Sumo Logic a top class log collector and log query
What do you like best about the product?
Sumo Logic has a query language that is easy to learn. It queries returns fast results. One of the many features of Sumo Logic is that it ingests logs from many different sources. It does have support for many data sources which reduces the time one would have to spend with any customization. When troubleshooting issues one can turn to Sumo Logic logs to investigate to norrow down what happened at a particular time. In my organisation we use Sumo Logic to ingest Active Directory logs and query for events relates to user(s) when investigating user activities.
What do you dislike about the product?
Some of the things that I don't like about Sumo Logic is that it's cost is higher than similar tools. The customer support for Sumo Logic is not that great. As an enterprise custom I expected a higher quality of service. There is not much for out of the box reports or dashboards.
What problems is the product solving and how is that benefiting you?
Sumo Logic helped with complimenting the SIEM solution used. It is used to ingest the logs for Critical Infrastructure. For example, we use Sumo Logic to ingest Active Directory logs. Therefore, Sumo Logic is used as a log repository and also used to investigate events related to user activities. We also use Sumo Logic when looking for events related to specific applications that are Critical Infrastructure components and it is easy to quickly parse the logs and get results in a timely manner.
There are no comments to display