TrustRadius Insights
Sumo Logic is a versatile tool that is widely used in an enterprise setting by developers, system engineers, management, and InfoSec …
Starting at $3 Per GB Logs
View PricingOverview
What is Sumo Logic?
Sumo Logic is a log management offering from the San Francisco based company of the same name.
Recent Reviews
Pricing
Essentials
$3.00
Cloud
Per GB Logs
Enterprise
$4.00
Cloud
Per GB Logs
Enterprise Security
$4.25
Cloud
Per GB Logs
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Product Demos
Sumo Logic Search Job API
YouTube
Sumo Logic: Unified Logs and Metrics
YouTube
Demo of Sumo Logic Log Reduce - Next Generation Log Analytics
YouTube
Next Generation Log Management & Analytics - Demo of Sumo Logic
YouTube
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Sumo Logic?
Sumo Logic is a cloud-native SaaS analytics platform powered by logs that helps customers deliver reliable and secure cloud-native applications. Sumo Logic helps practitioners and developers to ensure application reliability and security against modern threats and gain insights into their cloud infrastructures. The scalable platform also offers real-time analytics and insights across observability and security solutions for their cloud-native applications.
Sumo Logic Video
Sumo Logic platform intro
Sumo Logic Competitors
Sumo Logic Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
Frequently Asked Questions
Sumo Logic is a log management offering from the San Francisco based company of the same name.
Reviewers rate Support Rating highest, with a score of 8.7.
The most common users of Sumo Logic are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(71)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
- Recommendations
Sumo Logic is a versatile tool that is widely used in an enterprise setting by developers, system engineers, management, and InfoSec professionals. Its primary use case is as a log aggregation tool, allowing users to ingest large amounts of logs and gain visibility into their systems. By centralizing application logs, Sumo Logic aids in troubleshooting, development assistance, security, and compliance efforts. It serves as a reliable troubleshooting tool for technical users and provides valuable insights for analysis and support.
OneLogin, a platform that relies on Sumo Logic, utilizes it to gain advanced visibility into transactions within their platform and extends a limited version to their customers. Users find Sumo Logic's customizable heuristics invaluable for identifying specific event information. The tool enables proactive monitoring and root cause analysis of application problems, offering comprehensive exploration of logs across clusters of machines. Its ability to generate alerts for log errors reduces response time to incidents significantly.
Sumo Logic also fulfills the requests of business users who need simple and quick insights into their IT infrastructure. It empowers them to create customized dashboards to monitor and analyze logs from various environments. The eCommerce department uses Sumo Logic specifically for monitoring application logs, performing ad hoc queries, and setting up alerts for system problems. Overall, Sumo Logic plays an essential role in bringing visibility, improving system performance understanding, aiding troubleshooting efforts, and fulfilling compliance requirements in enterprise settings.
Valuable log ingestion: Many users have found Sumo Logic's ability to ingest logs from their CDN directly, in real-time, to be a valuable feature. This eliminates the need for massive compressed archives that were sent every two hours.
Extensive REST API capabilities: Several reviewers have praised Sumo Logic's REST API for its extensive capabilities in managing log sources, source configurations, dashboard data, searches, and more. They have also noted that the API documentation is consistently updated.
Easy configuration management: Users appreciate the addition of the ability to configure agents via configuration files. This feature allows for easier and more flexible configuration management using tools like Chef, Puppet, or Salt. Some users have specifically mentioned how this has improved their workflow.
Difficult User Management: Many users have expressed difficulty in managing user accounts due to the lack of a User/RBAC API, which made it necessary to manually review user accounts and create spreadsheets.
Limited Collaboration Features: Reviewers have mentioned that the user who creates saved search queries, alerts, reports, or dashboards is the only one who can edit them. This creates difficulties in a collaborative environment or larger enterprise where multiple users may need to collaborate on and modify these assets.
Unpublished Work on User Deletion: Deleting a user account in Sumo Logic causes all the work created by that user to become unpublished and unscheduled. This includes dashboards, scheduled searches, alerting, reporting, and other related assets.
Users commonly recommend the following for Sumo Logic:
-
Use Sumo Logic for log file analysis and other big data projects. It is considered the best solution available in the market for log management and machine data analytics platform.
-
Configure alerts for anomalies/failures and keep logs of different parts of the system to ensure comprehensive monitoring.
-
Take advantage of Sumo Logic's ease of use and advanced features, such as parsing, dashboarding, and alerting. Users should consider taking training provided by Sumo Logic to effectively navigate the platform.
-
Utilize the very responsive support team and benefit from frequent updates provided by Sumo Logic.
-
Set up Sumo Logic properly for future time-saving benefits.
-
Consider Sumo Logic for IT teams as it provides sophisticated analytics and improves security in the cloud.
