Microsoft Defender for Identity and Microsoft Entra ID Protection compete in identity security solutions. Microsoft Defender for Identity appears to have the upper hand with its comprehensive integration within the Microsoft ecosystem, whereas Microsoft Entra ID Protection is known for its multifactor authentication and governance features.
Features: Microsoft Defender for Identity provides integration with other Microsoft Defender components, comprehensive identity security monitoring, and advanced threat detection, which include highlighting risks like privilege escalation and improper decommissioning with real-time analytics. Microsoft Entra ID Protection offers multifactor authentication, conditional access, and the ability to manage both cloud and on-premises resources effectively.
Room for Improvement: Microsoft Defender for Identity could improve its on-premises integration and reduce false positives. Suggestions also include better threat intelligence and reducing dependencies on other Microsoft products. Microsoft Entra ID Protection could enhance hybrid connectivity and support for non-Microsoft applications. There's a need for clearer licensing models and improved log retention.
Ease of Deployment and Customer Service: Microsoft Defender for Identity offers flexibility in various environments but can face integration challenges with on-premises systems. Customer support varies; high-quality support is accessible, though reaching the correct channels can be slow. Microsoft Entra ID Protection is praised for knowledgeable assistance but has varying response times depending on subscription tiers, affecting issue resolution.
Pricing and ROI: Microsoft Defender for Identity is affordable within the E5 licensing stack but expensive when integrated into services like Sentinel. Its ROI is justified by effectiveness in breach prevention. Microsoft Entra ID Protection is competitively priced for enterprise solutions but perceived as having a complex pricing model. It offers valuable identity protection and governance features, providing measurable ROI through incident prevention.
There is a return on investment in terms of time-saving, control, and ease of manageability of the environment.
Generally, the support is more effective than other providers like Oracle.
The quality of support is very good, but troubleshooting can take time due to complex setups and the need to provide many logs.
They often refer to internal blogs, which doesn't offer much new information and can limit our capabilities in troubleshooting.
Tickets often bounce from person to person, requiring the sharing of information multiple times.
My teammates have had good communication with Microsoft.
In a Microsoft-centric organization, especially with Azure infrastructure and Office 365, Microsoft Defender for Identity is scalable.
Since it is a cloud computing product, it can accommodate a range of company sizes, from a few users to large businesses.
Microsoft Defender for Identity is quite robust and built on Azure hyperscale infrastructure, with a 99% availability.
We do not see any issues with the stability of Microsoft Defender for Identity.
Having recently started using it, reliability is affirmed, but manual investigation is often performed to verify if alerts identified by auto-remediation are accurate.
If Microsoft could develop a feature that indicates when impossible travel is caused by VPN connections, it would prevent unnecessary password resets and session disruptions, especially for VIP users in organizations.
One improvement I would recommend is the integration of an admin application within Teams, allowing easy access to attack information on a mobile platform.
Reducing false positives is something we've been working on with Microsoft.
Microsoft has not offered control over how they calculate high or low-risk scenarios.
There is no write-back feature from the cloud to local, which would allow me to use my own credentials from the cloud tenant securely.
Identity protection and trust issues, particularly in hybrid environments, could be addressed better with Microsoft Entra ID Protection.
If they can reduce the costs, organizations will be happy, and it will compensate for using the Azure environment, which is more expensive on the infrastructure as a service side.
Ensuring a fair price according to market standards.
From an organization perspective, using E5 licenses is value for money, especially if Azure and Office 365 are already in use.
Entra ID Protection is not badly priced, but some clients, especially in medium to smaller scale companies in third-world countries, find it quite expensive.
Microsoft Entra ID requires additional licensing components.
The pricing for Microsoft Entra ID protection is not expensive.
We receive an advance report of risky users, allowing us to take preemptive action before an attack causes damage to organization details.
The most valuable feature is its hybrid artificial intelligence, which gathers forensic data to track and counteract security threats, much like the CSI series in effect.
The advanced threat protection is one of the strengths of Microsoft Defender for Identity, as it utilizes user and entity analytics and can detect indicative attacks.
Having a single sign-on feature with Entra ID ensures seamless access to various applications, even those with significant security constraints.
These features ease the job of security analysts, providing a better vision of user activities and potential risks.
The valuable features of Entra ID Protection include providing me visibility of my entire estate, managing access, and having a level of control.
Microsoft Defender for Identity integrates with Microsoft tools to monitor user activity, providing advanced threat detection and analysis using AI. It enhances proactive threat response and security visibility, making it essential for securing on-premises and cloud environments like Active Directory.
Microsoft Defender for Identity offers comprehensive monitoring and AI-driven user behavior analysis. It detects threats through real-time alerts and identifies lateral movements and entity tagging, ensuring robust security management. With excellent visibility via its dashboard, it supports customized detection rules and seamlessly integrates with SIEM platforms. While SecureScore and SecureScan provide robust environment security, there is room for improvement in cloud security, on-premises application integration, and remediation capabilities. Azure integration is limited, and the administrative interface could be more user-friendly. Users experience frequent false positives, affecting threat detection efficiency.
What key features stand out in Microsoft Defender for Identity?In specific industries such as education and finance, Microsoft Defender for Identity is crucial for securing on-premises Active Directory and Azure Active Directory environments. It effectively detects suspicious activities and manages conditional access policies, offering user and entity behavior analytics, endpoint detection and response capabilities. This helps prevent unauthorized access and strengthens overall security, making it an invaluable asset for organizations aiming to safeguard their digital infrastructure.
Microsoft Entra ID Protection enhances security with advanced identity controls and seamless integration across environments. It ensures robust protection via multifactor authentication and single sign-on capabilities, safeguarding enterprises' sensitive information efficiently.
Microsoft Entra ID Protection offers comprehensive identity management and privileged access management features, making it critical for businesses transitioning to hybrid models or cloud solutions. Utilizing multifactor authentication, single sign-on, and security policy creation, it excels in securing access across both on-premise and cloud platforms. By integrating with Microsoft Defender, it enhances security measures. While it is highly effective, areas for improvement include identity labeling, password management, and more straightforward third-party integrations. Expanding access to Mac devices and simplification of the licensing model are also areas to be addressed for improved scalability.
What are the key features of Microsoft Entra ID Protection?In industries such as finance and healthcare, entities leverage Microsoft Entra ID Protection to maintain stringent access controls, optimize privileged access management, and facilitate smooth transitions to cloud environments. They utilize its integration with Azure AD to ensure comprehensive identity protection while aligning to compliance requirements specific to their fields.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
