Try our new research platform with insights from 80,000+ expert users

Azure Firewall Manager vs Microsoft Defender XDR comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Azure Firewall Manager
Ranking in Microsoft Security Suite
28th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
8
Ranking in other categories
Firewall Security Management (11th)
Microsoft Defender XDR
Ranking in Microsoft Security Suite
3rd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
101
Ranking in other categories
Endpoint Detection and Response (EDR) (5th), Extended Detection and Response (XDR) (3rd)
 

Mindshare comparison

As of July 2025, in the Microsoft Security Suite category, the mindshare of Azure Firewall Manager is 0.5%, up from 0.5% compared to the previous year. The mindshare of Microsoft Defender XDR is 6.5%, down from 7.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite
 

Featured Reviews

MuhammadShakeel - PeerSpot reviewer
Manages multiple firewalls effortlessly but faces challenges with cost efficiency
Azure Firewall Manager is good most of the time, but it could be improved regarding cost. The cost is a significant concern because we are in a region where the dollar is not our default currency, and converting to dollars makes it very expensive. Microsoft should calculate and show the products in local currencies, such as PKR or Bangladesh currency, and also introduce Indian currency similarly for Pakistan. The technical support could be improved. When a resource is assigned, that resource should follow the ticket and respond swiftly, including sending an email to inform me that an agent has been assigned. I still find myself waiting for an agent to connect with me and resolve my issues. I have not been integrating Azure Firewall Manager with Azure Virtual WAN.
Gabor Nyerd - PeerSpot reviewer
Includes four services and four products, which can help organizations a lot
We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Azure Firewall Manager is the testing and configuration."
"The solution is very easy to set up."
"The solution has improved our organization with its firewall."
"It is easy to install and does not require any plugins for your browser."
"The tool's support is good."
"Azure Firewall Manager centralizes network security management with a hub and spoke architecture."
"Azure Firewall Manager centralizes network security management with a hub and spoke architecture."
"We are utilizing Azure Entra ID for group labeling, so Active Directory, or now it is Entra ID, securing our application for everyone who accesses it, and Azure Firewall Manager is definitely securing our projects and all its features are fine."
"The ability to hunt that IM data set or the identity data set at the same time is valuable. As incident response professionals, we are very used to EDRs and having device process registry telemetry, but a lot of times, we do not have that identity data right there with us, so we have to go search for it in some other silo. Being able to cross-correlate via both datasets at the same time is something that we can only do in Def"
"Based on my experience, I rate Microsoft Defender XDR as nine out of ten."
"A crucial aspect for our team is the inclusion of identity and access management tools from the vendor."
"The comprehensiveness of Microsoft's threat detection is good."
"The feature of Microsoft Defender XDR that I preferred the most traditionally was its focus on endpoint protection, but now identity is right up there with endpoint security. Identity is important because different compromises start at the identity level. This allows us to understand what actions are being taken, who is doing them, and whether it is actually them."
"Many people don't realize that Microsoft Azure, Exchange Online, and the security and compliance portal all sync together. For instance, within the Azure portal you can set security restrictions and policies to help secure your tenants... The good part of it is that these products have already been integrated. When you sign on as an admin you have global admin rights and that gives you access to all these features."
"The summarization of emails is a valuable feature."
"Defender XDR offers richer insights into Defender XDR. It's a better overall experience."
 

