Microsoft Entra ID Reviews

My main use cases for Microsoft Entra ID include Azure App Registrations and management of third-party integrations into our M365 tenant.The implementation of Microsoft Entra ID has been pivotal for our secure access to apps or resources in our environment. We use Microsoft Entra ID to grant access for all external apps that want to connect into some type of data source in Office 365, so it has been crucial to be able to set those up and manage those.Microsoft Entra ID's integration capabilities have been the foundation for our Zero Trust model because my team only sets up integration and Azure App Registrations based on a request and we review them. Nothing gets access to any data or anything in our tenant unless we review it and approve it and configure it in Microsoft Entra ID.

The features of Microsoft Entra ID that I value the most include the governance tools around OAuth, Azure App Registrations, and the security tools that enable us to set those up and monitor those.The features of Microsoft Entra ID have benefited my organization by allowing us complete control over what apps have access to what in Office 365 and for how long due to the Azure App Registration tools and process that Microsoft Entra ID offers us.

Microsoft Entra ID can be improved through better lifecycle management of the Azure App Registrations. If a token or a certificate is going to expire, it would be helpful to notify the app owner or the representative in our organization, saying that their certificate is getting ready to expire in two weeks, asking if this is still in use and if they still need this, and providing information on how to renew it if needed. Additional tools for governance and lifecycle management would be beneficial.To make it a ten, some of the governance and lifecycle management for app registrations that I mentioned would be beneficial. It would alleviate some of the time burden from my team to be able to automate the management of some of those aspects. Other than that, it is pretty solid.

I have been using Microsoft Entra ID for about ten years.

I assess the stability and reliability of Microsoft Entra ID as great.I have experienced some downtime, crashes, or performance issues, primarily the typical Office 365-wide outages that happen from time to time, but nothing beyond that.One of the outages I experienced was about a month ago where there were DNS issues with Microsoft, and all of Office 365 was inaccessible, along with the Microsoft Entra ID admin center.

Microsoft Entra ID scales well with the growing needs of my organization. As the organization has been growing with Azure App Registrations that I have been mentioning, we get more and more of those, and the tools are just there for us to use.We have expanded the usage of Microsoft Entra ID gradually over time as our organization has been getting bigger and there are more and more third-party apps that get brought on board, and it has been smooth.

I would rate customer service and technical support an eight on a scale from one to ten.I give an eight rating because for the most part, whenever we open up a ticket or need technical support, we get a good resource to help us quickly. However, every once in a while, you might get a resource that is not as well-versed in exactly what you are looking for help with. For my team, if we are opening up a ticket, we have already done a lot of basic troubleshooting.Overall, I would evaluate customer service and technical support as pretty good.

I have seen a return on investment with Microsoft Entra ID, as it makes my team, the engineering team for Office 365, have a much easier time in terms of managing third-party integrations and other apps that connect into Office 365.

I cannot speak to the setup cost of Microsoft Entra ID because it was before my time here. Licensing has been pretty pain-free. All of our users get the base E3 license, so the workload on that is pretty easy.

To other organizations considering Microsoft Entra ID, I definitely advise you to implement it, as it is crucial for my team and what we do in controlling access to certain resources in our tenant. I cannot imagine doing our job without it. I would rate this product a nine out of ten.

Hybrid Cloud

My main use case for Microsoft Entra ID is for access control. I'm not entirely sure what I like the most about Microsoft Entra ID, but perhaps it's that everything is included in the same app compared to before. Mainly, we have SharePoint set up, so we use it to manage users' access, which is the main purpose.

SharePoint site access has mainly benefited my organization, and that's how we have Microsoft Entra ID set up. Because of the hybrid environment we have with Active Directory, that's why we have it configured for our users' access to folders and sites.

Microsoft Entra ID did help with our approach to phishing resistance, and we appreciate the Office 365 MFA protections. Since we have this hybrid environment set up, we find it more secure when accessing any Office 365 products such as Outlook, SharePoint, and OneDrive.

I think something can be improved, but it's working.

I have been using Microsoft Entra ID for about ten years.

I assess the stability and reliability as generally good, as we do have occasional downtime for SharePoint, but usually the service is restored within an hour or less, which is good. There is nothing major with downtime, and we are satisfied.

Microsoft Entra ID works well for scalability in my organization, as we have grown from 150 employees to 700 employees. There are some changes in licensing, with Microsoft offering cheaper licenses for employees under 300, and when you exceed that number, you move into another level and another layer of the licensing scheme. The transition is quite easy, and it gives you the flexibility to mix and match the licenses you want.

