Azure Key Vault vs Microsoft Entra ID comparison

Azure Key Vault
Read 46 Azure Key Vault reviews
  • 570 Views
  • 472 Comparison Views
97% willing to recommend
Microsoft Entra ID
Read 192 Microsoft Entra ID reviews
  • 4,308 Views
  • 3,215 Comparison Views
94% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Azure Key Vault and Microsoft Entra ID based on real PeerSpot user reviews.

Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Azure Key Vault vs. Microsoft Entra ID Report (Updated: May 2024).
Buyer's Guide
Azure Key Vault vs. Microsoft Entra ID
May 2024
Download the complete report
Helped 793,295 peers since 2012
 

Categories and Ranking

Azure Key Vault
Ranking in Microsoft Security Suite
12th
Average Rating
8.6
Number of Reviews
46
Ranking in other categories
Enterprise Password Managers (1st), Certificate Management Software (1st)
Microsoft Entra ID
Ranking in Microsoft Security Suite
4th
Average Rating
8.6
Number of Reviews
192
Ranking in other categories
Single Sign-On (SSO) (1st), Authentication Systems (1st), Identity Management (IM) (1st), Identity and Access Management as a Service (IDaaS) (IAMaaS) (1st), Access Management (1st)
 

Mindshare comparison

As of July 2024, in the Microsoft Security Suite category, the mindshare of Azure Key Vault is 0.4%, down from 1.0% compared to the previous year. The mindshare of Microsoft Entra ID is 10.9%, up from 7.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite
Unique Categories:
Enterprise Password Managers
26.3%
Certificate Management Software
46.6%
Single Sign-On (SSO)
29.4%
Authentication Systems
19.4%
 

Featured Reviews

Bijoyendra Roychowdhury - PeerSpot reviewer
Apr 18, 2023
An affordable and effective tool for securing databases
We use the solution to authenticate security features for environments. Using it, we can encrypt keys and protect the databases from getting hacked The solution works as an effective tool for securing our organization's databases. They should add a key vault feature for the databases temporarily…
Read full review
Nagendra Nekkala. - PeerSpot reviewer
Dec 14, 2023
A complete and simple solution for managing identity and applications access
It provides a single pane of glass for managing user access. It streamlines the IT access management process and improves the security of the IT systems. If there are any configuration changes in the software, they are taken care of automatically. The integration of Azure Active Directory with other Microsoft services is very easy. We can integrate it with Teams, 365, or any other Microsoft solution. Azure Active Directory provides a seamless and secure way for employees to access work resources that have been assigned to them. They can access the resources from anywhere and work from anywhere. Azure Active Directory provides a robust set of features. Features such as multifactor authentication and conditional access policies are in-built. These features enhance the security of the IT systems and protect sensitive information from potential threats. Conditional Access helps to enforce fine-tuned and adaptive access controls. Conditional Access provides more secure authentication for us. We also use multifactor authentication to secure our enterprise from any potential threats. Permission Management helps to bifurcate the users based on various roles, such as administrator. Azure Active Directory has saved us time. It has helped to save four hours a day. It has also saved us money. There is about a 10% saving. Azure Active Directory has affected the employee user experience in our organization. It is seamless. They do not get to feel it is there.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features of Microsoft Azure Key Vault are the security and convenience of changing passwords in multiple places."
"Azure Key Vault allows only identified users to get the credentials and rotates the keys automatically."
"We only use the basic features and those are the ones that have the ability to tie into the app, the secrets, and the passwords and encrypt them."
"The centralized storage and secure storage are features we like."
"The solution's technical support is good. My company received support from Microsoft whenever we needed it."
"The GUI was quite easy for me to use."
"Technical support is helpful."
"It is a managed service in Azure, you do not have to worry about security other than managing your own identities."
More Azure Key Vault pros
"I like the downloads, availability for Android and iOS operating systems, and integration with Microsoft applications, such as Azure- and Office-based solutions. It is an excellent tool that helps with day-to-day business operations. I also like that I can install the app on my mobile."
"It is a very straightforward implementation."
"It's definitely both stable and scalable."
"The interface is well laid out and it is easy to navigate."
"The most valuable components of the solution are provisioning and deprovisioning since both features work...Microsoft Entra Verified ID is a very stable solution."
"Every feature in Microsoft Entra ID plays a crucial role in overall security."
"A use case that we did for an end user in a manufacturing organization: We used WVD with biometric authentication because 1,500 processes need to happen in a process. The user didn't want to use a login using their credentials. They wanted to use fingerprinting or tap their ID. That is where we integrated with the authentication. Now, they can process in a couple of hours, and they run those 1,500 processes every day. This changed their login process, which improved the manufacturing process. This helped a lot for their high deployment."
"Personally, I'm a great fan of Azure Active Directory due to the security and compliance features that are there in the classic or default Azure Active Directory."
More Microsoft Entra ID pros
 