Cons

"The price is okay. This said, the solution is certainly expensive in comparison with other cloud services."
"The tool's security features need to improve. It needs also to include a monitoring system for logs. It is also complicated to find a query on the Azure firewall."
"The solution can improve the integration with open-source tools."
"The configuration and settings require substantial time for learning, particularly for new users."
"The cost is a significant concern because we are in a region where the dollar is not our default currency, and converting to dollars makes it very expensive."
"For Azure Firewall Manager, the learning curve for new people is a bit challenging, but the integration should be more straightforward for configuring a centralized system."
"We could do only one-way NAT-ing, where the traffic comes from outside to internal, to Azure, which is fine. However, when we actually do NAT-ed traffic to hit the firewall, that way is not working."
"The configuration and settings require substantial time for learning, particularly for new users. Improvements in ease of configuration would benefit users significantly."
"Microsoft Defender is slow to adapt to evolving threats."
"Generally, antivirus products provide a central control to manage every device in terms of who is installing it or who is trying to disable it, but Microsoft doesn't have such a control center for the antivirus product it provides."
"One of the biggest downsides of Microsoft products, in general, is that the menus are often difficult to find, as they tend to move from place to place between versions."
"For Microsoft Defender XDR, there is currently no ability to reset passwords for on-premises accounts, which is a key challenge."
"The Defender agent itself is more compatible with Windows 10 and Windows 11. Other than these two lines, there are so many compatibility issues. Security is not only about Microsoft. The core technical aspects of it are quite good, but it would be good if they can better support non-Microsoft solutions in terms of putting the agents directly into VMware and other virtualization solutions. There should be more emphasis on RHEL and other operating systems that we use, other than Windows, in the server category."
"In the future, it would be beneficial for Microsoft to consider making the product more user-friendly or simplified for those who are interested in using it. Currently, it requires a high level of technical expertise, making it challenging for beginners or less experienced individuals."
"Microsoft Defender XDR could be improved with a lower price."
"Customers say they want absolutely seamless integration between other Microsoft solutions and Defender XDR, including the ability to change device settings within the Defender portal. They need to contact the IT team responsible for the device management tools to change some settings. They would prefer that those changes be initiated directly from the Defender portal or applied from Intune without involving the IT operations team."
 

Pricing and Cost Advice

"The price of the solution is reasonable but it is reasonable for the features."
"The solution is certainly expensive in comparison with other cloud services."
"With the little idea I have about the costs, I can say that XDR tools tend to be a bit expensive. If you are using Microsoft Defender XDR, then you need to go for a subscription-based pricing model."
"The pricing of Microsoft 365 Defender is definitely on the costly side, but with the features and services that Microsoft provides, such as the seamless integration of all the Defender tools, while the price is on the higher side, there is no alternative."
"It can be complex to navigate since customers have varying licensing agreements across Microsoft. If they go straightforward with E5 for all users, it's simple, but combinations based on budget constraints can complicate things."
"I find the pricing to be quite competitive, especially considering its inclusion in our E5 subscription, which provides a comprehensive set of functionalities."
"Microsoft Defender XDR is expensive."
"For Defender, they have Endpoint Plan 1 and Endpoint Plan 2, but I don't know on what basis they have classified Endpoint Plan 1 and Plan 2, but it has given me enough pain to pick and design Endpoint Plan 1 or Endpoint Plan 2 for my organization. In fact, we are still struggling with it. Too many SKUs are confusing. There should not be too many SKUs, and they shouldn't charge for every new feature."
"It is fairly priced because we get complete integrated services with the E5 license."
"Purchasing Microsoft Defender XDR as part of a Microsoft 365 bundle can be cost-effective, but acquiring it as a standalone product may be more expensive."
report
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
861,524 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
21%
Computer Software Company
20%
Government
7%
Manufacturing Company
7%
Computer Software Company
17%
Financial Services Firm
8%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Azure Firewall Manager?
The most valuable feature of Azure Firewall Manager is the testing and configuration.
What is your experience regarding pricing and costs for Azure Firewall Manager?
The pricing for Azure Firewall Manager seems okay compared to its good features. Although extra expenses are incurred for additional services, these are not directly related to the firewall, and th...
What needs improvement with Azure Firewall Manager?
Azure Firewall Manager is good most of the time, but it could be improved regarding cost. The cost is a significant concern because we are in a region where the dollar is not our default currency, ...
What do you like most about Microsoft 365 Defender?
Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.
What is your experience regarding pricing and costs for Microsoft 365 Defender?
The pricing for Microsoft Sentinel operates on a pay-as-you-go model based on data ingestion. I recall that Defender XDR pricing is based on the number of endpoints.
What needs improvement with Microsoft 365 Defender?
For Microsoft Defender XDR ( /categories/extended-detection-and-response-xdr ), there is currently no ability to reset passwords for on-premises accounts, which is a key challenge. Incident managem...
 

Also Known As

No data available
Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender
 

Overview

 

Sample Customers

Information Not Available
Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.
Find out what your peers are saying about Azure Firewall Manager vs. Microsoft Defender XDR and other solutions. Updated: June 2025.
861,524 professionals have used our research since 2012.