-
Optimize log writing of applications for cheaper and better log management with Sumo Logic.
-
Use Sumo Logic for monitoring APIs, network monitoring issues, and infrastructure monitoring to make it more efficient.
-
Explore more ways to view and aggregate data in Sumo Logic for better monitoring of systems.
-
Consider the total cost of ownership before choosing a monitoring analytics solution, including capacity planning, data ingest costs, support contracts, time to build out an MVP, familiarity with the data, and cycle time.
-
Work with vendor services for any issues related to search API and dashboard problems.
-
Try Sumo Logic as a good alternative to Splunk if it is not in the budget or if extreme needs are not present. Users also have access to free product certification and training.
Attribute Ratings
Reviews
(1-14 of 14)Companies can't remove reviews or game the system. Here's why
July 22, 2021
Sumo Logic
- Extremely versatile
- Good user management
- Helpful support
- Quite complex set up
- Steep learning curve
July 14, 2021
Best ever log analysis tool.
- Using Live logs are helpful during testing and debugging issue areas.
- Graphs and charts are used for identifying spike areas during any time period
- Querying for particular error or failure messages gives the frequency and how often or how relevant the issue is.
- Can SumoLogic logs be integrated as part of Browser extension. Just a thought, so as we are running the application in UI we can see the live logs.
- In the world of AI, can SumoLogic use some kind of AI to suggest queries or provide some ready-to-use queries. Or also, in addition, can suggest improvements to the existing queries.
June 30, 2021
Sumo Logic--A great tool for anyone using OneLogin
Score 10 out of 10
Vetted Review
Verified User
- Streams logs in near-real-time to the platform
- Allows email alerts based upon log information
- Allows users to create dashboards based upon events
- Searchable event history from logs
- Could possibly place events in more human-readable form
- Could display errors with descriptions instead of just the code
- Probably other areas for improvement on the dashboard functionality
July 15, 2020
The (Sumo) Logic(al) choice
- Searching is powerful and fast and does not require you to pre-filter/pre-parse your data in order to extract fields, filter messages, or run analytics
- User data can be private or shared with the organization, allowing developers to create searches and share them with Support folks.
- It's easy to create email alerts when certain conditions are detected.
- Pricing is per ingested byte, so it forces you to pick and choose what you log, rather than ingesting everything and figuring it out later
March 06, 2020
SumoLogic is a great alerting and log research tool
- Alerts
- Ad hoc queries
- Reports
- Training
- Cost
- UI
March 03, 2020
Desktop Admin in <3 with Sumo, would like to know more!
- It helps our track down laptops that touch our systems
- It helps us decipher laptops that have self-named hostnames
- It helps us track down mac addresses
- I like the help center, but I think if it had more GUI tools, it could help new users.
- Pulling out data is sometimes hard to read, (Maybe if I knew how to export data better, this would not be an issue for me).
- I would like better know-how on how to create reports that will help our business.
May 14, 2019
Sumo Logic for Log processing
- The UI is simple and intuitive
- Data can be searched using simple terms or more complex queries
- We can ingest all of our logs and not lose anything
- There isn't an option to do constant refreshes on a query
- The query language doesn't allow for search by field value automatically
- Automatic tabs is a little clunky
- Activity Tracking
- Realtime/interactive Dashboard
- Aggregation of data into tables and graphs
- Exporting information to be imported into other programs
- Integrates well with our other internal services
- Accessibility of information
- Sumo is very slow compared to other programs like Splunk
- Sumo only holds data for a certain amount of time, so if you want to reference an entry that was logged 6-months ago, you better have saved your logs in an external database somewhere because Sumo no longer has that information
- Automatic parsing of data is not set up in Sumo as opposed to Splunk where it automatically parsed ALL logs
November 14, 2017
Sumo Logic - More than just log aggregation
- Log Aggregation and uploading. The architecture for Sumo Logic makes a great deal of sense and works very well.
- Automated analysis. It still impresses me how well a newly uploaded log can be broken into intelligent parts, then searched and sorted using their tools.
- Dashboards. It might not be what YOU will need as an IT admin, but you can give access to these dashboards easily to business users who love that kind of stuff. Most other types of (monitoring / alerting) tools, for no apparent reason, lack this feature.
- Reporting, monitoring, and graphing. Given, you need to have useful log generation for an application or service as a prerequisite for sumo logic to be able to gain use, once it has it is an amazingly powerful tool.
- I do not think, as I remember, Sumo Logic works well with things that don't generate as a 'standard' of log. Therefore, sumo logics natural limitation is that it works best with pre-existing logs and doesn't do well to monitor a system for other types of events that don't reach a flat file or standardized log format. If you develop mostly internal applications and like to rely on sumo logic, you may find yourselves begging the developers for more useful and cleaner logs.
