Nagios Core vs. SolarWinds Security Event Manager (SEM)

Nagios is simply a very configurable and rock solid monitoring engine. For these reasons I would recommend it to any IT professional in any medium to large organization where creating custom checks and programming ones custom needs into the configuration is practical. I would be more hesitant to recommend it as a first monitoring solution for a small business which is usually accompanied by a less experienced and/or more time constrained admin.

Incentivized

Solarwinds SEM is great for generating reports for investigation purposes. Once you set up the connectors you can walk away and the product runs without needing maintenance. It was however pretty difficult to create the reports and alerts when now starting out and it can be very intimidating for new users.

Incentivized

• Network and server status alerts if a device is in a down state.
• Gives you the top view down of your entire network infrastructure.
• It can be customized to your exact needs.
• You have two options of agentless and agent monitoring.

Incentivized

• SolarWinds easily provides the much needed visibily into changes in an Active Directory (AD) environment. Email alerting can be configured to alert a team if an account is locked out, disabled by another users, or if users and/or computers accounts are created.
• SolarWinds allowed a searchable audit feature. Microsoft Windows can be configured to log many different parts of a system, but search those logs can be difficult. SEM allows you to search for specific users or events.

Incentivized

• It's built by engineers for engineers so setting it up and configuring it is relatively complicated. It could really use a simplified configuration approach, or a GUI to set it up instead of editing config files.
• I'd like to see the option to have service notification settings inherited from the host setting notifications. They have to be set up separately but they are often the same, so it would be nice to have less redundancy.

Incentivized

• Compared to other SIEMs, there are features that are missing. Machine learning, automatic event correlation, ability to correlate multiple sources together.
• The UI is clunky, and the *New* event log analyzer page felt really disjointed from the rest of the product.
• In my experience, the dashboards were almost unusable. They persisted across login per device, and even then they sometimes would reset and go back to the ''Getting Started'' look.

Incentivized

We're currently looking to combine a bunch of our network montioring solutions into a single platform. Running multiple unique solutions for monitoring, data collection, compliance reporting etc has become a lot to manage.

Incentivized

It is pretty likely that we will renew SEM when the time comes up. It is easy to use and maintain so there isn't much of a need to replace this product. It is also a pretty fair price for the capabilities provided by the SEM

Incentivized

The Nagios UI is in need of a complete overhaul. Nice graphics and trendy fonts are easy on the eyes, but the menu system is dated, the lack of built in graphing support is confusing, and the learning curve for a new user is too steep.

Incentivized

It is very good - but you get what you pay for. The intent is not for a Fortune 500 that needs more "heavy lifting" with SolarWinds Security Event Manager & for whom the price tag is not (much of) a consideration.

Incentivized

I haven't had to use support very often, but when I have, it has been effective in helping to accomplish our goals. Since Nagios has been very popular for a long time, there is also a very large user base from which to learn from and help you get your questions answered.

Incentivized

The quality of support can vary depending on whom you end up speaking with. I was fortunate enough to work with a support representative who was very familiar with the product. He had even authored some of the support documentation on the website. On the flip side, I had two other experiences where I was simply directed to online training material.

Incentivized

We have tested several other monitoring products which were able to monitor the basic matrix (Memory, DiskUsage, CPU%, UpTime, Running Service Status, Port 80 Up/Down). Although some offered far better UIs, they lacked the ability to monitor ANYTHING. Zabbix, being the only contender worthy of competing, is a good alternative to Nagios. We also tried Zenoss Core & OpenNMS which were good enough for non-Linux engineers to get started with. OP5 was another service-oriented monitoring solution we evaluated. Apart from Nagios, Consul is heavily used to monitor & register the micro-service systems & end-point URLs. Due to the time invested (9+years) in Nagios, we were able to get more components installed/configured easily than alternatives.

Incentivized

The compare well against the others - the pricing models for all but Splunk (free version) are based on EPS/TB consumed... the problem they pose is guesstimating the price tag per month. SolarWinds Security Event Manager gets around that.

Incentivized

• With it being a free tool, there is no cost associated with it, so it's very valuable to an organization to get something that is so great and widely used for free.
• You can set up as many alerts as you want without incurring any fees.

Incentivized

• It saves a lot of time when we had issues trying to figure out where the user account lockout was coming from.
• With it being an affordable SIEM, we are able to have the ability to do the actions associated with a SIEM and the advantages of not “breaking the bank account”.

Incentivized