I recently used customer support, but it was not for our production environment; it was for our test environment. I contacted support and I am waiting for a phone call. We have experience contacting support, and they are good.

I have not personally contacted support a lot, but some of my team members contact them regularly, and they receive very good feedback from them. According to the comments I received, I would rate customer support around a seven or eight.

Positive

I did not consider another solution before; we are Microsoft customers, and it has been that way since day one.

The deployment of Microsoft Entra ID is easy once it's migrated to the cloud. The implementation of Microsoft Entra ID is required for SharePoint sites to provide user access, and that is one of the requirements, so that's why we had it set up.

I have seen a return on investment, as it's a great investment because our production environment has now migrated to the cloud, and we use SharePoint extensively. Microsoft Entra ID is what we use for access control, and it's a great investment.

I do not believe we pay anything extra for Microsoft Entra ID; it's a good deal. We have Office 365 licenses, and Microsoft Entra ID is included.

We have not just relied on Microsoft Entra ID for the security setup, as we do have other third-party software integrated with our system for protections and data protections.

Nothing right now has influenced my Zero Trust model with Microsoft Entra ID integration capability. My organization's approach to defending against token theft and nation-state attacks has not changed since implementing Microsoft Entra ID, as I have other security solutions in place, so we do not use Microsoft Entra ID for protections.

I am satisfied. I would rate this product an eight overall.

Hybrid Cloud

Microsoft Azure

Our main use cases for Microsoft Entra ID involve working with clients that use the Microsoft platform and their identity graph to identify who the users are and integrating our solution with Microsoft Entra ID to identify who that person is when we're registering credentials on a YubiKey.

Since implementing Microsoft Entra ID, we have not seen major changes, but we are working with Microsoft to examine metrics and build dashboards in Sentinel. We have plans to do that, and we have a pull from the customer perspective wanting to examine the data metrics. Our data metrics are specifically tied to the lifecycle management, onboarding, usage of authentication, enrollment, and recovery cycles. We just met with the team to work on this and determine how we can use agentic AI to share risk signals both from our metrics and for the Sentinel dashboard.

The features of Microsoft Entra ID benefit my organization by streamlining everything for the customers that use Entra or the whole Microsoft platform. When looking at the full solution and the value that it brings us in terms of visibility, especially when we're talking about agentic AI, the fact that you can use Microsoft Entra ID and all the other product ecosystems to work together to give you the best value and then act on that data is where the win is for us.

As a security company ourselves, we are moving towards a zero-trust model, and we find that partners aligned with Microsoft Entra ID support that, which is the baseline thought process of having a zero-trust environment.

We do have some tickets regarding Microsoft Entra ID, but we are working with the team to examine those improvements, especially with our product that we're a partner with Microsoft on. It is beneficial that there is an interaction where we can bring the customer in as well so that Microsoft can hear the voice of the customer and determine what needs to be improved, and it is a good partnership that works well for everyone.

Microsoft Entra ID has been a core cornerstone of our product, the YubiKey itself, and we have been engaged with it for about a year now from a product perspective.

I have not experienced any downtime, crashes, or performance issues with Microsoft Entra ID.

I would describe the stability and reliability of Microsoft Entra ID as positive.

Microsoft Entra ID scales with the growing needs of our organization without any issues, and from what we see from customers, it serves small, medium, and large-sized enterprise customers.

I would evaluate customer service and technical support highly as our interactions with the team have been great and always responsive. Once we are GA, I expect that support will be up to par as well.

Prior to adopting Microsoft Entra ID, our partners and customers had multiple solutions, as the bigger companies often rely on multiple IDPs and multiple solutions because of the platform, whether it is mobile or desktop. The offering is there and is probably above the other offerings in the market.

For our use case and working with Microsoft Entra ID, our integration timelines are comparable to everything else.

I would say from the customers, we have definitely seen a return on investment with Microsoft Entra ID. Having that full ecosystem compared with other IDPs and other ID solutions from competitors, we definitely see a visible two-to-one ratio for our customers in the pipeline.

When considering Microsoft Entra ID, it was one of the cornerstones, so we did not actually examine anything else. We chose to partner and support it because we do see many of our customers using Microsoft Entra ID and the Microsoft platform.

My organization's approach to defending against token theft and nation-state attacks has not changed since implementing Microsoft Entra ID.

The implementation of device-bound passkeys in Microsoft Authenticator has not changed our organization's approach to phishing-resistant authentication. Our product is non-device-bound passkeys, but we see air gaps in the market where you cannot have a device-bound passkey. We choose to complement what Microsoft has in place as well, but it has not changed anything from that perspective. It probably eases use for our customers, but we still see that there are use cases where they have air gaps and are using a mobile key.

