Microsoft Purview Privileged Access Management Reviews

I utilize Microsoft Purview Privileged Access Management for all of our access inside of Azure and 365, associating different rights to different areas. Whether it is creating, assigning licensing or accessing different things inside of Azure or setting up things or getting rid of things, I basically have Privileged Access Management associated to most of the higher level things that are set up inside of Azure.

I do utilize the Just-in-Time access feature with Microsoft Purview Privileged Access Management.

The pricing for Microsoft Purview Privileged Access Management is straightforward with no hidden charges on that side of it.

I still use a separate Privileged Access Management solution along with Microsoft Purview Privileged Access Management. I use this one just for the cloud and then I use Admin By Request for on-premises.

Microsoft Purview Privileged Access Management definitely has a good amount of value for me because I associate it in a way that if someone wants to try to do something, they have to get approval. This means someone doing something has to put in what ticket information is relevant so I can keep track of why they are doing it. They are not just going in there with access to do whatever they want to do. It has to be done with a purpose and I think that is a big key point of it.

The Just-in-Time access feature has not really helped me a lot more with managing privileged access. I think it is just a matter of how things are set up. If I need to build a server, I have to go in and increase my privileges for an amount of time that is allowed to build the server and then it elapses and then I am kicked out and then the next time I have to do it all over again. This is nice because it keeps track of what is going on. However, it would be nicer if I got a better reporting tool that can show what was happening instead of an email every single time it happens.

The access review capabilities of Microsoft Purview Privileged Access Management definitely benefits me so that I have a better understanding of who has access to what and what they are doing at what time.

I would say some of the things that could probably be improved is probably the reporting aspects. Being able to get a general and easier setup of reporting to show what was enabled for each day by who would be helpful.

It would be nicer if I got a better reporting tool that can show what was happening instead of an email every single time it happens.

I am not really regulated by any regulations like GDPR, HIPAA, or SOX, so I do not really have too much of that associated with Microsoft Purview Privileged Access Management. I am more or less using it in case I have to do something down the road so that I have everything set up and I am ready for it.

I have not really had to deal with anything support-wise for Microsoft Purview Privileged Access Management. Documentation-wise, it is the same as anything from Microsoft. I am fine either way with it.

Because I worked with our local reps, I would rate their overall support as a seven.

Positive

In my opinion, Microsoft Purview Privileged Access Management and Admin By Request are really two completely different tools. One is more for the cloud and files and access rights into the cloud, and then Admin By Request is for local administration, working with the servers that are on-premises or the workstations that are on-premises, eliminating the ability to have local admin rights to the local devices.

With these two solutions, Microsoft Purview Privileged Access Management and Admin By Request, other than the fact that it is for cloud and for on-premises, there are no other main differences. I would rate this product an eight overall.

We are a company offering solutions to other customers, and Microsoft Purview Privileged Access Management provides great helping features and solutions. It is not the only thing needed to prevent breaches or ensure data security maturity, but it significantly helps when combined with other solutions. Companies can protect themselves better against potential leaks of sensitive information.

Microsoft Purview Privileged Access Management can offer even more protection, but from my experience with customers, it typically comes at a later stage in the roadmap perspective. In the Netherlands, larger companies are still working on implementing Data Loss Prevention (DLP), and once that is completely in production, it helps close the gaps present when achieving a certain maturity in adopting Microsoft Purview DLP.

The integration with other Microsoft solutions is a standout feature of Microsoft Purview Privileged Access Management.

Regarding the detailed auditing and reporting functions, especially with endpoint DLP, the new capabilities to customize reports and notifications are really helpful. When starting an implementation, it often begins as an IT party endeavor, but involving the business is crucial since they are the end users of DLP. These reports and notifications help in understanding how it works and what the company is trying to protect.

When looking at the bigger picture, Microsoft Purview offers the compliance manager where you can select several tests based on any regulation or classification needed. It provides a more global insight into how the technical aspects within your environment can help reach a higher level of maturity in any regulation or classification. However, reaching all requirements within Microsoft Purview does not guarantee complete compliance. There are additional processes that need attention, but from a technical perspective, it helps determine priorities and initial steps.

