We performed a comparison between Splunk Enterprise Security and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We can quickly search for almost anything across many log sources in seconds."
"The most valuable features of the solution are it is straightforward to use and the documentation is good for finding out how to get the data you are looking for."
"The initial setup isn't overly complex."
"Integration with the cloud is pretty important and good for us. We found the integration with a lot of tools, not all tools yet, valuable. It does make the transfer of data, log files, and other things easier for us."
"Good for log collection and log management."
"The correlation capabilities are the first value that our clients say they like with Splunk."
"I like Splunk's data aggregation and search capabilities."
"It allows us to digest the information, the data, the different data streams, so we can make decisions based upon information that we receive, and it is pretty robust."
"The root cause analysis feature is very valuable."
"The interface of the solution is good."
"It gives the customer a quick overview, so they don't have to dig. There's a clear dashboard with many sensors in a single space. He gets a helicopter view of his environment, but he can investigate further if there are serious issues. It's pretty user-friendly."
"It allows us to gain a comprehensive overview of our infrastructure."
"What I like is that you can have different storage locations for different applications."
"It is a highly stable solution...It is a highly scalable solution."
"The system's management and its alerts are the most valuable aspects of the solution."
"It is very scalable and can handle a large workload."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
"Its interface could be improved."
"An improved user interface along with multi-tenancy support would be beneficial."
"Custom visualizations are real hard. While the default visualizations are good, creating enhanced visualizations are complex."
"I would like to see more SIEM functionality and a better ticket tool."
"It needs more thoroughly tested releases. Every new big version (6, 7, etc.) has had so many bugs that it makes me wary of customers upgrading right away."
"The GUI can be improved. Splunk has always suffered from having a kind of goofy UI, it needs some updating."
"Splunk does not provide any default threat intelligence like Microsoft Sentinel, but you can integrate any third-party threat intelligence with Splunk. By default, no threat intelligence suite is there, whereas, with IBM QRadar or Microsoft Sentinel, the default feature of threat intelligence is there. It is free. If Splunk can provide a default threat intelligence suite, it would be better."
"The monitoring landscape is getting bigger. When it comes to infrastructure monitoring, we need more visibility. VMware needs to integrate more related applications and third-party products. That would make it more appealing to an audience beyond the VMware team."
"I would like to see more tutorials or at least an introduction video from the supplier, so you can become proficient and get the most out of the solution. You might not get the full benefit from a logging or reporting solution because you might not have a particular tool enabled. You could leave something out of your analysis because you aren't aware of it or you don't know how to set it up."
"In the VMware environment, one area for improvement is the handling of VM failovers due to host failures, such as unexpected shutdowns from hardware issues. Currently, High Availability (HA) doesn't seem to recognize whether the VMs are online during failover, treating them as offline or unavailable."
"It needs better integration with third-party analytics tools."
"The dashboard needs to be improved because this is what I need to monitor my infrastructure."
"It's great for VMware, but it would be good if they had third-party logins."
"Technical support should be improved."
"Documentation is lacking, including some guide as to how to use the expressions. It is not clear how to look for a log, for example. Some examples in the documentation might be helpful. I think that VMware had good documentation, but it's no longer hosted. The documentation is not as easy to understand as it was before."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Splunk Enterprise Security is ranked 1st in Log Management with 221 reviews while VMware Aria Operations for Logs is ranked 10th in Log Management with 24 reviews. Splunk Enterprise Security is rated 8.4, while VMware Aria Operations for Logs is rated 8.2. The top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". On the other hand, the top reviewer of VMware Aria Operations for Logs writes "Gives a clear forecast about existing machines, and has an automation feature that helps in reducing a lot of ambiguities and managing operational efficiencies". Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel, whereas VMware Aria Operations for Logs is most compared with Elastic Security, LogRhythm SIEM, Graylog, IBM Security QRadar and Wazuh. See our Splunk Enterprise Security vs. VMware Aria Operations for Logs report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.