Try our new research platform with insights from 80,000+ expert users

Azure Firewall Manager vs Microsoft Defender XDR comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Azure Firewall Manager
Ranking in Microsoft Security Suite
28th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
8
Ranking in other categories
Firewall Security Management (11th)
Microsoft Defender XDR
Ranking in Microsoft Security Suite
3rd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
101
Ranking in other categories
Endpoint Detection and Response (EDR) (5th), Extended Detection and Response (XDR) (3rd)
 

Mindshare comparison

As of July 2025, in the Microsoft Security Suite category, the mindshare of Azure Firewall Manager is 0.5%, up from 0.5% compared to the previous year. The mindshare of Microsoft Defender XDR is 6.5%, down from 7.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite
 

Featured Reviews

MuhammadShakeel - PeerSpot reviewer
Manages multiple firewalls effortlessly but faces challenges with cost efficiency
Azure Firewall Manager is good most of the time, but it could be improved regarding cost. The cost is a significant concern because we are in a region where the dollar is not our default currency, and converting to dollars makes it very expensive. Microsoft should calculate and show the products in local currencies, such as PKR or Bangladesh currency, and also introduce Indian currency similarly for Pakistan. The technical support could be improved. When a resource is assigned, that resource should follow the ticket and respond swiftly, including sending an email to inform me that an agent has been assigned. I still find myself waiting for an agent to connect with me and resolve my issues. I have not been integrating Azure Firewall Manager with Azure Virtual WAN.
Gabor Nyerd - PeerSpot reviewer
Includes four services and four products, which can help organizations a lot
We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Azure Firewall Manager is the testing and configuration."
"Azure Firewall Manager centralizes network security management with a hub and spoke architecture."
"The solution is very easy to set up."
"The best feature of Azure Firewall Manager is that it is easy to maintain and configure."
"The tool's support is good."
"It is easy to install and does not require any plugins for your browser."
"The solution has improved our organization with its firewall."
"We are utilizing Azure Entra ID for group labeling, so Active Directory, or now it is Entra ID, securing our application for everyone who accesses it, and Azure Firewall Manager is definitely securing our projects and all its features are fine."
"The comprehensiveness of Microsoft's threat detection is good."
"On the Windows side, Microsoft Defender XDR is definitely integrated into the operating system. Once we have it on the security dashboard, we can see a real-time storyline."
"Vulnerability assessment and just-in-time access are some valuable features of Defender for server plans."
"The solution is well integrated with applications. It is easy to maintain and administer."
"In Microsoft 365 vendor products, monitoring and connectivity across all Microsoft and third-party connectors enable viewing of all activity within those environments."
"It's a great threat intelligence source for us, providing alerts for things it detects on the network and on the machines. We've used it often when there is a potential incident to see what was done on a computer. That works quite nicely because you can see everything that the user has done..."
"Microsoft Defender is stable."
"The most valuable feature is the network security."
 

Cons

"The cost is a significant concern because we are in a region where the dollar is not our default currency, and converting to dollars makes it very expensive."
"For Azure Firewall Manager, the learning curve for new people is a bit challenging, but the integration should be more straightforward for configuring a centralized system."
"There should be a simple one-click deployment for a firewall, rather than a set of setup instructions that include steps such as the DNS configuration, et cetera."
"We could do only one-way NAT-ing, where the traffic comes from outside to internal, to Azure, which is fine. However, when we actually do NAT-ed traffic to hit the firewall, that way is not working."
"The price is okay. This said, the solution is certainly expensive in comparison with other cloud services."
"The solution can improve the integration with open-source tools."
"The tool's security features need to improve. It needs also to include a monitoring system for logs. It is also complicated to find a query on the Azure firewall."
"The configuration and settings require substantial time for learning, particularly for new users."
"Microsoft tends to provide too many features, which makes the solution prone to bugs."
"I do think that maybe having a feature within my organization where there are three different domains within which we have to operate would be helpful, as there is currently no unified view within the domains."
"It would be beneficial to have a more seamless experience with everything consolidated in one place, particularly when dealing with aspects related to the Exchange console."
"The abundance of sub-dashboards and sub-areas within the main dashboard can be confusing, even if it all technically makes sense."
"Defender also lacks automated detection and response. You need to resolve issues manually. You can manage multiple Microsoft security products from a single portal, and all your security recommendations are in one place. It's easy to understand and manage. However, I wouldn't say Defender is a single pane of glass. You still need to switch between all of the available Microsoft tools. You can see all the alerts in one panel, but you can't automate remediation."
"The documentation on their website is somewhat outdated and doesn't show properly. I wanted to try a query in Microsoft Defender 365. When I opened the related documentation from the security blog on the Microsoft website, the figures were not showing. It was difficult to understand the article without having the figures. The figures were there in the article, but they were not getting loaded, which made the article obsolete."
"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."
"There are other SIEM solutions that are easier to use, mainly based on the creation of rules, use cases, and groups."
 

