- Support
- Downloads
- Purchasing
How does GFI EventsManager compare to GFI LANguard S.E.L.M.?
The information in this article applies to:
- GFI EventsManager 7
- GFI LANguard Security Event Log Monitor 5
Article ID: KBID002879
Query keywords: Compare
This article compares the features provided by GFI EventsManager to the features provides by GFI LANguard S.E.L.M. As can be seen below, GFI EventsManager provides a more complete monitoring system presented in a user friendly format.| GFI EventsManager | GFI LANguard S.E.L.M. | |
| Operational - Scanning and performance | ***** | ** |
| Support for standard windows logs (EVT format) | Yes | Yes |
| Support for custom windows event logs (EVT format) | Yes | No |
| Support for Syslog messages | Yes | No |
| Support for W3C and W3C EXT log files | Yes | No |
| Multithreaded processing engine | Yes | No |
| Events processed per hour | 6,000,000 | 350,000 |
| Operational – Processing and notification | ***** | *** |
| Event processing rules – available fields | Any field (type, user, source, etc) | Any field (type, user, source, etc) |
| Event processing rules – available values | Ranges or enumeration of values per rule | Single value per rule |
| Event processing rules – wildcards support | Yes | No |
| Event processing rules – extended tags level support. | Yes | Yes |
| Support for triggering thresholds by number of occurrences per period of time for the processing rules (get notified only once every X occurrences during Y time interval) | Yes | No |
| Action profiles applicable to event processing rules | Yes | No |
| Notification via run file | Yes | Yes |
| Notification via Email (text /html) | Yes/Yes | Yes/No |
| Notification via SMS | Yes | No |
| Customization of notification messages | Up to 15 different event tags | Up to 5 different event tags |
| User experience – User interface and real time monitoring | ***** | ** |
| User interface | Custom | MMC Console |
| Amount of data handled by the user interface | High Load | Medium Load |
| Real time activity monitor (activity / activity details / queued jobs / operational history) | Yes/Yes/Yes/Yes | Yes/No/No/Yes |
| Real time activity monitor – pie charts (global event count per log / event type count by classification / windows event count by event log) | Yes | No |
| Real time activity monitor (activity overview / overall statistical graph for the event count / per computer statistical graph for the event count ) | Yes | No |
| Real time activity monitor – operational status shown for | Service, Database Server, Syslog server | No |
| Real time activity monitor – errors shown | Scanning errors, Database errors, Syslog server errors | Scanning errors |
| User experience – Usability and default configurations | ***** | *** |
| General configuration – easy to configure | Dashboard and Wizards | Wizards |
| Default processing rules range for system health, security and important activity handling. | ***** | ** |
| Default processing rules for noise reduction | ***** | ** |
| Default processing rules for Cisco PIX | Yes | No |
| Range of default filters for data collected (click and analyze relevant data only) | ***** | ** |
| Out of the box pre-configured computer group types (DC / Web Servers etc) | Yes | No |
| Operational mode designed specifically for archiving everything easily (easy legal compliance) | Yes | No |
| Database backend | ***** | **** |
| Support for SQL Server/MSDE versions | 7 / 2000 / 2005 | 7/ 2000 |
| Support for MS Access database | No | Yes |
| Support for custom database name | Yes | No |
| Reporting capabilities – Default reports | ***** | ** |
| Default reports available – account usage | Successful / failed logons, logon count, account lockouts | Successful /failed logons, account lockouts |
| Default reports available – account management reports | User / Computer accounts, Password changes, Group management | User accounts |
| Default reports available – Policy changes | Audit, domain policy, user rights assignment, system access, EDR, IPSEC, Kerberos | No |
| Default reports available – Object access | Successful / Failed attempts to access files and registry, object deleted | Successful / Failed attempts to access files and registry, object deleted Successful / Failed object open events |
| Default reports available – Application management | Applications installed / removed, applications crashing or hanging | No |
| Default reports available – Event logging system reports | Event Log health, audit log cleared, Event Log service errors | Audit log cleared |
| Default reports available – Print | Printing activity | No |
| Default reports available – Trend reports | Generic windows events trend per various time intervals | No |
| Default reports available – All critical events | Covering windows logs (all), W3C and Syslog. Customizable to include non critical events | No |
| Reporting capabilities – Formatting, customization and scheduling | ***** | *** |
| Visually concise reports containing - Pies / charts / tops / lists / trend graphs | Yes/Yes/Yes/Yes/Yes | No/No/No/Yes/No |
| Report customization – Sorting / Grouping / Filtering / time interval | Yes/Yes/Yes/Yes | No/No/Yes/Yes |
| Report customization – custom reports retention | Yes | No |
| Favorite reports | Yes | No |
| Visually concise HTML page to help interpretation of each report | Yes | No |
| Translation of cryptic messages | Yes | No |
| Sample reports for preview and analysis | Yes | No |
| Data amount handled | Large data | Medium data |
| Report printing | Yes | Yes |
| Email a report generated in the UI | Yes | No |
| Schedule report generation | Yes | No |
| Scheduled reports retention | Yes | No |
| Send scheduled reports by email | Yes | No |
| Export reports to PDF/DOC/HTML | Yes | Yes |