The evaluation process regarding Microsoft Entra ID highlighted the workflows and everything being streamlined, especially with the authentication process. I do not see a specific feature of Microsoft Entra ID that stands out the most, but we are examining the whole ecosystem from a data perspective as well and looking at Sentinel, Data Lake, and those products. However, it is mainly the authentication space and the authentication workflow, so it is identifying that there is a passkey registered with Microsoft Entra ID.

As far as our support and working with Microsoft and all of our customers, we only support Azure. My overall rating for this product is eight out of ten.

Hybrid Cloud

Microsoft Azure

Microsoft Entra ID serves as our primary identity and access management solution, helping us manage user identities, secure access to applications, and enforce strong authentication policies across our organization.

Our main use case for Microsoft Entra ID is centralized identity management, Single Sign-On (SSO), and Multi-Factor Authentication (MFA), allowing users to securely access multiple applications with one set of credentials while maintaining strong security controls.

Some of the best features Microsoft Entra ID offers include Conditional Access policies, Multi-Factor Authentication, seamless integration with Microsoft services, and strong support of the zero-trust security model.

Conditional Access policies in Microsoft Entra ID have helped our team by allowing us to enforce security controls based on specific conditions, such as user identity, device compliance, location, and risk level, ensuring access is granted only when predefined security conditions are met.

The Conditional Access policies have had a strong positive impact on our organization's security and user management by significantly reducing the risk of unauthorized access through strict authentication rules based on user behavior, device compliance, and location.

After implementing Conditional Access policies in Microsoft Entra ID, we observed significant improvements in our security metrics, with unauthorized access attempts reduced by approximately 60 to 80% due to strict policy enforcement, MFA adoption rate increasing to nearly 100% for critical applications, and the ability to automatically block or challenge a higher number of risky sign-ins detected by the system while also seeing a significant decrease in security incidents related to identity compromise after implementation.

While Microsoft Entra ID is a strong and reliable solution, there are a few areas where improvement can enhance the overall experience, such as simplifying policy management and security policies, which can be complex for new users. A more simplified and guided interface would improve usability, troubleshooting, and visibility.

Logging failures or policy conflicts can sometimes be challenging due to the need for more detailed and user-friendly log insights to help administrators resolve issues faster. Improvements in advanced reporting and customizable dashboards could provide better visibility into security events and user activity.

The user onboarding experience, especially in a complex or hybrid environment, could be improved, as the onboarding process for new users can sometimes be time-consuming, particularly when integrating with on-premises Active Directory or multiple third-party applications. Automation can be enhanced further to simplify user provisioning, role assignment, and access configurations, and a more guided and intuitive onboarding workflow would help administrators reduce configuration errors and speed up deployment.

I have been working in my current field for five years.

Microsoft Entra ID is a highly stable and reliable identity platform designed to support enterprise-scale environments.

Microsoft Entra ID offers strong integration capabilities with both cloud and on-premises applications, making it a flexible identity solution for the modern enterprise, integrating seamlessly with Microsoft services like Microsoft 365, Azure, and other Microsoft platforms, while also supporting integration with thousands of third-party applications such as Salesforce, ServiceNow, and Google Workspace using standards including SAML, OAuth, and OpenID Connect. For on-premises environments, it can be integrated with Active Directory using Azure AD Connect, enabling hybrid identity management, and it supports API-based integration and SCIM provisioning for automated user lifecycle management.

Microsoft Entra ID provides reliable customer support with multiple support plans and global availability, offering 24/7 support for all critical users, especially for enterprise customers, with support response times varying depending on the severity of the issue and the support plan, providing faster responses for high-priority incidents, and having multiple support channels, such as a ticketing portal-based support and enterprise support plans.

Before implementing Microsoft Entra ID, we were using traditional on-premises Active Directory for identity and access management, relying mainly on Active Directory for user authentication and access control, with basic security mechanisms such as a password and limited group policies. In some cases, we also used VPN-based access and manual user provisioning for application access.

Microsoft Entra ID provides strong value even with a relatively low initial investment, especially for small to mid-sized teams, as the solution is cloud-based, eliminating the need for heavy on-premises infrastructure with reduced initial setup.

I have hands-on experience in the implementation of Microsoft Entra ID in a hybrid environment integrated with the on-premises Active Directory, where I was involved in configuring Azure AD Connect for directory synchronization, setting up user identities and groups, enabling Single Sign-On for the enterprise application, implementing Multi-Factor Authentication, and designing Conditional Access policies based on user risk, location, and device compliance. One of the main challenges faced was integrating legacy applications and fine-tuning Conditional Access without impacting user productivity, but overall, the implementation improved our security posture, reduced unauthorized access attempts, and provided a seamless login experience for users.

