Try our new research platform with insights from 80,000+ expert users

OpenText Real User Monitoring vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

OpenText Real User Monitoring
Average Rating
6.6
Reviews Sentiment
6.4
Number of Reviews
11
Ranking in other categories
Application Performance Monitoring (APM) and Observability (44th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.6
Number of Reviews
315
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. OpenText Real User Monitoring is designed for Application Performance Monitoring (APM) and Observability and holds a mindshare of 0.2%, down 0.2% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.4% mindshare, down 12.1% since last year.
Application Performance Monitoring (APM) and Observability
Security Information and Event Management (SIEM)
 

Featured Reviews

Aphiwat Leetavorn. - PeerSpot reviewer
Offers back-end monitoring, so it can analyze user experience but when customers change the software or version, this tool is quite sensitive
Real User Monitoring tools help proactively identify problems before they become critical by monitoring thresholds. There is a threshold and an SOA threshold. For example, it starts to go yellow, and if it becomes red, the system will crash. When it starts to become yellow (Threshold Approaching), we have to resolve it. This is the same case where we'll know what happened before it's too late. So we can make an early decision to prevent it, maybe by kicking some users off the system before it crashes.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"With the solution, you can easily access any issues in your infrastructure."
"Real User Monitoring tools help proactively identify problems before they become critical by monitoring thresholds. There is a threshold and an SOA threshold."
"The reporting feature is good for us."
"The most useful feature of this solution is tracking. When the application's traffic has been monitored it is taken from that particular application and analyzed. It is then given a live session of that particular user. For example, if you are using your bank application to do some kind of transaction, everything that you do can be tracked by that application."
"Real User Monitor has improved our productivity."
"Very easy to implement."
"It is a good product."
"The most valuable feature is application performance monitoring."
"I like Splunk's automated threat detection and orchestration capabilities. Splunk offers a single solution for analyzing, aggregating, correlating, monitoring, reporting, visualizing, etc. You can get all of these capabilities in one place. On top of that, it provides a cloud, testing, on-premise, and hybrid solution, giving customers more flexibility for their use cases."
"There are lots of free learning materials on their website."
"The most valuable feature of Splunk Enterprise Security is the threat intelligence integration because essentially having to go out and correlate all the data on our own becomes convoluted."
"Its alerting is most valuable. We have alerts set up in our environment for certain attacks, such as an SQL injection attempt. We have a front-facing server for the website. It is out there, and anybody can access it. When those SQL injection attempts come in, we are able to detect that with the alert."
"The incident review pane is the best part of it because that is where the SOC lives. It is the heartbeat of what the SOC needs to do. You are able to start the investigative process. As you are sitting in the incident review pane, you see the alert, and from that one alert, which is called a notable alert, you can drill in and see all the different specific details that are tied to that."
"It is lovely to have everything we need in one tool. Everything is quite centralized."
"It has reduced the time to resolution, time to investigate, and time to troubleshoot for debugging issues."
"The most valuable feature of Splunk is the management and built-in workflows."
 

Cons

"Real User Monitor needs to cover more protocols to provide more in-depth information. It could also be better at monitoring voice-related traffic. There is currently no visibility in that channel."
"The solution's technical support presents a lot of issues with too many delays."
"Some issues with login errors."
"The product needs more R&D to make it easier and more compatible with other software."
"Everybody is moving away from traffic and installing agents on the application to do the job, but Micro Focus is using traditional ways to collect the traffic. They should change their architecture completely."
"One area to improve is the user interface, of course. The second one is their R&D has virtually stopped building a product roadmap."
"Customer support needs to improve by bringing in more people who are knowledgeable about the tool, as there are very few left."
"We would like to see support for non-Windows environments."
"We had some connections issues with the solution at the beginning."
"Customizing our commands should be simpler. Creating custom commands in Splunk requires a long, complex process. For example, we have a command to add all the column data, but we don't have a command to get the average of the column data at the end. It would be useful to have a blank at the end to create our commands and leave the rest to others."
"While Splunkbase (the app repository) has a lot of great content, some apps are terribly old and could stand to be updated or purged."
"Splunk's high cost, despite its recognition in our region, prevents many organizations from adopting Splunk Enterprise Security, suggesting there's room for improvement in their pricing strategy."
"Given the ever-increasing number of threats, I would like Splunk to update its threat signatures more frequently."
"Splunk Enterprise Security can be improved mainly from the user interface regarding the visualizations."
"The only improvement I am expecting is the cost of the licensing. Clients are going to other solutions just because of the cost."
"At Splunk .conf24, I saw a demo for Splunk Enterprise Security 8. All the things that they have done in Splunk Enterprise Security 8 are what it can be better at."
 

Pricing and Cost Advice

"If I compare with other vendors, other vendors are more expensive"
"Not expensive."
"Compared to other tools, OpenText Real User Monitoring is an expensive solution."
"The price is approximately €30,000 ($35,500 USD) for the enterprise edition."
"It is not cheap."
"The variables and the flexibility that Splunk provides are helpful, especially in a hybrid and multi-cloud environment."
"Splunk can be an expensive solution. It all depends on how we configure the alerts and the events from the endpoints. You can save some money if you do that correctly. If not, it becomes an expensive solution."
"Splunk Enterprise Security's pricing is based on data volume, which generally suits large enterprises."
"It can be tough to determine if you are getting all of the value out of your investment at times."
"Splunk Enterprise becomes extremely expensive after the 20GB/month license."
"Our ROI is high."
"While Splunk is more expensive than other solutions, we would still choose it because of its capabilities."
report
Use our free recommendation engine to learn which Application Performance Monitoring (APM) and Observability solutions are best for your needs.
860,711 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
26%
Manufacturing Company
9%
Government
8%
Energy/Utilities Company
7%
Computer Software Company
14%
Financial Services Firm
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What needs improvement with Micro Focus Real User Monitor?
The diagnostics perspective, particularly in terms of the root cause analysis of failures, should be improved. There needs to be more development in this area, as the support and the number of peop...
What is your primary use case for Micro Focus Real User Monitor?
The use case is about user-level monitoring and the availability of a service for a user. It's about whether the service is available, its performance, and the type of errors a user is receiving, f...
What advice do you have for others considering Micro Focus Real User Monitor?
I rate the solution as nine. It is a good product. Everyone should have it as it is essential today, but choose the vendor accordingly. I'd rate the solution nine out of ten.
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Micro Focus Real User Monitor, Micro Focus RUM, HPE RUM
No data available
 

Overview

 

Sample Customers

Avea, Maccabi Healthcare Services, TEB
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about OpenText Real User Monitoring vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
860,711 professionals have used our research since 2012.