Strengths: Advanced Intelligence engine provides more in-depth event correlation.
Weaknesses: None that we found.
Verdict: For its value and feature set, we make this offering our Recommended product this month.
SummaryThe LogRhythm appliance features high-powered functionality to the enterprise in the way of log correlation and full, real-time event analysis with massive bells and whistles. Right out of the box, this appliance not only collects, analyzes and correlates log data, but also encompasses advance functions, such as file integrity monitoring, network and user monitoring, and full-scale compliance reporting.
With all this power, one would think it would be complicated to deploy and manage, but this appliance can be up and running with very little effort. The true power comes by way of a solid dashboard that provides an easy and intuitive way to view data and drill down to see deep into events and get a clear picture of which events took place and how they happened.
This appliance also comes loaded with a full set of preconfigured rules ready to go, and can be easily modified to fit the specific needs of any environment. We also found this solution to offer a multitude of deployment flexibility with several install options.
Documentation included installation, configuration and administrator guides. All these are accessible from the LogRhythm console itself, so there is no need to fumble through several PDFs when looking for configuration information. We found all documentation to be clear and well-organized and to include many screen shots and easy-to-follow configuration examples.
LogRhythm offers standard 11-hours-a-day/five-days-a-week support, as well as platinum 24/7 phone and email technical support as part of an annual agreement. Customers also can access an online portal with other resources, including an online knowledge base.
At a price of $25,000, this appliance is an excellent value for the money. It comes packed with many advanced functions and features that are easy to use and intuitive to interpret.