My advice for organizations planning to use Microsoft Entra ID is to properly plan their identity and access strategy before implementing.

As a partner working with Microsoft Entra ID, my advice is to approach implementation with a clear identity and security strategy, recommending that organizations start with proper planning of user roles, access control, and security requirements. I would rate this solution a 9 out of 10.

Hybrid Cloud

Microsoft Azure

Microsoft Entra ID is used for hybrid synced users to Azure and for external users with guest accounts created in the directory. Security groups and all related functionality are utilized for user management.

Logging activities, including sign-in logs, password lockout, and security monitoring for compromised accounts, are valuable components of the implementation.

To prevent intrusions, as a government entity, Microsoft Entra ID is used to determine if someone is attempting to brute force an account and to understand the origin of the access attempt and whether it represents an actual threat.

Logging, sign-in logs, password lockout, and security features for compromised accounts are the most valuable aspects of Microsoft Entra ID.

To prevent intrusions, the ability to determine if someone is attempting to brute force an account and to understand where the access attempt is originating from and whether it represents an actual threat is critical.

Microsoft Entra ID has had a very positive impact because access can be controlled both internally and externally to the environment and applications used by the organization. Many app registrations function through Microsoft Entra ID to allow internal and external users to access applications.

There has been a return on investment in Microsoft Entra ID because of the security capabilities that enable both internal and external access management.

Microsoft Entra ID could benefit from improved structure and organization. Currently, internal and external users are grouped together, and filters must be applied to differentiate between them. Having separate areas for internal and external users would be beneficial since they should be treated differently.

Growth opportunities exist in separating certain elements for improved viewability.

Microsoft Entra ID has been in use for approximately eight years.

The primary issue experienced with Microsoft Entra ID is Azure sync performance. Over the past year, syncs have occasionally taken longer than expected to complete between on-premises and cloud environments. While syncs should typically complete within 30 to 60 minutes, there have been instances where syncing has taken hours. These issues have been reported to Microsoft, and while they address the problems, they do not typically share details about the fixes applied.

Microsoft Entra ID has been expanded through the creation of security groups specifically in the cloud rather than on-premises. The organization is moving forward with all groups being created in Azure and Microsoft Entra ID. User accounts will continue to be created on-premises, but security groups and dynamic groups will all be created in Azure and Microsoft Entra ID.

Support for Microsoft Entra ID is evaluated as generally good, with few problems encountered. On a global scale, however, support has not been consistently reliable.

Positive

There has been a return on investment in Microsoft Entra ID because of the security capabilities that enable both internal and external access management.

The primary benefit observed from Microsoft Entra ID is the ability to identify and respond to suspicious account activity. Most frequently, locked accounts have been investigated and flagged accounts have been flagged for suspicion or high risk, particularly guest accounts invited to the tenant. This allows the organization to communicate with affected users and recommend actions such as password resets. This capability is especially valuable because the organization regularly interacts with the public.

Zero-trust model implementation has not been influenced by Microsoft Entra ID, as this reviewer was not involved in that initiative.

The organization's approach to defending against token theft and nation-state attacks has not changed since implementing Microsoft Entra ID.

No competitive solutions have been evaluated or considered, as the organization is satisfied with Microsoft Entra ID. This review is rated as an 8 out of 10.

Hybrid Cloud

Microsoft Azure

Microsoft Entra ID serves as the main use case for everything, supporting M365 and all related services, with Entra ID being a key component for everything.

The features for users, groups, and management are what I appreciate most about Microsoft Entra ID.

Single sign-on (SSO) is an example of how the features of Microsoft Entra ID have benefited my organization. We use Entra to access our laptops and applications, and single sign-on helps ensure business resiliency so that if our domains are compromised, we can still access Microsoft M365 and other services.

Microsoft Entra ID's integration capabilities influence our zero trust model significantly, as we use a lot of conditional access through Entra to support that part.

Since implementing Microsoft Entra ID, I have observed that it would be beneficial to have more analytics and everything integrated there, as opposed to how we normally do searches. Co-pilot might play a big role in getting more data much quicker from Entra.

I think more analytics would be beneficial in the next release to improve Microsoft Entra ID.

I want Microsoft to improve dynamic group creation and the logic behind them. Another area needing improvement is dynamic groups, where you cannot utilize many of the custom attributes in the dynamic groups, which are very limited.

