AWS CloudFormation vs AWS Config comparison

AWS CloudFormation and AWS Config are both solutions in the Configuration Management category. AWS CloudFormation is ranked #9 with an average rating of 8.8, while AWS Config is ranked #16 with an average rating of 8.3. AWS CloudFormation holds a 1.2% mindshare in CM, compared to AWS Config’s 1.9% mindshare. Additionally, 97% of AWS CloudFormation users are willing to recommend the solution, compared to 100% of AWS Config users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 6, 2025

AWS CloudFormation and AWS Config are both integral to managing AWS resources. CloudFormation shines in automated resource provisioning, while AWS Config is superior in continuous resource monitoring and compliance validation.

Features: AWS CloudFormation offers infrastructure as code, automated deployment capabilities, and flexible template management. AWS Config provides robust resource monitoring, compliance checks, and detailed configuration history.

Room for Improvement: AWS CloudFormation could enhance its parameter handling and make automation features more extensive. It can improve nested stack usability and increase template flexibility. AWS Config could benefit from integrating more intuitive compliance rule settings, expanding alert customization, and improving its user interface for easier navigation.

Ease of Deployment and Customer Service: AWS CloudFormation facilitates a simplified setup with a focus on infrastructure deployment, supported by customer service for provisioning challenges. AWS Config offers a user-centric deployment model with straightforward setup and strong support focused on compliance maintenance.

Pricing and ROI: AWS CloudFormation provides cost-efficient infrastructure management with significant ROI through automation. In contrast, AWS Config, with a slightly higher setup cost, offers long-term ROI through reduced compliance risks and thorough monitoring capabilities.

To learn more, read our detailed AWS CloudFormation vs. AWS Config Report (Updated: April 2025).

Buyer's Guide

AWS CloudFormation vs. AWS Config

April 2025

Download the complete report

Helped 850,236 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Intune

Mindshare comparison

As of May 2025, in the Configuration Management category, the mindshare of Microsoft Intune is 10.3%, up from 9.4% compared to the previous year. The mindshare of AWS CloudFormation is 1.2%, down from 1.7% compared to the previous year. The mindshare of AWS Config is 1.9%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Configuration Management

Featured Reviews

Joseph Merusi

Collaborations engineer at a financial services firm with 1,001-5,000 employees

Everything has worked better since we started using it

Sometimes the syncing is inconsistent. I'm confident that the devices are checking in every eight hours, but sometimes the devices aren't picking up the settings as quickly as I would expect. Some features haven't been updated in a while, and Microsoft doesn't seem interested in developing them. Unless you talk to an engineer, you don't know whether there will be an update. There are communication issues, so you might start working with a feature without knowing if it will be deprecated six months from now. Some reporting areas still need development. For example, I noticed that the reporting for driver updates is still confusing.

Read full review

Mbula Mboma

AWS Cloud Re-Start Program Specialist at Orange RDC (Congo)

Facilitates efficient infrastructure deployment with visibility into resource connections

I primarily use AWS CloudFormation for deploying infrastructure efficiently. For instance, if I want to create load balancers with target groups and EC2 instances, I find CloudFormation simplifies the process of deployment and configuration, reducing the possibility of errors AWS CloudFormation…

Read full review

Dineshkumar Thulasiraman

Cloud Engineer at cloudifyops

Useful for vulnerability scanning and data encryption

AWS Config's dashboard improved our company's security as it helps with the vulnerability scanning of resources. AWS Config integrates with the existing security infrastructure of our company, and it is an easy process that is not at all complicated. AWS Config is a security product. The tool protects its users' resources and data from unauthorized access, security breaches, and threats. The product helps with data encryption. You can have your data on AWS KMS, which helps with data encryption. For areas like SSL/TLS encryption, the tool offers data protection between AWS services and endpoints. As I need to learn the components of the product, I rate the overall tool a seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The ease of applying security policies to applications we deploy is the most valuable feature of Microsoft Intune."

"The solution is scalable. We currently have tens of thousands of users within our organization using the solution."

"The feature I find most valuable in Microsoft Intune is being able to configure policies and push them directly to mobile phones."

"It is helpful for managing devices anytime and any place without requiring dependency on the local networks."

"We work completely in a Microsoft environment. Its interface is similar to other Microsoft solutions that we are using such as Microsoft Defender. So far, for our administrators, it is easy to use."

"I like Intune's ability to manage roles, maintenance tasks, compliance settings, and patch development for all endpoints."

"In terms of technical support, you will get an immediate response."

"The best part of Intune is device control. If we need to block a user from opening something in their organization's system, we can do it from Intune. If we want to restrict the movement of an organization's data to prevent users from copying the data into Outlook, WhatsApp, or their personal Gmail, we can limit that via Intune. It secures all corporate data."

More Microsoft Intune pros

"The ability to quickly run up CloudFormation in AWS and the template validation function are the most valuable features."

"The most valuable features of AWS CloudFormation are all the resources documentation is located in one location, simple resource reverting, and ease of use of the full package for new users."

"With CloudFormation, there is no need to use complicated coding."

"AWS CloudFormation makes infrastructure deployment easy."

