We performed a comparison between OpenText SiteScope and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Application Performance Monitoring (APM) and Observability solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Has a simple setup. It can be up and running within hours."
"Simplest tool for monitoring servers, web content, databases and other hardware. Its dashboard is really good."
"Infrastructure monitoring is the most valuable feature."
"It has multiple monitors that can be deployed OOTB, which includes basic system monitors for CPU, Disk, Memory, NIC's, etc."
"Our experiences with Micro Focus SiteScope have been mostly positive as we can easily work with multiple monitors and different types of monitors pretty quickly. There are a lot of out-of-the-box solutions for us through Micro Focus SiteScope, so we don't have to do that much custom coding for the vast majority of requests that we get for monitoring. There are some limitations that we've run into and some problems every once in a while, but they've been relatively minor."
"It can monitor over a 100 technologies with built-in solution templates."
"The most valuable feature of OpenText SiteScope is that it is easy to manage and user-friendly."
"The product's readymade templates are perfect. It supports us a lot when we don't have much experience with the product. The templates offers us direction to proceed."
"The solution helped reduce our alert volume."
"The product is good, it satisfies our customers."
"It provides logs in one place, so they are easy to find. It collects the logs from multiple places, then you have just one place where you see the whole flow from the front-end to the back-end."
"We can easily configure things as required in relation to our use cases."
"It is quite extensible. It is a platform that we can build our use instead of each case instead of each case being limited or restricted to each capability. This is probably the best feature."
"The technical support is among the best in the market."
"The feature that we use the most is the correlation search engine within ES."
"The most valuable features in Splunk are the search function and the ability to run selected session reports. The session reports are important because I can use them to see what is going on in our environment weekly. Additionally, we can use the graph to see how often that particular event is happening."
"In terms of issues with Micro Focus SiteScope, some that we've run into were unintended, for example, extra executions of monitors and some false alerts when there were problems connecting to endpoints or there were issues with the application that sometimes resulted in false positives. We had a few issues with the way time zones were configured when the system time differed from the time indicated during the monitoring, but those were just little things that weren't too bad. As far as the limitations of Micro Focus SiteScope, the types of scripting files that can be executed are rather limited unless you go to some third-party plugins. These are the areas for improvement in the solution."
"The lack of an agent means that remote monitoring requires multiple firewall ports to be opened."
"They need to offer better technical support, which, right now, is not helpful or responsive."
"It should improve its integrations with various tools, especially service management tools."
"They have not kept up with browser security requirements or advances in GUIs, they switched to a corruptible database architecture instead of text config files."
"We have four or five data centers around North America where we have it deployed into a single or a two-server primary backup type of deployment. All those are made available under a single GUI provided by Micro Focus that allows you to put them all together. A room for improvement would be an appliance or a server that would manage all of our other servers so that I don't have to remember to log on to all different servers and data centers. I could manage them from a single location."
"SiteScope isn't productive if you want to monitor RAM or if you want to monitor some URL."
"They should provide more templates for new vendor devices."
"I think the tech support response time could be a bit better. Sometimes I need to wait more than 24 hours for a response to my tickets."
"I would like to see ability to master management. In terms of clustering, how it manages clustering needs improvement."
"One issue is that we are getting a lot of false positives. We are trying to reduce them by customizing the default rules, changing thresholds, and using white-listing and black-listing. It's getting better and better as a result. But they need to build components that would reduce the false positives."
"Splunk does not build apps. They only go back and validate the apps that somebody has already built. They should have remote consulting support. They have a wonderful solution. They have 24/7 security. Nobody needs to depend on any third party and will therefore just buy Splunk on the cloud."
"Delays in responses from the technical team can pose challenges for both vendors and clients, especially considering that Splunk applications and machine solutions are critical assets."
"Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful."
"Splunk is very expensive. The license is based on the volume of the logs ingested. I was responsible for managing the contract with our service integrator. I don't know the precise details of the competing solution, but I have heard that Splunk is more expensive than others. I don't know what the going rate is on the market, but I think there are at least two competitors that are less expensive. We have experienced a few issues with our service providers in terms of log filtering and ingestion, so we continue to pay a bit more per day for our logs."
"Spam has different plugins but by default, the logs are not organized, it shows that there are roll-ups that are out of the box. I saw many plugins that can help improve or extend Splunk's functionality but I haven't tried any of them."
OpenText SiteScope is ranked 28th in Application Performance Monitoring (APM) and Observability with 24 reviews while Splunk Enterprise Security is ranked 2nd in Security Information and Event Management (SIEM) with 228 reviews. OpenText SiteScope is rated 7.6, while Splunk Enterprise Security is rated 8.4. The top reviewer of OpenText SiteScope writes "Doesn't require much custom coding and can run on different platforms, but the types of scripting files you can execute on it are limited". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". OpenText SiteScope is most compared with Dynatrace, SCOM, AppDynamics, Prometheus and Azure Monitor, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security. See our OpenText SiteScope vs. Splunk Enterprise Security report.
We monitor all Application Performance Monitoring (APM) and Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.