Microsoft Entra ID Governance vs Tenable Cloud Security comparison

Microsoft Entra ID Governance vs. Tenable Cloud Security

Download the complete report

Helped 893,244 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Entra ID Governance

Ranking in Identity and Access Management as a Service (IDaaS) (IAMaaS)

9th

Average Rating

7.8

Reviews Sentiment

6.3

Number of Reviews

Ranking in other categories

No ranking in other categories

Tenable Cloud Security

Ranking in Identity and Access Management as a Service (IDaaS) (IAMaaS)

15th

Average Rating

8.4

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Container Security (23rd), Cloud Workload Protection Platforms (CWPP) (14th), Cloud Security Posture Management (CSPM) (15th), Cloud-Native Application Protection Platforms (CNAPP) (12th), Cloud Infrastructure Entitlement Management (CIEM) (2nd)

Mindshare comparison

As of May 2026, in the Identity and Access Management as a Service (IDaaS) (IAMaaS) category, the mindshare of Microsoft Entra ID Governance is 3.2%, up from 1.5% compared to the previous year. The mindshare of Tenable Cloud Security is 0.9%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Identity and Access Management as a Service (IDaaS) (IAMaaS) Mindshare Distribution
Product	Mindshare (%)
Microsoft Entra ID Governance	3.2%
Tenable Cloud Security	0.9%
Other	95.9%

Identity and Access Management as a Service (IDaaS) (IAMaaS)

Featured Reviews

AmitRathod

Senior Analyst at Toll Holdings Limited

Automated access governance has strengthened security and supports user-centric approvals

The workflows such as joiner, mover, and leaver work in Microsoft Entra ID Governance. Entitlement Management is a bundle of resources where Microsoft Entra ID applications, groups, and SharePoint sites are packaged into a single package so that users can request it. This is one of the great features for Microsoft Entra ID Governance. Another feature is Access Review, which allows an automated schedule to be managed for the manager or resource owner so that they can verify whether people still need access. Privileged Identity Management is another feature for governance that provides just-in-time (JIT) access for administrative roles. For example, instead of being a permanent or global admin, which is a major security risk, an IT professional is eligible for the role and must request four hours of access only when they need to perform a specific task. There is a feature called access package. If any user wants particular application access, they can request this application via Microsoft Entra ID Governance access package. Whenever an end user makes a request, the access goes to one application manager and their current line manager. If they approve it, then they get the application access. This is a very good feature for user-centric purposes. Microsoft Entra ID Governance includes securing AI agent identity. As a company uses more AI generation such as Copilots or custom bots, those bots need their own identity just as employees do. Microsoft Entra now provides a way to assign unique identities to AI agents so you can control what data they can access. Microsoft Entra ID Governance protection now looks for risky behavior in AI agents. If a bot suddenly tries to download an unusual amount of data or unconscious data, it can detect this as a risk detection factor. Security Copilot allows Entra administrators to manage identity with natural language. Microsoft Entra ID Governance has protection and authentication features. Smart risk detection protects and analyzes to detect threats such as impossible travel. If a person is logging in from many different locations, it detects this as a risk factor. A user cannot use an unauthenticated password or log in from an incompatible device. These AI features are used in conditional access management in Microsoft Entra ID Governance. Automation is used for user onboarding, user offboarding, and user update processes through user lifecycle management. If an organization uses Workday as an HR application where new users join and fill in their details, all these details get reflected into Workday and then reflected into Active Directory as well as Microsoft Entra ID Governance. This automation helps to manage the day-to-day user onboarding process, user offboarding process, and user update process. Microsoft Entra ID Governance automation also helps with password-related tasks, access recertification, and reporting.