"CloudFormation itself is free to use. You will be charged for the resources you deploy using CloudFormation."

"It is easy to work from the console and deploy new database services."

"Automations make it pretty easy to provision AWS, development, or deployment environments."

"The most valuable features of AWS CloudFormation include the import and export functionality, and pseudo parameters, which reduce our coding efforts by managing parameterization at the account level."

More AWS CloudFormation pros

"AWS Config's dashboard improved our company's security as it helps with the vulnerability scanning of resources."

"The scalability is a ten out of ten."

"Installing the instances and performing upgrades is smooth and clean."

"The solution is scalable and provides over 100 rules."

"The initial setup is super easy, it takes like two minutes. Literally a one-click deployment."

"The tool protects its users' resources and data from unauthorized access, security breaches, and threats."

Cons

"A detailed device diagnostic feature is missing. Also, operating system deployment and imaging are missing."

"Integrating certain group policies can be challenging and may necessitate using on-premises systems to integrate them with Microsoft Intune."

"Intune lags all of its competitors in terms of report generation."

"There are some issues using the solution with macOS and iOS, and it offers limited granular control with them. Intune works better on Windows and Android."

"It should be simplified. I've worked with many different mobile device management solutions, and Intune is one of the more complex ones. It could be more simplified, and some of it is related to the wording that is being used, such as a configuration profile versus a policy. They really should have had different names to make it less confusing."

"There could be more wizard-driven policy development or creation. Some of the policies can get quite complex. If they have a wizard that assists the administrators in creating the policy, that will be a great job."

"It could offer more attributes for authentication."

"It would be awesome if Microsoft opened their API so we could filter more properties. If we have to do anything outside of Intune that requires a third-party solution to talk back to it, we're very limited in what we can do. Trust your people. We promise not to break your stuff. Open it up just a tiny bit wider."

More Microsoft Intune cons

"Improving the quality of support would be helpful."

"The speed of the replication process could improve. It can take some time to replicate that could use a speed increase."

"The solution needs to offer better support to other cloud vendors."

"As soon as they manage to parametrize the whole thing and to implement parameters at all levels, it will become automatically a lot more flexible."

"The conditions that can be added in AWS CloudFormation are not as powerful as any programming language."

"The Infrastructure Composer is not fully complete, making it necessary to tweak the code manually after generating it, which could be improved."

"For improvement, it's crucial that AWS provides options in terms of computing services, DB related services, and machine learning solutions. If I'm not hands-on with a particular service, like machine learning applications, I struggle to write the CloudFormation code."

"It's not that easy to use, but I can learn very fast."

More AWS CloudFormation cons

"There is room for improvement in built-in tools, they are not up to the mark."

"The solution is missing a configuration that can assist us when writing our programming languages."

"Improvements are needed as per customer requirements."

"The reboot process for AWS instances could be improved. Microsoft Azure does not have this problem, so AWS could consider making their instances more robust. You would not need to reboot your instances frequently to replace the hardware and stuff. They can look for a better approach or mechanism to improve in the future. The concern is that you need to plan for the outage when you reboot an instance. You need to have a maintenance window where you can properly reboot the instance without affecting your application. When Amazon announces that you need to reboot an instance and are not ready, this becomes a problem."

Pricing and Cost Advice

"We have a limited budget for security investments, so Microsoft should consider reducing pricing in our region. This would make investment more viable, especially since larger businesses in other countries can afford it easily."

"Microsoft Intune is a cost effective choice. It is less expensive than other products on the market."

"Generally, we get favorable discounts, so it's not too bad. Obviously, we're looking at decreasing those wherever we can to bring value back to the public purse because it's all charity based. It's all publicly funded."

"The licensing is on a yearly basis."

"Microsoft Intune's costliness stems from licensing fees and the overhead associated with its management, user experience, and device remediation."

"We work with the subscription rather than a server license. I think it's economical this way because we don't have to have a server license for that, and I think that works in our favor."

"In terms of the product price and licensing costs, my company finds the product to be reasonably priced."

"We have the business premium licenses for the solution."

More Microsoft Intune pricing and cost advice

"This solution is free to use and does not require a license."

"The price of the solution is good because it is scalable."

"The pricing is not notably high."

"In general, pricing within AWS is relatively affordable."

"AWS CloudFormation doesn't have any cost because it's only the resources that you deploy with the solution that'll incur costs."

"The product is free."

"If you compared serverless and container-based, serverless is less expensive. If you use certain instances the price can increase and become too expensive."

"There's no cost for launching any template using CloudFormation."

More AWS CloudFormation pricing and cost advice

"The solution charges us per hour. There's no license."

"It is a very expensive tool. AWS pricing for Config is not fixed and depends on your organization's size and complexity."

See which vendors are best for you

Use our free recommendation engine to learn which Configuration Management solutions are best for your needs.

See recommendations

850,236 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

19%

Computer Software Company

12%

Financial Services Firm

Manufacturing Company

Computer Software Company

23%

Financial Services Firm

18%

Government

University

Financial Services Firm

23%

Healthcare Company

Photography Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

How does Microsoft Intune compare with VMware Workspace One?