I have been using Microsoft Entra ID for ten to fifteen years.

I would assess the stability and reliability of Microsoft Entra ID as acceptable; we have issues sometimes, but overall, it is satisfactory.

I have experienced downtime, crashes, or performance issues on occasion.

Microsoft Entra ID scales well with the growing needs of the organization, and I find it good overall.

I have expanded usage of Microsoft Entra ID.

The process of expanding usage was quite smooth.

I would rate my customer service and technical support as six out of ten, noting that level two support is really poor while everything else above that is good.

Neutral

Prior to adopting Microsoft Entra ID, I was using an on-premises Active Directory solution to address similar needs.

I would describe my experience with deploying Microsoft Entra ID as good overall.

The process worked well, and I faced no significant challenges. However, we had some initial mapping issues when trying to perform synchronization services from on-premises AD to local AD to Entra, and there is still a limitation on the number of mappings you could do from there.

My experience with the deployment was good, though initially, the biggest challenge was mapping the fields from on-premises to cloud and making sure you have all those requirements for the application. Once we got the initial part done, it is quite good.

I have seen a return on investment with Microsoft Entra ID.

My experience with the pricing, setup costs, and licensing of Microsoft Entra ID is that it is part of our base, and there is no additional cost.

Before selecting Microsoft Entra ID, I did not consider any other solutions as we are in the Microsoft Azure ecosystem and do not have any other choice.

My organization's approach to defending against token theft of nation-state attacks has not changed since implementing Microsoft Entra ID.

The implementation of device-bound passkeys in Microsoft Authenticator has affected my organization's approach to phishing resistance in that we do not use that directly. We use a third-party system to do that, which is primarily Okta. However, I have tested FastPass and enabled it for mine, so it is definitely helping with security and ensuring that all authentication is secure, though we do have a pilot and do not use it for the majority.

The factors that led me to consider a change to Microsoft Entra ID included scalability, cost, and being cloud-native.

I can share metrics or data points that demonstrate the impact of our integrations.

I can share data points or examples, as it is the AD. Without that, nothing will work. Without Entra, it is the key one for that, meaning it is the base fundamental thing you need in order to do anything.

My advice to another organization considering using Microsoft Entra ID is to look at the initial implementation, which will take time, so ensure you plan regarding what you need. For us, that was mapping, how authentication would change, what applications you are migrating to the cloud, and how you are going to map those things. Good planning before implementing would be beneficial. I rate this review seven out of ten.

Hybrid Cloud

Amazon Web Services (AWS)

I have been using Microsoft Entra ID since its release. My main use cases with Microsoft Entra ID include identity management, lifecycle management, account creation, and access management within Entra. Currently, we are exploring Microsoft Entra ID governance and looking to expand in that direction. Overall, everything around account management and identities management within Microsoft Entra ID itself, from creation to deletion, represents our primary focus.

Working in the Microsoft environment, I find it beneficial to have Microsoft Entra ID integrated within the entire ecosystem. It is fast, accessible, and I believe it is the best option on the market for directory services.

The implementation of Microsoft Entra ID has definitely made app access easier and more seamless for working with Azure registered apps by allowing them to be integrated within the system and setting up SSOs and secure authentication through Entra.

The implementation of device-bound passkeys in Microsoft Authenticator has definitely improved our organization's approach to phishing-resistant practices because we went passwordless. We still have a small fraction of users who are not capable of performing MFA because of their work specifics, but it has definitely made our security stronger.

Microsoft Entra ID could be improved with more integration with third-party solutions like SAP or access management to third-party apps that are not capable of being registered within Azure itself. Having this extra extension to non-native, non-integratable things with Microsoft solutions would allow us to manage access to those systems as well.

I have approximately ten years of experience in my main area of expertise.

I assess the stability and reliability of Microsoft Entra ID as very good. We do not see any outages or problems whatsoever. Occasionally something happens, but it has to be a global outage. I have not experienced any downtime, crashes, or performance issues with Entra.

Microsoft Entra ID scales very well with the growing needs of our organization. We are expanding usage every year. The process for expanding usage is very smooth. We purchase extra licenses, provision users, and that is it.

On a scale from one being the worst and ten being the best, I would rate my customer service and technical support experience as an eight. I give it an eight because every now and then we get some questions, maybe not necessarily within Entra, but overall within tools available in Azure. Sometimes it takes a bit if we have a very difficult, very specific niche question to get the expert product team to help us, but again, it has to be something very complicated. I evaluate my customer service and technical support experience as very good overall.

Positive

Before adopting Microsoft Entra ID, I was using Active Directory to address similar needs.

