcSight Logger for log management, and its most valuable feature is the visibility it offers into business activities. However, the platform is quite expensive, and a cost reduction would be beneficial. We haven't considered other solutions.
Cyber Security Engineer at MTN4.0We use ArcSight for incident response and log management, valuing its threat intelligence integration. While scalable, our initial setup was complex, and I believe the dashboard graphics need improvement. Overall, it's a good solution.