Read full review

DragosCernat

Information Security Architect at WSP

Has significantly improved proactive monitoring through automated asset discovery and seamless integration with cloud environments

Making the system smarter would be beneficial. Adding modules for integration with AWS and Azure would be helpful. Adding capabilities for the scanner to automatically pick up changes and add assets automatically would be valuable. When discussing a big company, it is mandatory to have tools that will assist us rather than waiting for manual input to add hosts. Adding assets manually is prone to mistakes. Humans might forget to add an asset or make errors when adding multiple assets. Taking the human element out of the context and making it more streamlined is the future for security. The human should be involved where expertise is needed, such as analysis and decision-making. Currently, with resource constraints, we need tools to collect and aggregate data, eliminate false positives as much as possible, and present relevant information to employees for action.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is compliant with our RVRT and CSV guidelines."

"The most valuable feature of Microsoft Entra ID Governance for identity management is multi-factor authentication."

"The most valuable features are multifactor authentication and account creation for the Exchange environment in Office 365."

"Regarding Microsoft Entra ID Governance integration with Microsoft services, there is automated identity lifecycle management in the product."

"Access reviews are an essential feature of Entra Governance. Additionally, privileged identity management is one of its most valuable features. Just-in-time access, or Jet GIT, is integral to this system. Moreover, user behavior analytics stands out as one of its top features."

"The most valuable feature of Microsoft Entra ID Governance is access reviews."

"The most valuable functions in Microsoft Entra ID Governance are ease of use, conducting access reviews, and tighter platform coupling."

"The features of Microsoft Entra ID Governance have benefited our organization because we have ServiceNow in our organization and we have been able to create integrations through Lifecycle Management to do onboarding and offboarding easier."

More Microsoft Entra ID Governance pros

"Tenable Cloud Security has positively impacted my organization with risk reduction and compliance."

"Ermetic can provide super visibility for our cloud environment (we are using AWS)."

"The analytical and reporting capabilities are pretty straightforward and show every transaction and major attempt to attack the application in the cloud."

"Tenable Cloud Security excels in vulnerability detection, one of its strongest features. Another valuable feature is software composition analysis, which highlights and automates the detection of security flaws. Additionally, their knowledge base is excellent; if anything goes wrong, they provide clear guidance on what needs to be done to address specific vulnerabilities."

"Element is precisely what we needed for close to real-time external surface monitoring, and the automatic integration capabilities, particularly with DNS, Azure, and AWS, are extremely valuable."

"Scanning and reporting are the most valuable features of Tenable Cloud Security"

"If you have multi-cloud tenancy using AWS and Azure, you can have a single dashboard where you can onboard all the cloud infrastructure and have visibility into it."

"The key benefit lies in having the largest and most up-to-date database. When it comes to using any Tenable product, it excels in finding vulnerabilities and providing analytics."

More Tenable Cloud Security pros

Cons

"Microsoft Entra ID Governance should improve its capability to manage identities and access from a single console."

"The solution lacks the feature to work well with third-party applications."

"If you want to conduct access review of database-based applications, then you cannot do that."

"There is a slight delay from creation of the actual access review to how long it takes to complete the actual review. For us, we are a large organization with over ten thousand employees... it takes a while to actually complete, and then it becomes a headache for managers."

"Microsoft Entra ID Governance is relatively new, and some features require more development. For example, when creating user access review campaigns, we can't specify the time to send emails to reviewers—only the date."

"Sometimes, the solution is not super reliable."

"Microsoft has done a commendable job with RPAX. However, Microsoft should prioritize enhancing its ABAC (Attribute-Based Access Control) capabilities. Currently, Microsoft's ABAC offering falls behind AWS in comparison."

"The product's workflow approval process needs improvement."

More Microsoft Entra ID Governance cons

"The product must provide more features."

"We still maintain Tenable Cloud Security but have reduced the number of licenses. We now use it occasionally to validate specific items rather than monitoring the entire surface, for which we use Element."

"If Tenable Cloud Security offers a complete Cnapp solution with CWP, CIEM, and Waap security, it will be able to compete with other competitors."

"I have faced several bug incidents with the solution"

"There is a need for the support team to improve their response time since it is one of the areas where the product's technical team has certain shortcomings."