I would describe my experience with deploying Microsoft Entra ID as taking some time but relatively easy with support from Microsoft partners integrated, so it was not extremely difficult.

I did not face any major challenges during the implementation process. My experience with the deployment was a long time ago. The process was okay, like any other project. We transitioned from on-premises to Azure Active Directory, which was then renamed to Microsoft Entra ID. It took some time, but it was a very good and interesting project overall, something new coming from on-premises to completely in the cloud, which was beneficial. Currently, we are trying to go cloud-first, but that is a long journey as well to minimize the on-premises footprint in our organization.

I would not necessarily be able to answer if I have seen a return on investment with Microsoft Entra ID at this point.

My experience with the pricing, setup cost, and licensing is that it is within my area of responsibilities, as I personally manage the licensing for our company. The only thing I would improve in that area specifically is that when we do contract extensions, which happens every year through annual orders, this process is fine. However, any additional licenses we purchase throughout the year through a volume licensing portal can sometimes be confusing because understanding what we are actually purchasing versus what we actually need is unclear. The differences with naming and SKU names between different channels are not unified. Purchasing extra licenses is sometimes confusing.

I did not really consider other solutions before selecting Microsoft Entra ID.

For example, we were capable of introducing complete passwordless authentication for our users, moving away from passwords and utilizing Windows Hello for Business integrated with Entra. The majority of our users do not even remember their passwords and instead use passwordless authentication through Entra with Windows Hello for Business.

Since the beginning, when it was called Azure Active Directory and then switched to Entra, I observe that the amount and pace of changes, new updates, and features coming from Microsoft is definitely higher and faster than it was at the beginning. We basically see new features every day, so the innovation coming with Entra and new use cases that we can apply with it is significant.

I am not aware of any changes in our organization's approach to defending against token theft and nation-state attacks since implementing Microsoft Entra ID.

I would advise another organization considering using Microsoft Entra ID to definitely check it, conduct a POC, and most likely proceed with it because in my personal opinion, it does not get any better than that. I have given this review an overall rating of ten.

Hybrid Cloud

Microsoft Azure

Our main use cases with Microsoft Entra ID involve extending our on-premises Azure into the cloud, starting with messaging in M365 and syncing the IDs up, but we also do a significant amount of work with enterprise apps, app registrations, and different types of identity within Azure.

Within Microsoft Entra ID, I appreciate being able to perform the SAML configurations for enterprise apps and app registrations, SSO, which is something that we are using heavily with Conditional Access for the MIDFS.

The implementation of Microsoft Entra ID has had a huge impact on our secure access to the apps or resources in our environment, as we can use Conditional Access to apply MFA going into apps, which definitely helped with our compliance.

The integration capabilities of Microsoft Entra ID have influenced our zero-trust posture quite a bit, as we actually use the zero-trust worksheets that Microsoft put out, we are doing PIM, and applying PIM on various items, along with Conditional Access policies, so I would say we are using it quite a bit for that.

I do not have anything to share at the moment on how Microsoft Entra ID can be improved or what additional features should be added in the next release.

I have been using Microsoft Entra ID heavily for six months.

I assess the stability and reliability of Microsoft Entra ID as pretty solid, aside from that Front Door issue recently, since everybody makes mistakes.

Other than that Front Door issue, I have not experienced any other downtime, crashes, or performance issues. There was about a month ago when you could not get into the portal, but aside from that, the users kept working, we just could not access it.

Microsoft Entra ID scales with the growing needs of my organization, and I experience no issues there.

We have expanded usage, as we are continually growing and merging tenants with a parent company that acquired us.

On a scale from one being the worst and ten being the best, I would rate my customer service and technical support as a five.

I give it a five because it depends on who you get; some people are awesome, and some people, I can find answers through Google before I get a response from them, so it just all depends on the engineer. Once you get past the first engineer, you normally get some pretty good help.

In evaluating the customer service and technical support, I think that everybody is always nice, and I can tell they all try, but you just do not seem to get a high-level expert on the first contact, and it sometimes takes too long to escalate quickly when needed, which is my best recommendation.

Neutral

Prior to adopting Microsoft Entra ID, I was using another solution, which was just on-premises AD.

The process of merging tenants has been somewhat smooth; we are still going through it, but we pretty much did a net new on their side, Greenfield, so the user accounts are all new, and we did not actually migrate them, but we are adding around 15,000 users to the tenant, so it seems to just be doing its job, syncing, and creating the accounts.

My experience with deploying Microsoft Entra ID is that we have had it for so long that I actually did not deploy it at this company; it was already deployed, and I had to fix a lot of things, but Entra Connect, it all just kind of works, and I have no major complaints that I can think of.

