IT Central Station is now PeerSpot: Here's why
2022-05-02T22:04:00Z

Which Windows event log monitoring tool do you recommend?

PresidentPresident at TSG Networks
70

Hi community,

The GDPR compliance is demanding that we use automated event log monitoring on our 8-9 servers. 

Which tool would you recommend using for this  Windows environment? Why?

Thanks in advance for your help!

PeerSpot user
Guest
57 Answers

Doug-Smith - PeerSpot reviewer
User

That would also depend on how much the budget will support and how granular you want to get. 


If you want a full solution that will be significantly more than a patched-together solution using open source tools and Windows native logging tools. 


What specifically are your objectives? Do they want to scan events for PII, health data, simple website cookies and expirations? 


This is a complex question and much more detail, in a general sense, is needed for proper context.

2022-05-04T20:04:26Z
Herb Burt - PeerSpot reviewerHerb Burt
User

@Doug-Smith  Good questions.  
I am not sure, we want to do as much as we need to pass GDPR audits!  
I will go back to the regulations and see if there is more detail.  

Doug-Smith - PeerSpot reviewer
User

SolarWinds is a good choice. Some others to consider are Splunk, Graylog, IBM QRadar and SumoLogic. The last is interesting because it is relatively easy to configure and you can add other open source logging tools, like PacketBeats, which is a lightweight packet shipper. 


As you scale up, it is easy to scale with you and is very versatile.

2022-05-11T19:49:50Z
Gloria Burt - PeerSpot reviewer
User

 I really only want a simple tool that will help us save time on monitoring event logs.  It should point out anomalies -- that is all.

2022-05-09T21:35:46Z
PrasanthPrasad - PeerSpot reviewer
Real User

Hi, 


It depends on what you need to monitor, how much data is being generated and how many open-source capabilities and/or skill sets you have. 


If you are looking at starting low, but have a good open source capability, then I can recommend a few solutions, that you can start for free, but can then scale to a very enterprise solution. 

2022-05-05T11:35:49Z
reviewer975090 - PeerSpot reviewer
Reseller

SolarWinds SEM (Security Event Manager) is quickly implemented, easy to understand and will do the job regarding GDPR and other compliance regulations.


Getting events from Windows Servers is an easy task with the Agent.


If you have more time for the topic and are more into deep data analytics probably other solutions may be more satisfying.

2022-05-04T14:16:21Z
reviewer1315998 - PeerSpot reviewerreviewer1315998 (Channel Manager at a tech services company with 11-50 employees)
Reseller

@reviewer975090 I do agree! It´s a deep solution that is gonna give you a full report of what is going on in your network. If those servers are virtual, there are more options.

Buyer's Guide
Server Monitoring
May 2022
Find out what your peers are saying about Zabbix, Microsoft, SevOne and others in Server Monitoring. Updated: May 2022.
606,596 professionals have used our research since 2012.