"I didn't find anything that wasn't useful or needed to be added."

"Ermetic needs to improve its security scanning. I would like to see more dynamic graphical forms."

"In my experience, Tenable Cloud Security is not very stable."

More Tenable Cloud Security cons

Pricing and Cost Advice

"There are no additional costs besides the standard licensing fees."

"While other products give the pricing for their application, Microsoft Entra ID Governance has a per-user-based license model."

"The solution's pricing is not low but reasonable."

"In the education sector where I work, the annual cost for my Google and Microsoft environments is approximately $35,000. This covers the needs of 3,400 students and 800 faculty and staff members."

"The tool's price is good compared to other brands. The tool's subscription is for a year."

"The tool's pricing is fair."

"There is a need to opt for a subscription-based pricing model to use Tenable Cloud Security. I rate the product price an eight on a scale of one to ten, where one is low price and ten is high price."

See which vendors are best for you

Use our free recommendation engine to learn which Identity and Access Management as a Service (IDaaS) (IAMaaS) solutions are best for your needs.

See recommendations

893,244 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

11%

Government

Financial Services Firm

Comms Service Provider

Government

11%

Financial Services Firm

10%

Manufacturing Company

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	3
Large Enterprise	10

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	2
Large Enterprise	5

Questions from the Community

What do you like most about Microsoft Entra ID Governance?

The most valuable feature of Microsoft Entra ID Governance is access reviews.

What needs improvement with Microsoft Entra ID Governance?

There is one feature that I do not prefer. If a manager approves access for a particular user and wants to change their decision about whether the user should retain access or not, once they approv...

What is your primary use case for Microsoft Entra ID Governance?

I use Microsoft Entra ID Governance for identity and access management as well as access recertification. The workflows such as joiner, mover, and leaver work in Microsoft Entra ID Governance. Enti...

What needs improvement with Tenable Cloud Security?

What is your primary use case for Tenable Cloud Security?

We had other solutions that we used. One solution was that we did not have something exactly similar to what Element is doing. For example, we were using Bitsight, Evelin, and also Tenable Cloud Se...

What is your experience regarding pricing and costs for Ermetic CSPM?

I wasn't involved with the pricing, setup cost and licensing for Tenable Cloud Security.

Netwrix Directory Manager vs Microsoft Entra ID Governance

Comparisons

Compared 20% of the time

SailPoint Identity Security Cloud vs Microsoft Entra ID Governance

Compared 18% of the time

Netwrix Identity Manager vs Microsoft Entra ID Governance

Compared 16% of the time

Netwrix Auditor vs Microsoft Entra ID Governance

Compared 16% of the time

HENNGE Identity vs Microsoft Entra ID Governance

Compared 2% of the time

More Microsoft Entra ID Governance Competitors

Wiz vs Tenable Cloud Security

Compared 9% of the time

Prisma Cloud by Palo Alto Networks vs Tenable Cloud Security

Compared 7% of the time

FortiCNAPP vs Tenable Cloud Security

Compared 5% of the time

Orca Security vs Tenable Cloud Security

Compared 5% of the time

Plerion vs Tenable Cloud Security

Compared 4% of the time

More Tenable Cloud Security Competitors

Product Reports

Microsoft Entra ID Governance

Download Microsoft Entra ID Governance product report

Tenable Cloud Security

Download Tenable Cloud Security product report

Also Known As

No data available

Ermetic, Ermetic Identity Governance for AWS

Overview

Microsoft Entra ID Governance empowers organizations with advanced identity management, security enforcement, and seamless access management across environments, offering robust multi-factor authentication and audit capabilities.

Microsoft Entra ID Governance provides comprehensive identity and security management through features like single sign-on and privileged identity management. It enhances user management with user behavior analytics, entitlement management, and access reviews while integrating on-premises solutions with cloud services like Office 365. By ensuring secure access and resource protection within Azure, organizations manage access, automate user access rules, and govern external identities effectively.

What features make Microsoft Entra ID Governance stand out?