Microsoft Intune is a great tool for managing a mobile device fleet while keeping access control. The solution makes ...

See all answers

What are the pros and cons of Microsoft Intune?

Microsoft Intune is a great configuration management tool and has a lot of good things going for it. Here are some of...

See all answers

How does Google Cloud Identity compare with Microsoft Intune?

Microsoft Intune offers not only an easy-to-deploy data protection and productivity management solution, but also ...

See all answers

What do you like most about AWS CloudFormation?

AWS Cloud automation reduces the time needed to create AWS resources.

See all answers

What is your experience regarding pricing and costs for AWS CloudFormation?

AWS CloudFormation is free. However, there may be unexpected costs if developers deploy services incorrectly without ...

See all answers

What needs improvement with AWS CloudFormation?

Improvements are needed for sharing resources between template files, especially when using AWS ( /products/amazon-aw...

See all answers

What do you like most about AWS Config?

The initial setup is super easy, it takes like two minutes. Literally a one-click deployment.

See all answers

What needs improvement with AWS Config?

Improvements are needed as per customer requirements.

See all answers

What is your primary use case for AWS Config?

I use the solution in my company to check the vulnerabilities for all the resources, including tools like S3, EC2 Ins...

See all answers

Comparisons

Jamf Pro vs Microsoft Intune

Compared 13% of the time

Workspace ONE UEM vs Microsoft Intune

Compared 9% of the time

Microsoft Entra ID vs Microsoft Intune

Compared 8% of the time

ManageEngine Endpoint Central vs Microsoft Intune

Compared 6% of the time

Microsoft Defender for Endpoint vs Microsoft Intune

Compared 5% of the time

More Microsoft Intune Competitors

AWS Systems Manager vs AWS CloudFormation

Compared 66% of the time

Red Hat Satellite vs AWS CloudFormation

Compared 21% of the time

VMware Aria Automation vs AWS CloudFormation

Compared 13% of the time

More AWS CloudFormation Competitors

AWS Systems Manager vs AWS Config

Compared 71% of the time

Spring Cloud vs AWS Config

Compared 20% of the time

More AWS Config Competitors

Product Reports

Buyer's Guide

Microsoft Intune

April 2025

Download Microsoft Intune product report

Buyer's Guide

AWS CloudFormation

May 2025

Download AWS CloudFormation product report

Buyer's Guide

Configuration Management

April 2025

Download AWS Config product report

Also Known As

Intune, MS Intune, Microsoft Endpoint Manager

CloudFormation

No data available

Overview

Microsoft Intune provides centralized management of mobile devices and applications, ensuring security, compliance, and productivity through integration with Microsoft services like Microsoft 365 and Azure Active Directory.

Organizations use Intune for managing mobile devices and applications, enhancing security and compliance across platforms. With features like single sign-on, conditional access, and zero-touch deployment via Autopilot, it facilitates efficient operations. Intune's scalability, easy enrollment, and capabilities such as remote wipe support diverse device management, offering robust data protection and efficient operation. Despite its features, improvement areas include reporting, compatibility with non-Microsoft devices, and better support for macOS and Linux devices.

What are the key features of Microsoft Intune?

Seamless Integration: Works with Microsoft 365, Azure Active Directory, and System Center for streamlined management.
Conditional Access: Enhances security with policies that restrict access based on conditions.
Autopilot: Provides zero-touch deployment for setting up new devices efficiently.
Mobile Device Management: Enables control over both personal and corporate devices.
Application Deployment: Facilitates app delivery across a range of devices.

What benefits should users look for in reviews?

Centralized Management: Reduces complexity by managing devices and applications in one place.
Security Enhancement: Protects data with features like remote wipe and compliance monitoring.
Improved Productivity: Enhances efficiency with seamless integration and automation features.
Device Scalability: Supports diverse device management for growing business needs.

In industries such as finance, healthcare, and education, Microsoft Intune is implemented to ensure secure and compliant device management. Companies leverage its capabilities to deploy security policies and manage both corporate-owned and BYOD environments, facilitating a unified approach to data protection and compliance.

Microsoft

AWS CloudFormation provides a common language for you to model and provision AWS and third party application resources in your cloud environment. AWS CloudFormation allows you to use programming languages or a simple text file to model and provision, in an automated and secure manner, all the resources needed for your applications across all regions and accounts. This gives you a single source of truth for your AWS and third party resources.

Amazon Web Services (AWS)

AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations. With Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines. This enables you to simplify compliance auditing, security analysis, change management, and operational troubleshooting.

Amazon Web Services (AWS)

Sample Customers

Mitchells and Buzzers, Callaway

Nextdoor, Coinbase, Expedia

Flatiron, Prezi, iZettle, British Gas, Burt, Autodesk, FanDuel

Buyer's Guide

AWS CloudFormation vs. AWS Config

April 2025

Free Report: AWS CloudFormation vs. AWS Config

Find out what your peers are saying about AWS CloudFormation vs. AWS Config and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,236 professionals have used our research since 2012.

See our AWS CloudFormation vs. AWS Config report.

See our list of best Configuration Management vendors.

We monitor all Configuration Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.