Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
We have noticed savings of approximately twenty percent by using Azure Bastion compared to VM pricing.
Support is satisfactory but with room for improvement, primarily concerning data transfer issues.
We usually get backup within two hours.
The quality of support is very good, but troubleshooting can take time due to complex setups and the need to provide many logs.
Generally, the support is more effective than other providers like Oracle.
It is designed to provide access over a private network without hitting the internet.
In a Microsoft-centric organization, especially with Azure infrastructure and Office 365, Microsoft Defender for Identity is scalable.
Azure Bastion is stable.
Microsoft Defender for Identity is quite robust and built on Azure hyperscale infrastructure, with a 99% availability.
A storage solution must be created to transfer data, and this requires additional permissions like ACL or NFS.
I would like to see integrated AI features with Azure Bastion, especially for connectivity issues.
It would be nice to have the capability to cut and paste across desktops, similar to old-fashioned Remote Desktop emulation.
Reducing false positives is something we've been working on with Microsoft.
One improvement I would recommend is the integration of an admin application within Teams, allowing easy access to attack information on a mobile platform.
There is room for improvement in delivering knowledge to technical users, especially regarding what we can gain from the solution and how to apply it.
Microsoft's pricing is on the higher side and could be more competitive.
The price is not necessarily cheaper, but it is acceptable.
From an organization perspective, using E5 licenses is value for money, especially if Azure and Office 365 are already in use.
Ensuring a fair price according to market standards.
the Microsoft Defender Suite is quite expensive, especially when integrated into Sentinel.
Azure Bastion eliminates the need for a jump server by providing secure access to servers without hitting the public network.
The security is the main reason we use Azure Bastion because it is integrated with Azure Active Directory, ensuring that access is secure.
We use Azure AD integration to specify who has access and what they can do.
The integration into the Microsoft Defender ecosystem is the most valuable feature of Microsoft Defender for Identity.
The most valuable features of Microsoft Defender for Identity include its automatic remedies, possibilities for avoiding incidents, the privilege manager, and the generation of logs that facilitate a safer environment.
The most valuable feature is its hybrid artificial intelligence, which gathers forensic data to track and counteract security threats, much like the CSI series in effect.
Azure Bastion is a service you deploy that lets you connect to a virtual machine using your browser and the Azure portal. The Azure Bastion service is a fully platform-managed PaaS service that you provision inside your virtual network. It provides secure and seamless RDP/SSH connectivity to your virtual machines directly from the Azure portal over TLS. When you connect via Azure Bastion, your virtual machines do not need a public IP address, agent, or special client software.
Microsoft Defender for Identity integrates with Microsoft tools to monitor user activity, providing advanced threat detection and analysis using AI. It enhances proactive threat response and security visibility, making it essential for securing on-premises and cloud environments like Active Directory.
Microsoft Defender for Identity offers comprehensive monitoring and AI-driven user behavior analysis. It detects threats through real-time alerts and identifies lateral movements and entity tagging, ensuring robust security management. With excellent visibility via its dashboard, it supports customized detection rules and seamlessly integrates with SIEM platforms. While SecureScore and SecureScan provide robust environment security, there is room for improvement in cloud security, on-premises application integration, and remediation capabilities. Azure integration is limited, and the administrative interface could be more user-friendly. Users experience frequent false positives, affecting threat detection efficiency.
What key features stand out in Microsoft Defender for Identity?In specific industries such as education and finance, Microsoft Defender for Identity is crucial for securing on-premises Active Directory and Azure Active Directory environments. It effectively detects suspicious activities and manages conditional access policies, offering user and entity behavior analytics, endpoint detection and response capabilities. This helps prevent unauthorized access and strengthens overall security, making it an invaluable asset for organizations aiming to safeguard their digital infrastructure.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