Cons

"Users should be able to segregate the passwords."
"It would be great if Azure allowed more third-party vendors into the ecosystem."
"We've experienced issues with configuration."
"Currently, our company has to add the secrets manually, one by one, in Azure Key Vault, which is a tedious process."
"The solution does not allow you to integrate with XML parties if it is not inside Azure itself."
"One of my previous clients was one of the big banks here in the Netherlands and the EU courts have stated that Microsoft Azure Key Vault is not, according to their perspective, secure due to the fact that Microsoft has access to Key Vault."
"There are additional charges for data transfers. However, the pricing is mostly reasonable for the licensing overall."
"While the solution already does a great job of managing keys, the solution could probably look at maybe expanding more into mobile devices and endpoints."
More Azure Key Vault cons
"Certain aspects of the user interface can be rather clunky and slow. It can sometimes be circular in terms of clicking a link for a risky user sign-in and seeing what the risky login attempts were. It takes you in a circle back to where you started, so drilling down into details, especially if you are not in it every day and it is one of many tools that you use, can be difficult. It can be difficult to track down the source of an issue."
"For example, there were some authentication features that, for security purposes, had certain limitations. Those limitations still exist, but the portal now has options so that the customers can make custom features to manage their identity."
"The robustness of the conditional access feature of the zero trust strategy to verify users is adequate but not comprehensive."
"Technical support could be faster."
"The thing that is a bit annoying is the inability to nest groups. Because we run an Azure hybrid model, we have nested groups on-premise which does not translate well. So, we have written some scripts to kind of work around that. This is a feature request that we have put in previously to be able to use a group that is nested in Active Directory on-premise and have it handled the same way in Azure."
"The solution has not saved costs. While we’ve eliminated some tools, there are some other features that we are dependent on as admin, which are not yet integrated with Azure AD."
"There is a concept of cross-tenant trust relationships, which I believe Microsoft is actively pursuing. That is something which in the coming days and years to come by will be very key to the success of Azure Active Directory, because many organizations are going into mergers and acquisitions or spinning off new companies. They will still have to access the old tenant information because of multiple legal reasons, compliance reasons, and all those things. So, there should be some level of tenant-level trust functionality, where you can bring people from other tenants to access some part of your tenant application. So, that is an area which is growing. I believe Microsoft is actively pursuing this, and it will be an interesting piece."
"We'd like to be able to link to non-Mircosft products, like Linux."
More Microsoft Entra ID cons
 

Pricing and Cost Advice

"The product is affordable, in my opinion."
"Azure is cheaper than CyberArk... CyberArk is good, but it's quite expensive."
"You don't need to pay for a license for Azure Key Vault. It is billed on a pay-as-you-go basis."
"I find the pricing of Azure Key Vault to be reasonable."
"Pricing is quite reasonable and support is included, although premium support is available for an additional fee."
"I give the price of the solution a ten out of ten."
"It is a cheap option."
"Azure Key Vault is expensive."
More Azure Key Vault pricing and cost advice
"As a nonprofit, we have A5 licenses for nonprofits in education, so we at least have some reduced costs."
"The pricing is okay and is not a challenge for us."
"The pricing depends on the use case and can be negotiated based on volume."
"Everything needs to be considered for the requirements and if it is within the budget, then you can come up with a solution, whether it is SaaS, PaaS, or IaaS."
"Its price is okay. It is easy to go from P1 to P2 license. It is not exactly a bargain, but I would recommend the P2 license."
"We are currently on the education plan, so the price is slightly better than the development plan."
"Azure Active Directory has a very extensive licensing model. Most of the features are available in the free and basic version, and then there are premium P1 and P2 editions. The licensing model is based on how many users you have per month. In Australia, for a P1 license, the cost is 8 dollars. With P1 and P2 licenses, you get a lot of goodies around the security side of things. For example, User Identity Protection is available only in P2. These are extra features that allow you to have a pretty good security posture, but most of the required things are available in the free and basic version."
"There are four different levels of subscription including the free level, one that includes the Office 365 applications, the Premium 1 (P1) level, and the Premium 2 (P2) level."
More Microsoft Entra ID pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
See recommendations
793,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
9%
Government
7%
Educational Organization
28%
Computer Software Company
12%
Financial Services Firm
9%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is better - Azure Key Vault or AWS Secrets Manager?
Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governanc...
See all answers
What do you like most about Microsoft Azure Key Vault?
With Azure Key Vault, we can generate our own keys and then import them inside the system, which provides a higher level of security than provider-managed keys.
See all answers
What is your experience regarding pricing and costs for Microsoft Azure Key Vault?
Azure Key Vault is a very, very expensive solution. Currently, the solution's pricing is based on the number of transactions, which is very high in some cases.
See all answers
How does Duo Security compare with Microsoft Authenticator?
We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Duo for 30 days, and we could not be happier. Duo Security is easy to configure a...
See all answers
What do you like most about Azure Active Directory?
It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. We can easily do third-party multifactor authentication.
See all answers
What is your experience regarding pricing and costs for Azure Active Directory?
The pricing is expensive. It's in US dollars. I'd rate the affordability of pricing six out of ten.
See all answers
 

