Configuration
Home » System Requirements
 

System Requirements

Databases

Log360 can use the following databases as its back-end database.

Bundled with the product

  • PostgreSQL

External databases

  • Microsoft SQL 2008 & above
  • PostgreSQL: 10 to 14

Product Requirements

Minimum Recommended
Product CPU RAM Disk
Log360 2 Core 4 GB 50 GB
EventLog Analyzer 8 Core 12 GB The RAM requirement varies depending on the log flow rate and the retention settings configured for Elasticsearch (ES). 400 GB The disk space requirement varies based on the log flow rate and the retention settings configured for Elasticsearch (ES) and Archives.
ADAudit Plus 4 Core 8 GB 50 GB
M365 Manager Plus 4 Core 8 GB 200 GB
UEBA 2 Core 4 GB 40 GB
Product CPU RAM Disk
Log360 2 Core 4 GB 50 GB
EventLog Analyzer 20 Core 48 GB
  • The RAM requirement varies based on the log flow rate and the retention settings configured for Elasticsearch (ES).
  • The specified RAM is designed to handle real-time log processing and search operations for up to 2TB of data.
  • For searches spanning multiple days (>2TB of data), the required RAM can be calculated as: (Index Data Size in GB / 60) + 16 GB.
 4 TB
  • The disk space requirement depends on the log flow rate and the retention settings configured for Elasticsearch (ES) and Archives.
  • Disk space is calculated based on a high log flow with a retention period of 1 year for Archives and 32 days for ES.
ADAudit Plus 8 Core 16 GB 100 GB
M365 Manager Plus 6 Core 16 GB 500 GB
UEBA 8 Core 8 GB 100 GB
 System Resource Calculator
Note:
  • Use the recommended specifications for a production environment. The minimum requirements are suitable for customers with low log flow or those who are evaluating the product.
  • It is advisable to install EventLog Analyzer on a dedicated machine.
  • Using an SSD is strongly recommended for optimal performance.
  • Disk space and RAM requirements depend on the flow rate (EPS) and the retention period configured for Archives and Elasticsearch (ES) in EventLog Analyzer.
  • If Log360 and EventLog Analyzer are installed on separate servers, ensure that the Log360 server meets the Additional ES Node Recommendation to support the Master ES Node.
  • For each integrated product, refer to the individual product recommendations below for fine-tuning configurations.

EventLog Analyzer: https://www.manageengine.com/products/eventlog/system_requirement.html

M365 Manager Plus: https://www.manageengine.com/microsoft-365-management-reporting/system-requirements.html

Active Directory AuditPlus: https://www.manageengine.com/products/active-directory-audit/system-requirements.html

Log360 UEBA: https://www.manageengine.com/log-management/ueba/help/system-requirements.html

General Recommendations

VM infrastructure

  • Allocate 100 percent RAM/CPU to the virtual machine running EventLog Analyzer. Sharing memory/CPU with other virtual machines on the same host may result in RAM/CPU starvation and may negatively impact EventLog Analyzer's performance.
  • Enabling VM snapshots is not recommended as the host duplicates data in multiple blocks by increasing reads and writes, resulting in increased IO latency and degraded performance.

CPU & RAM

  • Server CPU utilization should be maintained below 85% always to ensure optimal performance.
  • 50% of server RAM should be kept free for Off-heap utilization of Elasticsearch for optimal performance.

DISK

  • Disk latency greatly affects the performance of SIEM solutions. Direct-attached storage(DAS) is recommended on par with an SSD with near zero latency and high throughput. An enterprise SAN can be faster than SSD.

Log360

  • Log360 components are resource intensive processes. It is recommended to provide each component with a dedicated server for better performance.
  • It is recommended to split the load with Multiple ES Nodes, with Each node handling 800GB - 1.2 TB of Data.
  • Log360 uses Elasticsearch, which is expected to utilize off-heap usage for better performance. Off-heap usage is maintained by OS and will free up when necessary.

Additional ES Node Recommendations:

Hardware Minimum Recommended
Base Speed 2.4 Ghz 3 Ghz
Core 12 16
RAM 64 64
Disk Space 1.2 TB 1.5 TB
Disk Type SSD SSD

Software Requirements

ManageEngine Log360 supports the following Microsoft Windows operating system versions:

  • Versions requirements for Evaluation
    Windows 8 & above (or) Windows Server 2012
  • Version requirements for Production
    Windows Server 2022/ 2019/ 2016/ 2012 R2/ 2012
Note: Additionally ELA can also be installed in Linux: Red Hat 8.0 and above/all versions of RHEL, Mandrake/Mandriva, SUSE, CentOS, Ubuntu, Debian

Supported Browsers

ManageEngine Log360 requires one of the following browsers to be installed on the system to access the Log360 web client.

  • Microsoft Edge
  • Firefox 4 and above
  • Chrome 10 and above
  • Safari 5 and above

System Resources Calculator 

Select Modules:
Calculate
 
System Requirements:
Hardware Minimum Recommended
Processor - -
Core - -
RAM - -
Disk Space - -
Disk Type - -
Note: Need high configuration system for your requirements. Split-up Server
Note: Need high configuration system for your requirements. Split-up Server
Select Modules:
Calculate
 
System Requirements:
Hardware Minimum Recommended
Processor - -
Core - -
RAM - -
Disk Space - -
Disk Type - -
Select Modules:
Calculate
 
System Requirements:
Hardware Minimum Recommended
Processor - -
Core - -
RAM - -
Disk Space - -
Disk Type - -

Awards & recognition

ManageEngine named in 2024 Gartner MQ for SIEM Gartner Peer Insights Customers′ choice for SIEM

2022 gartner siem mq

Dark web monitoring ebook

Features

Support

Secure your IT infrastructure with a cloud SIEM solution

Solutions by industry

Related solutions

One-stop solution to all Log Management and Active Directory Auditing

Free Trial Get Quote
Email Download Link
Back to Top