Pricing and Cost Advice

"The solution is certainly expensive in comparison with other cloud services."
"The price of the solution is reasonable but it is reasonable for the features."
"The pricing of Microsoft 365 Defender is definitely on the costly side, but with the features and services that Microsoft provides, such as the seamless integration of all the Defender tools, while the price is on the higher side, there is no alternative."
"The solution is affordable, and we haven't been hit with any hidden costs. The subscription model is straightforward, and it's easy to understand how much additional features cost. If we need to cancel a license or feature, we do that well in advance to avoid being charged for it, but overall, the pricing and licensing are simple and easy."
"While the standalone price of Defender XDR might seem high, its value becomes clear when considering the ease of implementation and smooth integration with our existing Microsoft infrastructure, especially when bundled with other Microsoft products."
"The solutions price is fair for what they offer."
"They have moved from a licensing model to pay-per-use... The question is: What happens if, for any reason, there's not enough budget to accept this model? That could be a great problem."
"Microsoft Defender falls within a mid-tier price range compared to other security solutions."
"For Defender, they have Endpoint Plan 1 and Endpoint Plan 2, but I don't know on what basis they have classified Endpoint Plan 1 and Plan 2, but it has given me enough pain to pick and design Endpoint Plan 1 or Endpoint Plan 2 for my organization. In fact, we are still struggling with it. Too many SKUs are confusing. There should not be too many SKUs, and they shouldn't charge for every new feature."
"The most valuable licensing option is expensive, so pricing could be improved. Licensing options for this solution also need to be consolidated, because they frequently change."
report
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
862,499 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
22%
Computer Software Company
20%
Government
7%
Manufacturing Company
7%
Computer Software Company
17%
Financial Services Firm
8%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Azure Firewall Manager?
The most valuable feature of Azure Firewall Manager is the testing and configuration.
What is your experience regarding pricing and costs for Azure Firewall Manager?
The pricing for Azure Firewall Manager seems okay compared to its good features. Although extra expenses are incurred for additional services, these are not directly related to the firewall, and th...
What needs improvement with Azure Firewall Manager?
Azure Firewall Manager is good most of the time, but it could be improved regarding cost. The cost is a significant concern because we are in a region where the dollar is not our default currency, ...
What do you like most about Microsoft 365 Defender?
Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.
What is your experience regarding pricing and costs for Microsoft 365 Defender?
The pricing for Microsoft Sentinel operates on a pay-as-you-go model based on data ingestion. I recall that Defender XDR pricing is based on the number of endpoints.
What needs improvement with Microsoft 365 Defender?
For Microsoft Defender XDR ( /categories/extended-detection-and-response-xdr ), there is currently no ability to reset passwords for on-premises accounts, which is a key challenge. Incident managem...
 

Also Known As

No data available
Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender
 

Overview

 

Sample Customers

Information Not Available
Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.
Find out what your peers are saying about Azure Firewall Manager vs. Microsoft Defender XDR and other solutions. Updated: June 2025.
862,499 professionals have used our research since 2012.