Regarding improvements for Microsoft Purview Privileged Access Management, there are still some challenges. Purview contains numerous predefined sensitive information types, which sometimes makes it difficult to specify relevance. For example, in the Netherlands, we are not interested in driver licenses from Australia, making separation challenging. Furthermore, the capabilities for exporting large amounts of sensitive information for deeper investigations and reporting should be enhanced.

Additional features related to AI tools would be beneficial in the next release. Microsoft Purview Privileged Access Management has made progress in providing insights into generative AI tools being used within organizations, but customers need to further track where sensitive information is being used within AI tooling. While they have made a good start, AI is advancing faster than anticipated, creating a gap that needs to be addressed.

We have been working with Microsoft Purview Privileged Access Management for approximately three years.

We still face some technical issues across different environments, but Microsoft support can usually assist with resolving these problems.

As a preferred partner, we have several channels and connections for technical support if something does not work as expected. The response time from technical support is really good. Sometimes it can be frustrating when a first-line person asks questions already detailed in the ticket, but for issues requiring technical support, having several channels and contacts available works perfectly.

Positive

We sometimes work with eight points. In the past, we have worked with other partners for Mobile Threat Defense, though these were relatively low-level solutions.

The solution is not very expensive because it is already included in most Microsoft license offerings. However, when connecting third-party applications containing sensitive information to your Microsoft Purview Privileged Access Management environment, questions about additional costs arise. The initial implementation is not expensive as most companies use existing Microsoft licenses, but expanding beyond that becomes a significant discussion point regarding costs.

We primarily see hybrid environments where customers still have some on-premises infrastructure while moving to the cloud. Organizations adopting cloud solutions find that implementing Microsoft Purview Privileged Access Management as a global solution works better compared to retaining more on-premises resources while trying to achieve the same results.

Many customers struggle with end-user privacy in Microsoft Purview Privileged Access Management since everything comes together and can be searched. This is a significant concern, especially in the Netherlands, so careful management of privacy is essential. Clear guidelines help manage technical aspects better, and there should be a distinct separation of roles for handling investigations regarding potential leaks.

On a scale of 1-10, I rate Microsoft Purview Privileged Access Management a 9.

I use Microsoft Purview Privileged Access Management to control access as a system administrator. It involves providing elevated privileged accounts on demand rather than having constant access, which can be risky if compromised.

With Microsoft Purview Privileged Access Management, we customize access so it is only used on demand, reducing the risk of a compromised account causing security issues.

The integration with Azure Identity is a significant advantage, as it allows for seamless automation and power app integration. Additionally, Microsoft Purview Privileged Access Management works well with conditional access, providing robust security features.

Microsoft Purview Privileged Access Management could improve integration with multiple cloud environments. Many clients work across different cloud platforms such as Google Cloud Platform and AWS. This can cause classification and data discovery challenges for non-Microsoft documents and environments.

I have been using Microsoft Purview Privileged Access Management for privileged access management with Microsoft Azure for about ten years, and the version in preview for the last three years.

The solution is stable and meets my needs without any issues regarding glitches or bugs.

Microsoft Purview Privileged Access Management is very scalable without any limitations.

Microsoft support is good. That said, sometimes the level of expertise of the initial technical support personnel is not as high as required, leading to delays in escalation.

Positive

I've worked with Okta, which is a third-party identity tool. Okta requires integration with Azure and has limitations in data discovery and integration features compared to Microsoft Purview Privileged Access Management.

The installation of Microsoft Purview Privileged Access Management is straightforward, and I can handle it on my own.

One person is usually enough for both the installation and maintenance of the solution.

Sometimes competitors offer cheaper pricing for similar solutions.

I've evaluated Okta in comparison with Microsoft Purview Privileged Access Management.

I'd rate the solution nine out of ten.

I use Microsoft Purview Privileged Access Management primarily for Outlook, Microsoft Word, and Excel.

Microsoft Purview Privileged Access Management is easy to understand, particularly its menu. I am satisfied with its security features provided through Microsoft Security. However, my company uses additional external security products.

Sometimes, its functions, like XLOOKUP in Microsoft Excel, do not find situations properly, especially without the use of pivot tables. I face a little bit of trouble with its data menu.