March 31, 2017
Log all the things with Sumo Logic
- Centralized management, everything can be done from the website.
- Software upgrades of the collectors, once again all done from the website. Easy to identify out of date collectors
- Searching and parsing logs. Very easy run a query logs and quantify the data.
- Changing collectors from web config to local configs could be handled a bit better.
March 27, 2017
The Logical Choice: Sumo Logic
- Detailed insights into API calls.
- Fast and accurate results to specific search parameters.
- Easy to use interface.
- More customizable shortcuts.
- Better UI for time-based searches.
- Adaptive learning for user preferences.
June 02, 2016
Sumologic - logging with limited hassles
- Custom reporting
- Multiple platform access
- Easy setup for consuming log data
- Report engine takes work to create useable info
- User interface needs improvement
- Better training options
- One stop shop to analyze your data.
- Great search tool to drill down to issues/problems you might have.
- Easy interface.
- Can be daunting at first.
- Need to educate people on how the categorizing and searching works.
- Setup can be a bit slow.
February 05, 2016
Sumo Wrestling Your Logs with Sumo Logic
- Sumo Logic allowed for our InfoSec team to ingest logs from our CDN directly, in real-time, instead of massive compressed archives that were sent every two-hours (the only alternative at the time). Sumo Logic had an app for these logs, that allowed us to easily get an immediate payoff from the data, with canned dashboard and saved searches.
- Sumo Logic has a fairly extensive REST API when it comes to log sources, source configurations, dashboard data, searches, etc. Their wiki for the API is usually kept up to date.
- Sumo Logic, during the period of time I had used their product, had added the ability to configure agents via configuration files. This allowed customers to configure their endpoints, and modify the endpoints, with configuration management tools like Chef / Puppet / Salt. Beforehand, the only option was to always make changes either via the web portal or REST API.
- The solutions engineers were extremely helpful, and easily reachable when issues would occur.
- Users at our company found it easy to get started, working on new dashboards, scheduled searches, and alerting. The alerting worked well with our third-party paging tool.
- Sumo Logic, during the period that I used their product (up until at least November 2015), did not have a User / RBAC API. This made it very difficult to manage users (we had about 100 users). Even though they had SAML integration, allowing us to utilize a single-sign on solution, we would have to do manual reviews of user accounts in Sumo Logic on a regular basis. There was no export feature, so it became a matter of copy/pasting all users from the web portal, and creating a spreadsheet out of the data. This was a big pain, as we were all about automation. I had been told that a User / RBAC REST API would be made available sometime during Q1 - Q1 2016.
- The user who creates any saved search queries, alerts, reports, or dashboards, is the only user that is able to edit them. In a collaborative environment, or larger enterprise, this brings a level of difficulty. For example, if an alert breaks and is spamming an inbox/pager, it cannot be edited or stopped unless done specifically by the user who created it. The RBAC has not been improved enough to allow groups/teams/organizations to have ownership over them (as of November 2015).
- If you are to delete a user account in Sumo Logic, as your account is setup to allow a specific amount of user accounts in addition to the storage limits agreed in contract, all of the work they had created for teams -- dashboards, scheduled searches, alerting, reporting, etc. -- all become unpublished and unscheduled. They all become inherited by the user that deletes their account. This may create a mess, as this may now completely stop many useful reports/alerts/dashboards that were being taken care of initially. As a result, deletion of a user who is no longer having access to Sumo Logic (due to leaving the company, or leaving a team the needs access), requires a complete review of everything the user has saved in order to see whether anything needs to be rescheduled for alerting/reporting or republished for dashboard viewing. This is all as of November 2015.
- Purging log data can be extremely difficult. Sumo Logic stores data in a WORM (Write Once, Read Many) type of database. This is done for security reasons, and the database also stores it's data in an encrypted form. If you wish for any data to be removed for any reason, such as PHI / PII / etc. information, you have to wipe out absolutely all data within a time range that Sumo Logic has ever gathered for you. This does not just include the source of the data you are trying to purge, but would include all log data from all sources that you have (even if separately indexed, or partitioned). I am unsure of whether this is still the fact, or if this has at least narrowed down to partition/index, or source.
- In the web portal, Sumo Logic has icons for agents that are working -- green/yellow if I remember right. Source hosts would always show a big green checkmark for health, even if certain sources were completely failing. If Sumo Logic agents are logging errors that logs can't be collected (permissions, some agent issue, etc.), there wasn't a way to visibly see there was an issue unless you were looking for it in logs. This resulted in periods of time where we did not receive logs from many sources. This is hard to alert on, as we found we would have to create a scheduled search of Sumo Logic agent logs that looked for as many error/warning messages as we could, that we knew about. This was incredibly difficult, and unmanageable.