We performed a comparison between LastPass and Microsoft Entra ID based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, Auth0 and others in Single Sign-On (SSO)."One feature that is really important to us is the ability to create secure notes."
"The most valuable feature is the liberty of keeping encrypted passwords and elevated information in a sealed vault."
"Increased security around password management for teams and collaborative efforts with external vendors."
"This product helps keep us secure."
"Scalability is fine, no issues with that, especially now that they have added different user-level permissions. That has made it a lot easier to delegate out certain features to have other people do."
"It's improved security; we don't have to worry about people storing password loosely and secure them."
"Reduction in number of sensitive passwords stored insecurely on local systems."
"The most valuable feature for me is being able to pair applications and user permissions."
"Azure AD has features that have helped improve our security posture."
"It offers features that improve our security posture such as multifactor authentication, which is the second layer of protection that is used when we log into the cloud."
"It has things like conditional access. For example, if someone is accessing sensitive information, then we could force them to do multi-factor authentication. Therefore, we can stop access if it is coming from a location that we did not expect."
"The product is easy to use."
"Privilege identity management is the most valuable feature."
"This solution serves as the basis to understand the MS SSO and MFA capabilities."
"Privileged Identity Management (PIM), managed identities, dynamic groups, and extension and security attributes are all great features."
"The interface is well laid out and it is easy to navigate."
"Its user interface should be better, and there should probably be more information about scalability."
"Our biggest issue over the years was around the stability of the LDAP sync to AD."
"The biggest thing is there is no good way to have LastPass rotate passwords without human intervention. Right now, we have to go into each folder, then rotate and manually update each password. It can be done it by loading a bunch of passwords into a spreadsheet, but this makes the whole process insecure because then the passwords have been noted into a spreadsheet which have to be upload. We have to go into 40 to 50 applications and manually update passwords, because we don't view their solution of writing a bunch of passwords on a spreadsheet, then uploading them as a secure solution. This should be done internally within LastPass."
"LastPass has a problem syncing the passwords to all of the users."
"We have issues from time to time where, for some reason, it just keeps auto logging-out the user and then, the next day, they'll come in and it will work just fine."
"The management through the plugin is poor. It consumes tons of client resources especially as an administrator."
"I also don't like the add-in for Internet Explorer and Google Chrome, because when you do the add-in, you can actually save that to your credentials in your IE, and the problem is, if I left my screen open, or any of the IT people leave their screen open someone could come up and access all their credentials in LastPass without having to put a password in within your own network. I don't like that functionality. We've banned that from any of our staff adding that as an add-in because we see that as a security risk."
"One thing I wish LastPass had is an integration with Active Directory, not for synchronizing users but to actually manage, in some way, privileged accounts by replacing the password of LastPass itself."
"Compatibility features for legacy system integration with new features will be challenging at times."
"They can combine conditional access for user actions and application filtering. Currently, they are separated, and we cannot mix the two. I do not know how it would be possible, but it would be interesting."
"Technical support could be better."
"The custom role creation function could be improved as it's somewhat tricky to use."
"I would like them to improve the dashboard by presenting the raw data in a more visual way for the logs and events. That would help us understand the reports better."
"The robustness of the conditional access feature of the zero trust strategy to verify users is adequate but not comprehensive."
"They have had a few outages, so stability is a little bit of an issue. It is global. That is the thing. I know some of the other competitors are regionalized ID platforms, but Entra ID is global, so when something goes wrong, it is a problem because it underpins everything, whether you are logging in to M365 or you have single sign-on to Azure, Autopilot, Intune, Exchange mailbox or another application. If there is a problem with Entra ID, all of that falls apart, so its great strength and weakness is the global single tenant for it. Stability is a key area for me. Otherwise, it is generally pretty good."
"I would like to see Microsoft communicate how they intend to manage legacy applications. Right now, you still have to deploy a hosted domain server (which comes at an extra cost) if you have a legacy application that cannot sync properly with the enterprise applications and the modern applications."
Earn 20 points
LastPass is ranked 19th in Single Sign-On (SSO) while Microsoft Entra ID is ranked 1st in Single Sign-On (SSO) with 190 reviews. LastPass is rated 7.4, while Microsoft Entra ID is rated 8.6. The top reviewer of LastPass writes "Straightforward to set up, good support, intuitive to use, and offers good value for the cost". On the other hand, the top reviewer of Microsoft Entra ID writes "Allows users to authenticate from home and has excellent integrations in a simple, stable solution". LastPass is most compared with Azure Key Vault, HashiCorp Vault, BeyondTrust Password Safe, Keeper and 1Password, whereas Microsoft Entra ID is most compared with Microsoft Intune, Google Cloud Identity, Yubico YubiKey, Cisco Duo and CyberArk Privileged Access Manager.
See our list of best Single Sign-On (SSO) vendors.
We monitor all Single Sign-On (SSO) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.