Splunk Enterprise review
March 06, 2020

Splunk Enterprise review

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Overall Satisfaction with Splunk Enterprise

Currently our bank has different departments with their own Splunk infrastructure. We are currently building a larger infrastructure to incorporate all departments to join this centralized infrastructure with Splunk Enterprise. As Splunk is used for log analyzing, it is used for reports on different metrics built from logs collected from different servers. We try to consolidate the logs and put results onto a more centralized data center set as well.

Pros

  • Log analyzing.
  • Reports.
  • Forecast (ML model).

Cons

  • Stability on some components (e.g. indexers).
  • Complexity of install and maintenance of infrastructure.
  • Can generate good and neat reports.
  • Forecast on issues based from log collection and analyzing.
Splunk is a better solution for log analyzing based on the complexity of data it can collect, analyze and store. Dynatrace is just in the beginning stage of collecting logs but this tool is good for user application monitoring. So they are different products and it may not be fair to go for an apple to apple comparison. That's why our bank is using both for a strong end to end monitoring solution.
Support is good and responsive. Even sometimes not the best answers are given from support, they will follow up for questions or issues after. We just lack time to implement all suggested solutions and may not be able to update Splunk version fast enough due to processes that we need to carry.

Do you think Splunk Enterprise delivers good value for the price?

Yes

Are you happy with Splunk Enterprise's feature set?

Yes

Did Splunk Enterprise live up to sales and marketing promises?

Yes

Did implementation of Splunk Enterprise go as expected?

Yes

Would you buy Splunk Enterprise again?

Yes

Splunk is good for log analyzing from enterprise level of applications on different logs and consolidating results as reports. We can use such data to make forecasts for future trends if issues would occur more or less frequently.

Setup and maintenance would not be easy, so always plan ahead. Also always do health check for stability on some of the Splunk components such as indexers and HFs.

Splunk Enterprise Feature Ratings

Centralized event and log data collection
9
Correlation
8
Event and log normalization/management
8
Deployment flexibility
6
Integration with Identity and Access Management Tools
7
Custom dashboards and workspaces
9
Host and network-based intrusion detection
7

Comments

More Reviews of Splunk Enterprise