| Features | ManageEngine Log360 Try now |
Micro focus ArcSight ESM | |
|---|---|---|---|
| Log collection | |||
| Agentless | |||
| Agent based | |||
| Cross platform log collection |
ArcSight ESM must be used in conjunction with ArcSight Data Platform or any collection system that uses Common Event Format (CEF). |
||
| Heterogeneous device support | |||
| Import logs | |||
| Log filter | |||
| Custom log parser | |||
| Log collection rate | 20,000 logs/second with peak event handling capacity upto 25,000 logs/second. For Windows event logs the EPS is 2000 logs/second. | Depends on the server-based software model. The highest capacity is 12,500 events per second. |
|
| Log formats supported | |||
| Windows event log | |||
| Syslog | |||
| Amazon Web Services (AWS) EC2 Windows instances | |||
| Any format – with custom log parsing and indexing technology | |||
| Application logs supported | |||
Proprietary applications
|
|||
| Database applications: Oracle and MS SQL Server |
|||
| Any in-house or custom application | |||
| Other devices supported | |||
| IBM iSeries (AS/400), And VMware | |||
Custom devices
|
|||
| Reports | |||
| File integrity monitoring | |||
| Canned reports | |||
| Custom reports | |||
| Scheduled reports | |||
| Report distribution via email | |||
| Reports in PDF, CSV, and HTML formats | |||
| Drill down to raw logs | |||
| Filter using mouse gesture | |||
| Management specific reports (Ask ME) | |||
| Trend reports | |||
| Privileged user activity monitoring reports | |||
| Active Directory auditing | |||
| Reports for user, computer, group, and OU management |
(Requires additional license for ArcSight IdentityView) |
||
Reports for auditing other AD object including,
|
(Requires additional license for ArcSight IdentityView) |
||
| Reports on attribute value changes (before and after) |
(Requires additional license for ArcSight IdentityView) |
||
| GPO audit reports |
(Requires additional license for ArcSight IdentityView) |
||
| Member server auditing | |||
| Summary report for member server changes | Not specified | ||
Out-of-the-box reports for
|
Not specified | ||
| File Integrity Monitoring | |||
| Reports on file integrity monitoring | |||
| Report scheduling | |||
| Real-time alerts when critical changes are made to files/folders that are being monitored | |||
| Audit Trail reports on files/folders changes | |||
| Compliance reports | |||
| Canned reports |
ESM optional package (Compliance Automation and Reporting) |
||
| Customizable reports |
ESM optional package (Compliance Automation and Reporting) |
||
| Reports for new compliance |
ESM optional package (Compliance Automation and Reporting) |
||
| PCI-DSS |
ESM optional package (Compliance Automation and Reporting) |
||
| ISO 27001:2013 |
ESM optional package (Compliance Automation and Reporting) |
||
| HIPAA |
ESM optional package (Compliance Automation and Reporting) |
||
| FISMA |
ESM optional package (Compliance Automation and Reporting) |
||
| SOX |
ESM optional package (Compliance Automation and Reporting) |
||
| GDPR |
ESM optional package (Compliance Automation and Reporting) |
||
| GLBA |
ESM optional package (Compliance Automation and Reporting) |
||
| Real-time event correlation | |||
| Event correlation | |||
| Field-level filters to build correlation rules | |||
| Pre-defined rules to detect various attacks, including ransomware, brute-force and more | |||
| User session monitoring | |||
| Log search | |||
| Advanced search using Boolean, wildcards, grouped search, range search, and phrase search | |||
| Formatted logs | |||
| Raw logs | |||
| Save search results as reports and alerts | |||
| Log archival | |||
| Flexible log retention | |||
| Secured (Encrypted) | |||
| Tamper-proof | |||
| Service Provider feature | |||
| User based views | |||
| User based dashboards | |||
| Rebranding | |||
| User Management | |||
| Realm & user based access | |||
| Active Directory based user authentication | |||
| RADIUS server based user authentication | |||
| Implementation | |||
| Easy to install |
(Requires optional packages for functionalities) |
||
| Web based Client | |||
| Appliance | |||
| System Requirements | |||
| Bundled database (PostgreSQL/MySQL) | Not specified | ||
| Windows & Linux platforms support | |||
| 64 Bit support | |||
| Pricing | |||
| Pricing basis | Based on the number of servers, devices & applications | Not specified | |
| Subscription model | Available | Not specified | |
| Perpetual model | Available | Not specified. | |
Log360 is a simple yet powerful security information and event management (SIEM) solution that can help enterprises overcome network security challenges and strengthen their cybersecurity posture. The solution helps you mitigate security threats, spot ongoing attack attempts, detect suspicious user activities, and comply with regulatory mandates.
For more information about Log360, please visit
www.manageengine.com/log-management/Your download should begin automatically in 15 seconds. If not, click here to download manually.
Thank you for your interest in ManageEngine Log360. We have received your request for a personalized demo and will contact you shortly.
Disclaimer: ManageEngine does not guarantee the accuracy of any information presented in this document, and there is no commitment, expressed or implied, on ManageEngine’s part to update or otherwise amend this document. The furnishing of this document does not provide any license to patents, trademarks, copyrights or other intellectual property rights owned or held by ManageEngine.