I have been using Microsoft Purview Privileged Access Management since 2020, making it about three years of use.

I would rate the stability of Microsoft Purview Privileged Access Management as a seven out of ten.

The scalability is easy to access, and I would also rate it as seven out of ten.

The customer service could be rated as seven to eight out of ten. While it is good, there might be some room for improvement.

Neutral

I previously used Office 2010, which had many troubles. Currently, I do not face many issues with Microsoft Purview.

The initial setup is easy to deploy, taking about ten to 15 minutes. I took part in the installation process.

I do not see any financial benefit after implementing Microsoft Purview Privileged Access Management, however, this question would be better answered by my manager.

Microsoft Purview Privileged Access Management can be considered a little bit expensive, however, given that it is technology, it is something I accept.

Overall, I rate Microsoft Purview Privileged Access Management eight out of ten.

We employ it for data loss protection, focusing on its significant and granular capabilities. Ensuring the prevention of data leaks is crucial, especially when dealing with sensitive user data. It is a valuable tool for managing and controlling access to privileged roles. With the P2 license, you can effectively use PIM to govern who has access to specific roles, ensuring a more secure and controlled environment.

It has streamlined the process, especially in scenarios where users temporarily require elevated privileges. This is particularly useful when certain tasks demand higher access levels for a limited period, and PIM allows you to precisely configure and manage those time-bound privileges. Securing data across diverse multi-cloud and multi-platform environments, such as AWS and GCP, is crucial. Purview's value lies in creating a centralized environment that integrates components from different vendors and technologies which streamlines data protection and monitoring, eliminating the need for multiple applications. The impact of Purview on visibility within the organization has been notably positive. Given its extensive reach across the organization and the growing shift towards the cloud, the centralized audit logs contribute to enhanced visibility.

The ability to provide just-in-time privileged access and set specific parameters for access duration is highly beneficial. Additionally, the alerting mechanism for any changes in access rights is appreciated, enhancing overall security by keeping us informed about potential modifications. It automatically revokes access once the specified period elapses. It's a valuable feature that aligns well with the need for flexibility in granting elevated privileges while maintaining a strong security posture. Its  standout feature is its ability to manage and safeguard data seamlessly, providing an efficient solution for comprehensive data protection across various cloud and platform environments. Managing policy violations is excellent with effective alerting for any incidents. The ability to granularly configure settings, such as specifying formats like credit card information, is a standout feature. The ease of conducting audit searches, retrieving information, and presenting it in a user-friendly format is a commendable feature.

There's room for improvement in Microsoft's documentation, as it often lacks clarity. The disconnect between what's documented and what's happening in the system can be challenging for users to navigate. It would be beneficial for Microsoft to enhance the clarity and accuracy of its documentation, ensuring that users can rely on it for accurate guidance and information. Improving the efficiency and effectiveness of support at the lower levels would certainly enhance the overall support experience.

We have been using it for quite some time.

I find that tech support can be somewhat problematic, particularly at the first-line support level. There are instances where communication can be challenging and there is a need for improvement in this area. The initial interactions may be less effective, but it's worth noting that as you escalate, you may connect with more knowledgeable and helpful individuals. To mitigate potential issues, we tend to minimize reliance on tech support when possible, aiming to resolve matters independently to avoid prolonged and sometimes less productive engagements. I would rate it seven out of ten.

Neutral

The initial setup was generally straightforward.

While the process was generally easy to follow, there were instances where the documentation lacked clarity, making it challenging to navigate.

The automation and streamlined processes significantly reduce manual efforts, allowing for a more focused allocation of time and resources. This efficiency not only contributes to time savings but also leads to cost reduction and simplification of complex tasks, ultimately improving overall productivity.

Microsoft has designed its platform to address global regulations, considering diverse legal frameworks worldwide. As a multinational corporation, Microsoft ensures its solutions accommodate specific regulations in different regions, crucially navigating stringent policies like GDPR in Europe. This proficiency reflects the company's commitment to a comprehensive global outreach, providing a platform that seamlessly adheres to diverse regulatory landscapes and transcends international borders. Overall, I would rate it nine out of ten.