Kandji vs Tanium comparison

Kandji and Tanium are both solutions in the Vulnerability Management category. Kandji is ranked #43 with an average rating of 9.0, while Tanium is ranked #23 with an average rating of 8.5. Additionally, 100% of Kandji users are willing to recommend the solution, compared to 80% of Tanium users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jan 18, 2026

Tanium and Kandji are competing in the endpoint management category. Kandji seems to have the upper hand due to its intuitive features and perceived value.

Features: Tanium offers comprehensive endpoint management, real-time data collection, and advanced configuration. Kandji focuses on seamless device management, compliance automation for Apple devices, and ease of integration.

Ease of Deployment and Customer Service:Tanium provides a detailed deployment process supported by extensive resources. Kandji offers a more streamlined deployment with responsive customer service, especially beneficial for organizations using Apple products.

Pricing and ROI: Tanium provides a cost-effective solution for enterprise-wide deployment, offering great value. Kandji's pricing is higher but justified by its specialized Apple-focused features and ease of use.

To learn more, read our detailed Kandji vs. Tanium Report (Updated: March 2026).

Buyer's Guide

Kandji vs. Tanium

March 2026

Download the complete report

Helped 885,376 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Featured Reviews

ABHISHEK_SINGH

Senior Process Expert at A.P. Moller - Maersk

Gained full visibility and streamlined threat detection through behavior-based insights and AI integration

Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.

Read full review

reviewer2795433

Cloud Ops Lead at a tech vendor with 10,001+ employees

Automated updates have strengthened security and save me time on daily device management

In my opinion, the best features Kandji offers are its UI, which is very clean and clear to use, not overly cluttered, allowing me to see the icon of all the different apps that I can install, and when I click on the little icon in my toolbar, it shows me any updates which I am able to install, making it very easy to use. The clean UI and ease of use definitely save me time, probably cutting the time in half for trying to figure out when to install updates myself, because the notifications are pushed to me, which is good since I want to keep my system up to date without interfering with my workflow. Kandji has impacted my organization positively by definitely increasing security because it notifies you when an update is ready to be installed, and if you do not install it within a reasonable time frame, it would automatically install it, which is good, and it probably has saved at least 30% of my time from manually having to look for updates since it just notifies me when the update is ready. Kandji's automatic installation feature ensures our team's compliance or security posture, as it makes sure we are up to date and all on the same version of a particular tool, which is very important for a technical IT team to avoid differences that might affect functionality.

Read full review

Mairajuddin Ahmed

Division Manager, Information Technology at a legal firm with 51-200 employees

Centralized policies have improved remote endpoint control and have simplified data visibility

The integration is not simple and easy. It requires experienced users or people who have done the implementation. When certain policies are applied, they do not immediately push the policies. For example, we manage endpoint device USB access. We set a policy to block it, but it does not come into effect immediately. Sometimes it takes three or four days for it to reflect. That is a pain point. I have raised this issue with support as well, but they said that I need to limit the number of devices in the policy. In terms of application deployment, for us, it was seamless.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The initial setup is pretty easy."

"We can visualize and control the activities in the environment from anywhere."

"The stability of this product is very good."

"One of the main benefits of the solution is its intelligence to correlate the events into an incident."

"Its interface and pricing are most valuable, and it is better than other vendors in terms of security."

"Palo Alto is the best security solution in the market."

"One of the things that I enjoy the most is using policy extensions. It's like having host firewalls to control USB connections. I think it's a wonderful tool to restrict use when connecting to our computers. Another important tool is Home Insights. That is an add-on to the Cortex solution. I like that because we can see all the vulnerabilities in the environment and control what assets are connected to our network."

"Stability is a primary factor, and then there's the ease of distribution and policy management."

More Cortex XDR by Palo Alto Networks pros

"I highly recommend Kandji to others looking into using it since I have not seen any game-breaking issues; it is highly reliable, scalable, improves security, and reduces the time individuals need to spend on system configuration for security updates."

"It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want."

"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."

"Tanium is used for endpoint management, specifically patching and configuration management."

"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."

"Tanium has made the process of detecting threats more proactive with its detection, so the process is easier and more efficient."

"Tanium's most valuable features are patch management, inventory, and distribution software."

"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."

"For inventory purposes, it's from one of the best things on the scene, as you can get live inventory."

"Tanium is highly scalable."

More Tanium pros

Cons

"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."

"However, if you do not have Palo Alto in your environment, you are paying these additional services just for Cortex XDR by Palo Alto Networks, so it is not a cost-effective solution."

"To jump from the partner to Palo Alto directly was challenging."

"Technology evolves every day, so it would be nice if it gets more secure. It can also have more integration with other platforms."

"Currently, we are monitoring all USB drives and ports but we would like to improve our device control capabilities."

"Previously, the endpoint would leave the environment, not being on our VPN, essentially unable to interact with the server to upload files."

"A little bit more automation would be nice."

"This is a very costly product."

More Cortex XDR by Palo Alto Networks cons

"Kandji should give open customization."

"They could improve the UI."

"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium."

"Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based."

"The most painful thing is the interface. It's a bit unclear sometimes."

"The problem or challenge is a pre-sales and go-to strategy for the SMB market delivered through a channel or model. It's very convoluted and vague, which leads to some confusion about the various types of modules, and the device-to-seat cost is extremely difficult to calculate."

"Our biggest issue with the solution is its lack of mobility."

"Most of the time, agent-relative issues have to be more equipped with self-healing features."

"The solution lacks mobility."