My experience with the deployment has been good, as there were no issues that I could think of, and I have done several upgrades to it, and it all just kind of works.

I do not know the cost, so I cannot say for sure if I have seen a return on investment.

Regarding my experience with the pricing, setup costs, and licensing of Microsoft Entra ID, I do not manage licensing, so I cannot speak to that. It is expensive, but thankfully, I do not manage the licensing.

Before selecting Microsoft Entra ID, we considered other solutions and determined that we are a Microsoft shop, so we pretty much needed it for Teams and email and everything else.

Since implementing Microsoft Entra ID, I do not have any metrics on the frequency or the nature of the identity-related security incidents in my organization that I can share.

Our organization's approach to defending against token theft and nation-state attacks has not changed as a result of Microsoft Entra ID, as it is constantly changing because we are always trying to improve.

The implementation of the device-bound passkeys in Microsoft Authenticator is something we are working on switching to, so I cannot say for sure; we are using some other MFA.

The advice I would give to another organization considering Microsoft Entra ID is that I do not really have any; it just kind of works, and I think it is a good solution that works well despite not having all the features of some other options. I give this solution an overall rating of nine.

Hybrid Cloud

Other

Microsoft Entra ID houses all of our users, and we conduct all of our identity and SSO and protection through it. Our sign-in logs go through Microsoft Entra ID, so we have everything, and it's how we build all of our access policies and how we determine who can access what from where and what we trust and what we don't trust.

I probably appreciate the identity protection capabilities of Microsoft Entra ID the most. The implementation of Microsoft Entra ID has had an impact on our secure access to applications or resources in our environment; it's everything because that's how all of our users access everything.

Microsoft Entra ID's integration capabilities influence our zero trust model philosophy heavily because it handles everything. Our organization's approach to defending against token threats and the efficiency of its actions has been pretty consistent since implementing Microsoft Entra ID.

We perform Microsoft Entra ID protection, and we use all of their identity and sign-in risk capabilities to help us determine what's suspicious activity, and then autonomously, they're blocking it or requiring some extra method of authentication to verify that it is someone legitimate.

The peace of mind from a security perspective and knowing that we have all the data that we need to, along with the assurance that people are only accessing resources when they need to and where they are, is everything.

I would appreciate seeing provisioning with HR systems improve in Microsoft Entra ID because they have capabilities out of the box for Workday and Bamboo, but we don't use those. Making the streamlined process of being IT hands-off whenever HR does their thing, and it just automatically populates would be ideal. We've built something ourselves, but it's a lot of maintenance to keep up with it, and it's not ideal to have to manage everything ourselves.

I've been using Microsoft Entra ID for all six years.

I assess the stability and reliability of Microsoft Entra ID as good; it very rarely goes down. I haven't experienced any downtime, crashes, or performance issues with Microsoft Entra ID.

Microsoft Entra ID scales well with the growing needs of our organization; there are no scalability issues. I have not expanded usage of Microsoft Entra ID.

On a scale from one to ten, I would rate my customer service and technical support as good, at a seven or eight. I give it a seven or eight because the people that I deal with are knowledgeable; obviously, it's a complicated platform, so not everyone's going to know everything, so you can't really give them a ten out of ten. For the vast majority of issues, we can get answers to whatever we need to. I don't have any negative issues to evaluate regarding my customer service and technical support experience.

Positive

Prior to adopting Microsoft Entra ID, I wasn't using another solution to address similar needs.

My experience with deploying Microsoft Entra ID is that it was easy; Microsoft makes it so that it pretty much does it itself, so there's really not much that you have to do. The deployment of Microsoft Entra ID was easy, as it comes with your 365 tenant, so there's not much that you have to do.

I have seen a return on investment with Microsoft Entra ID at 100 percent.

My experience with pricing, setup cost, and licensing regarding Microsoft Entra ID is that it's just our regular Microsoft licensing, so we don't really license Entra directly; we just get it as a part of the product suite that we receive.

We didn't consider other solutions before selecting Microsoft Entra ID; it was a clear choice.

I think we've actually had more identity-related security incidents since implementing Microsoft Entra ID, but I don't think that's because more issues are actually happening; we just have better insight on compromises and we're able to act on matters better. I don't think we're aware of more, so it makes it look as though that's happening more, but it's primarily increased visibility.

The implementation of device-bound passkeys in Microsoft Authenticator has been good; it's pretty easy for the users to employ. We're not doing hard passkeys, but some people have started adopting the Authenticator passkeys, and they work well. We mostly use the Authenticator application, and no one has any complaints.

