No more typing reviews! Try our Samantha, our new voice AI agent.

Azure Bastion vs Microsoft Defender for Identity comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.3
Organizations achieved 20% cost savings and faster admin tasks with Azure Bastion, streamlining infrastructure and supporting more environments.
Sentiment score
4.8
Microsoft Defender for Identity enhances threat detection, reduces efforts, minimizes risks, and optimizes costs despite varied ROI assessments.
We have noticed savings of approximately twenty percent by using Azure Bastion compared to VM pricing.
Lead Software Engineer at Glastechnische Industrie Peter LISEC GmbH
 

Customer Service

Sentiment score
7.2
Azure Bastion customer service is efficient and knowledgeable, with high satisfaction but some data transfer concerns.
Sentiment score
6.4
Microsoft Defender for Identity offers knowledgeable support, yet response times can vary, especially with complex issues or initial contacts.
We usually get backup within two hours.
Lead Software Engineer at Glastechnische Industrie Peter LISEC GmbH
Support is satisfactory but with room for improvement, primarily concerning data transfer issues.
IT Manager at NTT DATA
Generally, the support is more effective than other providers like Oracle.
Owner at Alopex ONE UG
The quality of support is very good, but troubleshooting can take time due to complex setups and the need to provide many logs.
Cloud Security & Governance at a financial services firm with 10,001+ employees
The people I normally use for support are very knowledgeable, especially when they help remote in and get to where I need to go and show me much faster and help me understand what I should be doing.
Technology Coordinator at a educational organization with 501-1,000 employees
 

Scalability Issues

Sentiment score
6.7
Azure Bastion offers scalable enterprise solutions, though customization limits and concurrent user restrictions affect some user experiences.
Sentiment score
7.2
Microsoft Defender for Identity is highly scalable and adaptable, excelling in large enterprises with efficient cloud-based processing.
It is designed to provide access over a private network without hitting the internet.
IT Manager at NTT DATA
In a Microsoft-centric organization, especially with Azure infrastructure and Office 365, Microsoft Defender for Identity is scalable.
Cloud Security & Governance at a financial services firm with 10,001+ employees
 

Stability Issues

Sentiment score
8.3
<p>Azure Bastion is stable and reliable, with few issues reported, benefiting from Microsoft's strong R&amp;D support.</p>
Sentiment score
7.1
Microsoft Defender for Identity is highly stable, reliable, with minimal downtime; occasional issues require support for agent redeployment.
Microsoft Defender for Identity is quite robust and built on Azure hyperscale infrastructure, with a 99% availability.
Cloud Security & Governance at a financial services firm with 10,001+ employees
We do not see any issues with the stability of Microsoft Defender for Identity.
Deputy Manager at Servion Global Solutions
Having recently started using it, reliability is affirmed, but manual investigation is often performed to verify if alerts identified by auto-remediation are accurate.
Instrumentation Engineer at Toyo Engineering Corp
 

Room For Improvement

Azure Bastion needs browser updates, better AI for connectivity, and improvements in file transfer, monitoring, and networking.
Microsoft Defender for Identity needs improvements in alert accuracy, UI/UX, asset integration, automation, anomaly detection, and third-party integration.
I would like to see integrated AI features with Azure Bastion, especially for connectivity issues.
Lead Software Engineer at Glastechnische Industrie Peter LISEC GmbH
A storage solution must be created to transfer data, and this requires additional permissions like ACL or NFS.
IT Manager at NTT DATA
It would be nice to have the capability to cut and paste across desktops, similar to old-fashioned Remote Desktop emulation.
Owner at BNS
If Microsoft could develop a feature that indicates when impossible travel is caused by VPN connections, it would prevent unnecessary password resets and session disruptions, especially for VIP users in organizations.
CyberSecurity Engineer | Information Security Management at Self Employed
One improvement I would recommend is the integration of an admin application within Teams, allowing easy access to attack information on a mobile platform.
Owner at Alopex ONE UG
Reducing false positives is something we've been working on with Microsoft.
Cloud Security & Governance at a financial services firm with 10,001+ employees
 

Setup Cost

Azure Bastion pricing is debated, balancing affordability and security with varied opinions compared to AWS and GCP costs.
Microsoft Defender for Identity pricing aligns with E5 licenses, offering value in hybrid setups but can be costly at scale.
Microsoft's pricing is on the higher side and could be more competitive.
IT Manager at NTT DATA
The price is not necessarily cheaper, but it is acceptable.
Lead Software Engineer at Glastechnische Industrie Peter LISEC GmbH
If they can reduce the costs, organizations will be happy, and it will compensate for using the Azure environment, which is more expensive on the infrastructure as a service side.
CyberSecurity Engineer | Information Security Management at Self Employed
Ensuring a fair price according to market standards.
Owner at Alopex ONE UG
From an organization perspective, using E5 licenses is value for money, especially if Azure and Office 365 are already in use.
Cloud Security & Governance at a financial services firm with 10,001+ employees
 