Comparisons

AWS Secrets Manager vs Azure Key Vault Logo
AWS Secrets Manager vs Azure Key Vault
Compared 52% of the time
HashiCorp Vault vs Azure Key Vault Logo
HashiCorp Vault vs Azure Key Vault
Compared 15% of the time
CyberArk Enterprise Password Vault vs Azure Key Vault Logo
CyberArk Enterprise Password Vault vs Azure Key Vault
Compared 6% of the time
AWS Certificate Manager vs Azure Key Vault Logo
AWS Certificate Manager vs Azure Key Vault
Compared 5% of the time
Bitwarden vs Azure Key Vault Logo
Bitwarden vs Azure Key Vault
Compared 1% of the time
More Azure Key Vault Competitors
Microsoft Intune vs Microsoft Entra ID Logo
Microsoft Intune vs Microsoft Entra ID
Compared 10% of the time
Google Cloud Identity vs Microsoft Entra ID Logo
Google Cloud Identity vs Microsoft Entra ID
Compared 7% of the time
Okta Workforce Identity vs Microsoft Entra ID Logo
Okta Workforce Identity vs Microsoft Entra ID
Compared 7% of the time
CyberArk Privileged Access Manager vs Microsoft Entra ID Logo
CyberArk Privileged Access Manager vs Microsoft Entra ID
Compared 6% of the time
Ping Identity Platform vs Microsoft Entra ID Logo
Ping Identity Platform vs Microsoft Entra ID
Compared 5% of the time
More Microsoft Entra ID Competitors
 

Product Reports

Buyer's Guide
Azure Key Vault
July 2024
Azure Key Vault reportDownload Azure Key Vault product report
Buyer's Guide
Microsoft Entra ID
July 2024
Microsoft Entra ID reportDownload Microsoft Entra ID product report
 

Also Known As

Microsoft Azure Key Vault, MS Azure Key Vault
Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator
 

Learn More

Microsoft
Microsoft
 

Interactive Demo

Demo not available
Microsoft
Microsoft
 

Overview

Microsoft Azure Key Vault is a cloud-based data security and storage service that allows users to keep their secrets safe from bad actors.

Benefits of Microsoft Azure Key Vault

Some of the benefits of using Microsoft Azure Key Vault include:

  • Secure your secrets in a single central location, enabling you to control how your information is disseminated.
  • Keep your data away from bad actors. Application administrators can store their application’s security information away from the actual application. Microsoft Azure Key Vault reduces the chance that a bad actor will be able to leak an application’s secrets. Because the data is not stored in the code of the application, hackers will be unable to steal the security information.
  • Retrieve your information securely. When the information is needed, the application can securely retrieve it by using a uniform resource identifier (URI) to connect to Microsoft Azure Key Vault.
  • Securely store your digital keys and secrets. Microsoft Azure Key Vault stores data behind layers of security protocol. No one can access the information stored in a Microsoft Azure Key Vault without first obtaining the necessary authentication and authorization. The authentication process allows the system to figure out who is trying to access the vault in question. This process is performed by Azure’s Active Directory. After the person or entity is authenticated, Microsoft Azure Key Vault then assigns them a level of authorization. This determines what sort of actions they will be able to perform.
  • Choose from two different authorization options. The level of a user’s authorization can be either role-based or dictated by a policy that the administrator sets. Azure’s role-based access control (Azure RBAC) enables users to both manage and access stored data. A key vault access policy limits users to data access.
  • Secure your data in the way that best fits your needs. Your data can be protected by either industry-standard algorithm software or hardware security modules (HSMs). Your data is even safe from Microsoft, as the vaults are designed so that not even Microsoft can get in and access the information.
  • Easily monitor who accesses your vault(s). Microsoft Azure Key Vault enables administrators to keep a close eye on their secrets. Users can activate a vault-logging feature that will track every piece of information. It will record who accessed the vault, when they accessed it, and other pertinent details.
  • Choose how you want to store your logs. Users can store logs in multiple ways. These logs can be archived, sent to the Azure monitor logs area, or streamed to an events hub. The logs can be secured to prevent unauthorized viewing and deleted when they are no longer needed.