Audit Trail Capabilities: Thorough tracking for security compliance.
Multi-Factor Authentication: Enhanced protection across platforms.
Single Sign-On: Efficient management across different systems.
Privileged Identity Management: Control just-in-time access with analytics.
Entitlement Management: Automate guest account management.

What benefits should users look for in reviews of Microsoft Entra ID Governance?

Enhanced Security: Strong authentication and auditing for secure environments.
Efficient User Management: Streamlined access processes through SSO.
Unified Identity Solutions: Integration with cloud and on-premises platforms.
Automated Access Rules: Reduced manual oversight with automation.

Financial services utilize Microsoft Entra ID Governance to protect sensitive data while automating user access rules and managing compliance. In education, it facilitates user account management and access provisioning for students and faculty, ensuring secure collaboration through Exchange and Teams.

Microsoft

Tenable Cloud Security is a comprehensive solution designed to help organizations secure their cloud environments across various platforms, including AWS, Azure, and Google Cloud. It offers continuous visibility, compliance management, and threat detection to ensure that cloud infrastructure and applications are protected from vulnerabilities and misconfigurations.

Tenable Cloud Security exemplifies a comprehensive Cloud-Native Application Protection Platform (CNAPP) by providing a unified solution that covers the entire cloud security lifecycle, from development to runtime. This platform is designed to address vulnerabilities, misconfigurations, threats, and compliance risks across multi-cloud environments, making it an essential tool for organizations adopting cloud-native architectures. In practice, Tenable Cloud Security integrates security into the development process through its shift-left approach, particularly with Infrastructure as Code (IaC) security. This ensures that security measures are embedded early in the development lifecycle, allowing teams to identify and mitigate vulnerabilities before they reach production. Once in production, the platform continues to provide real-time visibility into cloud environments, enabling continuous monitoring and proactive threat detection.

The solution's comprehensive protection spans various aspects of cloud security, including the identification and remediation of misconfigurations, automated compliance management, and advanced threat intelligence. By automating these processes, Tenable Cloud Security reduces the manual effort required to manage cloud security, freeing up resources for more strategic initiatives.

What are the key features of Tenable Cloud Security?

Unified Platform: Covers the entire cloud security lifecycle, from development to runtime, providing comprehensive protection.
Shift-Left Approach with IaC Security: Integrates security early in the development process, ensuring that vulnerabilities are caught and remediated before deployment.
Continuous Monitoring: Offers real-time visibility and monitoring of cloud environments, enabling proactive threat detection and response.
Automation: Streamlines security operations, reducing the need for manual intervention and increasing operational efficiency.
Comprehensive Threat and Compliance Management: Identifies and mitigates vulnerabilities, misconfigurations, and compliance risks across multi-cloud environments.

What are the benefits of using Tenable Cloud Security?

Improved Security Posture: Early detection and remediation of vulnerabilities lead to a stronger overall security posture.
Operational Efficiency: Automation reduces the workload on security teams, allowing them to focus on higher-priority tasks.
Risk Reduction: Proactively identifies and addresses risks before they impact production environments.
Simplified Compliance: Helps organizations meet and maintain compliance with industry standards, reducing the complexity and cost of audits.

Tenable Cloud Security is particularly valuable in industries with stringent regulatory requirements, such as finance, healthcare, and retail. For example, in the financial sector, it helps organizations ensure compliance with regulations like PCI-DSS while safeguarding sensitive data across cloud environments.

In summary, Tenable Cloud Security is a robust CNAPP solution that integrates security throughout the cloud lifecycle, providing comprehensive protection and operational efficiency for cloud-native environments.

Tenable

Sample Customers

Information Not Available

Tyler Technologies, Bilfinger, BarkBox, MongoDB, airSlate, Adama, Latch, Cloudinary, Riskified, AppsFlyer, IntelyCare, Aidoc, 42Dot, and more.

Microsoft Entra ID Governance vs. Tenable Cloud Security