Valuable Features

Azure Bastion ensures secure, efficient VM access with centralized control, eliminating public IP exposure and enhancing network integration.
Microsoft Defender for Identity enhances threat detection and security integration, offering streamlined investigation with automated alerts and behavioral analytics.
The most valuable feature of Azure Bastion is its security, which I find to be the best part.
Lead Software Engineer at Glastechnische Industrie Peter LISEC GmbH
The security is the main reason we use Azure Bastion because it is integrated with Azure Active Directory, ensuring that access is secure.
Owner at BNS
Azure Bastion eliminates the need for a jump server by providing secure access to servers without hitting the public network.
IT Manager at NTT DATA
We receive an advance report of risky users, allowing us to take preemptive action before an attack causes damage to organization details.
Instrumentation Engineer at Toyo Engineering Corp
The most valuable feature is its hybrid artificial intelligence, which gathers forensic data to track and counteract security threats, much like the CSI series in effect.
Owner at Alopex ONE UG
The advanced threat protection is one of the strengths of Microsoft Defender for Identity, as it utilizes user and entity analytics and can detect indicative attacks.
Cloud Security & Governance at a financial services firm with 10,001+ employees
 

Categories and Ranking

Azure Bastion
Ranking in Microsoft Security Suite
26th
Average Rating
8.8
Reviews Sentiment
7.3
Number of Reviews
12
Ranking in other categories
Network Monitoring Software (52nd), Remote Monitoring and Management (RMM) (12th)
Microsoft Defender for Iden...
Ranking in Microsoft Security Suite
5th
Average Rating
8.8
Reviews Sentiment
6.8
Number of Reviews
28
Ranking in other categories
Advanced Threat Protection (ATP) (8th), Identity Threat Detection and Response (ITDR) (3rd)
 

Mindshare comparison

As of July 2026, in the Microsoft Security Suite category, the mindshare of Azure Bastion is 2.0%, up from 1.4% compared to the previous year. The mindshare of Microsoft Defender for Identity is 3.6%, down from 6.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite Mindshare Distribution
ProductMindshare (%)
Microsoft Defender for Identity3.6%
Azure Bastion2.0%
Other94.4%
Microsoft Security Suite
 

Featured Reviews

AP
IT Manager at NTT DATA
Access servers securely over private networks but need better data transfer solutions
Azure Bastion is primarily used to access servers securely without exposing them to the public network. It is configured in a private network to allow accessing an environment without public exposure Azure Bastion eliminates the need for a jump server by providing secure access to servers without…
Peter Arabomen - PeerSpot reviewer
Security Engineer at Fidelity Bank Plc
Has supported hybrid identity management while integrating well with cloud directory services
The only challenge I have with Microsoft Defender for Identity is the latency. I may not put that entirely on Microsoft, because latency could be network related. At times when trying to authenticate, the prompt is delayed. We tried implementing passwordless authentication, especially for on-premises workloads, but we haven't been able to achieve that. Passwordless authentication is part of the identity functionalities, particularly when it comes to enforcing passwordless for on-premises workloads. In terms of improvements, you can't create OUs on Azure AD. Regarding giving users privileges on what they can do across different OUs, I haven't seen that feature on Microsoft Defender for Identity. Microsoft Defender for Identity needs to be able to plug into third-party applications that are not Microsoft. For instance, with a human resource application used to manage users and leave requests, when staff leaves the organization, they are first exited from that application before AD. Integration between Azure AD and third-party applications would allow automatic syncing when removing staff. The initial setup of Microsoft Defender for Identity is not hard. However, setup is one thing, and getting value from the application end-to-end is another. It can be set up and running from the first day but not functioning optimally. Initially, when we did the setup, it wasn't optimal. Over time, with continuous improvement, which we're still doing, we've gotten to a comfortable level, but there's still room for improvement.
report
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Comms Service Provider
9%
Educational Organization
8%
Financial Services Firm
13%
Computer Software Company
10%
Manufacturing Company
10%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
Large Enterprise6
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise5
Large Enterprise15
 

Questions from the Community

What is your experience regarding pricing and costs for Azure Bastion?
Microsoft's pricing is on the higher side and could be more competitive. Startups and small organizations often prefer AWS ( /products/amazon-aws-reviews ) or GCP due to their lower costs, while la...
What needs improvement with Azure Bastion?
Azure Bastion could be improved with more granular session monitoring, rich audit capabilities, and deeper integration with security operation workflows. We would also appreciate enhanced reporting...
What is your primary use case for Azure Bastion?
Azure Bastion serves as our primary solution for providing secure administrative access to Azure VPNs and VMs without exposing RDP or SSH ports to the internet. From a cybersecurity perspective, it...
What needs improvement with Microsoft Defender for Identity?
I really would have to sit down to think about how Microsoft Defender for Identity can be improved. I didn't take stock in what needs to be improved because I appreciated having the tools right the...
What is your primary use case for Microsoft Defender for Identity?
My main use cases for Microsoft Defender for Identity include Conditional Access, checking risky users, remediating risky users, and user sign-ins. I can easily remediate or determine what the user...
What advice do you have for others considering Microsoft Defender for Identity?
I don't really use Microsoft Defender for Identity a lot because my new role doesn't allow me to take time to do so. I don't really use the threat intelligence feature of Microsoft Defender for Ide...
 

Also Known As

No data available
Azure Advanced Threat Protection, Azure ATP, MS Defender for Identity
 

Overview

 

Sample Customers

Information Not Available
Microsoft Defender for Identity is trusted by companies such as St. Luke’s University Health Network, Ansell, and more.
Find out what your peers are saying about Azure Bastion vs. Microsoft Defender for Identity and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.