The real challenge I face is the sync between objects and getting that set up, but once that's established, it's pretty self-running, and you don't really have to do anything with it.

My advice to another organization considering using Microsoft Entra ID is that if you're using any other part of the Microsoft tech stack, there's really no reason for you not to. I would rate this product a ten out of ten overall.

Public Cloud

Microsoft Azure

We are hybrid, so we mainly use Microsoft Entra ID for control of users that we've synced out to the cloud.

The features of Microsoft Entra ID that I like the most include the dynamic grouping, which is pretty cool.

The integration capabilities of Microsoft Entra ID have influenced my zero-trust model positively since we can actually tie in single sign-on, which has been nice.

I can't think of any metrics or data points off the top of my head to demonstrate the impact of Microsoft Entra ID integrations, but it's helped simplify logins for the end users, which is good.

Our organization's approach to defending against token theft and phishing attacks has actually changed since implementing Microsoft Entra ID, as we are working on going passwordless using YubiKeys.

The passwordless feature of Microsoft Entra ID has been nice; it's super slick since users don't have to know their password anymore. We are still working on putting it in, but it has helped reduce help desk calls where users would ask about not knowing their password, which has been pretty nice.

The centralized management with the single sign-on feature of Microsoft Entra ID has been huge, and that aspect has been nice as a data point demonstrating the ROI.

The features of Microsoft Entra ID such as token replay detection, attack-in-the-middle detection, or verified threat actor ID protection haven't had a specific impact on defending against threats for us; however, we have worked with companies that have gotten hacked, and if they were on passwordless, that would have stopped that.

I can't think of any improvements for Microsoft Entra ID off the top of my head, but I would like to see more features brought from on-prem Exchange into the cloud, which would be huge, and also with Office, there are features that we just don't have anymore, raising the question of whether we will get these.

I've been using Microsoft Entra ID for about seven or eight years.

I would assess the stability and reliability of Microsoft Entra ID as fair; I've experienced downtime and crashes, especially when trying to use PowerShell, and there have been times where it has crashed as a whole due to something on their end, which sometimes gives us issues.

Microsoft Entra ID scales with my growing needs pretty well.

I have expanded usage of Microsoft Entra ID, and the process has been pretty smooth; we've expanded into using some of the cloud features when it comes to VMs and other resources. Though it's more in the testing phase compared to being in production, so far it's been pretty easy.

On a scale from one being the worst and ten being the best, I would rate my customer service and technical support from Microsoft a three.

I would give that rating of three because the last ticket that I had open with them was open for about seven months, and I messaged them multiple times; it got stuck in a queue waiting for somebody to pick it up. I couldn't open a different ticket because that one was already in, and then after about seven months, they sent me something that said they were sorry and that my ticket got put into the wrong queue, so they went ahead and closed it and asked me to submit a new ticket.

Neutral

Prior to adopting Microsoft Entra ID, I was using another solution to address similar needs that included just on-prem AD and then ADFS for single sign-on.

I would describe my experience with deploying Microsoft Entra ID as pretty seamless for the most part; however, when it goes down, it is a bit of a pain, and we have noticed challenges with the documentation since they're constantly changing information, leading to dead links that don't go anywhere, making it hard to do something when the knowledge base isn't up to spec.

My overall experience with the deployment of Microsoft Entra ID has been pretty good.

An example of my deployment experience includes migrating all mailboxes from on-prem out to the cloud, which was pretty seamless, and the users and setting up the connect piece was honestly pretty easy for the most part.

I've seen a return on investment with Microsoft Entra ID.

Prior to selecting Microsoft Entra ID, I honestly considered staying on-prem; there wasn't really anything else, maybe Google.

What stood out in the evaluation process for Microsoft Entra ID, both positively and negatively, was that we already had on-prem, so it was a no-brainer to just keep going that way with them.

The implementation of device bound passkeys in Microsoft Authenticator has affected my organization's approach to phishing resistant authentication positively, as it's going pretty well, but it has helped us find applications that don't support it, which means we have to either work with the vendor or find a solution for that.

Since implementing Microsoft Entra ID, I haven't observed any changes in the frequency of identity-related security incidents in the organization; one thing that confuses everybody is where they keep changing the name. If they would just stick to one thing, that would be nice, but it is what it is.

My advice to another organization considering Microsoft Entra ID is to make sure that you build it out properly, leverage dynamic grouping as much as you can, and use proper naming schemes so you know what your groups do. I would rate this product a six out of ten overall.

Hybrid Cloud

Microsoft Azure