More Tanium cons

Pricing and Cost Advice

"It's way too expensive, but security is expensive. You pay for your licensing, and then you pay for someone to monitor the stuff."

"The pricing is a little bit on the expensive side."

"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."

"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."

"I feel it is fairly priced."

"Traps pays for itself within the first 16 months of a three-year subscription. This is attributed to OPEX savings, as security teams spent less time trying to identify and isolate malware for analysis as a result of a reduction in malware incidents, false positives, and breach avoidance."

"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."

"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"Users have to pay a yearly licensing fee for Kandji, which is expensive."

"The product's pricing differs from region to region depending on negotiations and the number of endpoints."

"The solution is expensive but it's a good investment."

"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."

"The solution offers value for money."

"It is higher than some competitors in the market."

"There is an annual license required to use this solution."

"It's an expensive solution. It would be nice if the cost were lower."

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

885,376 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Construction Company

13%

Manufacturing Company

Computer Software Company

Financial Services Firm

11%

Computer Software Company

11%

Manufacturing Company

10%

Educational Organization

Financial Services Firm

15%

Government

11%

Manufacturing Company

Healthcare Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	44
Midsize Enterprise	20
Large Enterprise	47

No data available

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	3
Large Enterprise	12

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...

See all answers

What is your experience regarding pricing and costs for Kandji?

My experience with pricing, setup cost, and licensing is that their pricing structure is bucket-based, requiring lice...

See all answers

What needs improvement with Kandji?

I have not been involved in the purchase process of Kandji, but I understand it is very Apple-centric and they have v...

See all answers

What is your primary use case for Kandji?

My main use case for Kandji is that within my organization, I have a Mac as my work laptop, and Kandji is used for se...

See all answers

What needs improvement with Tanium?

While there is always room for improvement, I am pleased with Tanium.

See all answers

What is your primary use case for Tanium?

The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the co...

See all answers

What advice do you have for others considering Tanium?

For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it econom...

See all answers

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 9% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 6% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

More Cortex XDR by Palo Alto Networks Competitors

Jamf Pro vs Kandji

Compared 20% of the time

Microsoft Intune vs Kandji

Compared 18% of the time

CrowdStrike Falcon vs Kandji

Compared 14% of the time

Microsoft Defender for Endpoint vs Kandji

Compared 12% of the time

Open EDR vs Kandji

Compared 6% of the time

More Kandji Competitors

CrowdStrike Falcon vs Tanium

Compared 7% of the time

Microsoft Defender for Endpoint vs Tanium

Compared 5% of the time

BigFix vs Tanium

Compared 4% of the time

NinjaOne vs Tanium

Compared 4% of the time

Tenable Security Center vs Tanium

Compared 2% of the time

More Tanium Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

March 2026

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

Vulnerability Management

February 2026

Download Kandji product report

Buyer's Guide

Tanium

March 2026

Download Tanium product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

No data available

Tanium Inc Cloud, Tanium XEM

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?

Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
Multi-layered Security: Combines various security measures for comprehensive protection.
Endpoint Protection: Safeguards against malware and exploits.
Behavioral Analysis: Monitors suspicious activity for early detection.
Automatic Threat Response: Automates responses to neutralize threats.

What benefits should users expect?

Ease of Use: Simplifies security management with intuitive design.
Resource Efficiency: Minimizes impact on system resources.
Integration Capabilities: Works well with existing security setups.
Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

Kandji’s automations are a force multiplier. They free your technology team from repetitive tasks, letting you focus energy on more impactful projects. Kandji has purpose-built experiences from setup and app installs to software updates and computer restarts. It’s what your teams expect from a company with high standards. From increased efficiency to lower cost of ownership, your bottom line is our top priority.

Kandji

Tanium offers robust endpoint protection, patching, and inventory management, consolidating the functions of tools like BigFix with capabilities in incident response, network security, and cloud or on-premise deployments.

Known for real-time capabilities, Tanium provides detailed analytics, security features, and device management. Users benefit from quick implementation, real-time updates, and patching campaigns. Despite its strengths, integration and custom plugin expansion remain areas to improve, along with data visualization and network optimization. Reporting enhancements and user training could advance its usability, and some UI elements may require updates for clarity and security.

What are the essential features of Tanium?

Detailed Analytics: Provides actionable insights for better decision-making.
Security Capabilities: Offers strong defense measures against threats.
Real-Time Queries: Facilitates immediate information access.
Patch Management: Streamlines software updates across devices.
Device Management: Efficiently handles comprehensive inventory and monitoring tasks.

What benefits should users expect?

Ease of Use: Simplifies complex IT tasks.
Scalability: Adapts to growing IT infrastructure needs.
Integration Flexibility: Merges with existing systems effortlessly.
Real-Time Updates: Ensures current data availability for informed actions.

Tanium's deployment spans industries focusing on endpoint protection and compliance, ensuring reliable device and server management in settings where safety and quick adaptation are critical. Organizations use it for application deployment, compliance checks, and integrating it as an EDR solution, enhancing overall security and operational efficiencies.

Tanium

Sample Customers

CBI Health Group, University Honda, VakifBank

Information Not Available

JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life

Buyer's Guide

Kandji vs. Tanium

March 2026

Free Report: Kandji vs. Tanium

Find out what your peers are saying about Kandji vs. Tanium and other solutions. Updated: March 2026.

DOWNLOAD NOW

885,376 professionals have used our research since 2012.

See our Kandji vs. Tanium report.

See our list of best Vulnerability Management vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.