Reviews from Real Users

Microsoft Azure Key Vault stands out among their competitors for a number of reasons. Two major ones are the overall robustness of the solution and its ability to protect and manage many different digital asset types. The many features that the solution offers allows users to tailor their experience to meet their specific needs. Its flexibility enables users to accomplish a wide variety of security and identity management related tasks. It empowers users to secure a wide array of assets. Users can keep many different types of secrets away from bad actors.

A cloud architect at a marketing services firm writes, “All its features are really valuable. It's really well thought-out. It's a complete turnkey solution that has all the concerns taken care of, such as access control and management. You can use it in infrastructure as code to create key vaults, APIs, PowerShells, CLIs, even Terraform. You can also use it in different services across the board. If you have app services, or virtual machines, Kubernetes, or Databricks, they can all use Key Vault effectively. In my opinion, in a DevSecOps, DevOps, or even in a modern Azure implementation, you have to use Azure Key Vault to make sure you're addressing security and identity management concerns. By "identity" I mean usernames, passwords, cryptography, etcetera. It's a full-blown solution and it supports most breeds of key management: how you store keys and certify.”

Roger L., the managing director of Cybersecurity Architecture at Peloton Systems, says, “The most valuable aspect of the product is its ability to keep our admin password accounts for keys and a lot of our high-value assets. It can manage those types of assets. So far, the product does a great job of managing keys.”

Microsoft Entra ID, previously known as Azure AD (Active Directory), is Microsoft's cloud-based identity and access management (IAM) solution. Designed to help organizations of all sizes manage user identities and create an intelligent security perimeter around their cloud and on-premise resources. Microsoft Entra ID or Azure AD is integral to the Microsoft 365 and Azure ecosystems. It provides a robust set of capabilities to manage users and groups and secure access to applications in a centralized, streamlined manner.

Microsoft Entra ID (Azure AD) is a login system, morphing into a sophisticated identity and access management (IAM) solution for the modern, hybrid workplace. Imagine a single vault for all your digital keys – that's the essence of Entra ID's identity management. It acts as a central repository for user identities, encompassing usernames, passwords, and even additional attributes like department or employee role.

These capabilities enabled simplified administration using a unified platform for adding, modifying, and deleting user accounts. Users no longer need to remember login credentials for a plethora of applications. Entra ID streamlines access by using the same identity across various cloud services and on-premises resources (if integrated). Centralized identity management allows for stricter enforcement of security policies and password complexity requirements across the organization.

Authentication sits at the heart of the solution, ensuring only authorized users gain access to sensitive resources. It employs a multi-pronged approach:

  • Password Authentication: The traditional method of username and password is still supported, but Entra ID encourages stronger authentication methods.
  • Multi-Factor Authentication (MFA): Adding an extra layer of security, MFA requires users to verify their identity beyond just a password – through a code sent to their phone, fingerprint recognition, or a security key.
  • Single Sign-On (SSO): This user-friendly feature eliminates the need to enter credentials repeatedly. Users sign in once to Entra ID and gain seamless access to all authorized applications, boosting productivity.
  • Conditional Access Policies: Providing granular control over how and when users can access resources. Based on conditions like user role, location, device state, and the application being accessed, Conditional Access policies help ensure that only the right people under the right conditions can access sensitive resources.
  • Seamless Integration: Seamless integration with thousands of SaaS applications, Microsoft 365, and on-premises applications via Application Proxy or third-party identity bridges.
  • Advanced Security Reports and Alerts: Sophisticated security monitoring, reporting tools, and automated alerts. These features enable to identify potential security issues, such as atypical behavior or attempted identity attacks, allowing for swift remediation actions.

For organizations with on-premises infrastructure, Microsoft Entra ID (Azure AD) offers hybrid identity options. This allows for a smooth integration between on-premises Active Directory and Entra ID, providing a consistent identity for users across both environments. It enables organizations to leverage their existing investments in on-premises infrastructure while taking advantage of cloud scalability and flexibility.

In conclusion, Microsoft Entra ID (Azure AD) is a comprehensive IAM solution that addresses the complex challenges of managing and securing identities in a cloud-centric world. Its blend of ease of use, security, and integration capabilities makes it an essential component of modern IT infrastructure, supporting both operational efficiency and strategic business objectives.

Additional links:

       

      Sample Customers

      Adobe, DriveTime, Johnson Controls, HP, InterContinental Hotels Group, ASOS
      Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.
      Buyer's Guide
      Azure Key Vault vs. Microsoft Entra ID
      May 2024
      Free Report: Azure Key Vault vs. Microsoft Entra ID
      Find out what your peers are saying about Azure Key Vault vs. Microsoft Entra ID and other solutions. Updated: May 2024.
      DOWNLOAD NOW
      793,295 professionals have used our research since 2012.
      See our Azure Key Vault vs. Microsoft Entra ID report.
      See our list of best Microsoft Security Suite vendors.

      We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.