No more typing reviews! Try our Samantha, our new voice AI agent.

Kandji vs Tanium comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 3, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Kandji
Ranking in Endpoint Detection and Response (EDR)
13th
Average Rating
8.8
Reviews Sentiment
6.6
Number of Reviews
19
Ranking in other categories
Vulnerability Management (19th), Mobile Device Management (MDM) (3rd), Enterprise Mobility Management (EMM) (5th)
Tanium
Ranking in Endpoint Detection and Response (EDR)
23rd
Average Rating
7.8
Reviews Sentiment
6.2
Number of Reviews
22
Ranking in other categories
Server Monitoring (3rd), Vulnerability Management (26th), Endpoint Protection Platform (EPP) (15th), Unified Endpoint Management (UEM) (8th)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
CD
SysAdmin at a recreational facilities/services company with 11-50 employees
Strong security structure has supported fast Mac and iOS administration with minimal IT effort
One area for improvement for Kandji would be having a bigger suite of applications. I noticed that some of the niche apps our data software firm needs were not in the regular library. We were able to use the custom app feature to create those apps ourselves, but I would love it if Kandji could expand the library. I also wish Kandji could lock down different ports on MacBooks based on which ones we wanted to shut down, and I hope there is an easier way to sandbox people's bring your own device devices because when we're doing SOC 2, it really wants us to sandbox things so that if someone were to take a device that is not ours, we could delete just our data off there and not theirs. An improvement needed for Kandji would be the ability to remote into devices. I would appreciate something that is really reliable for that without having to buy third-party software.
MA
Division Manager, Information Technology at a legal firm with 51-200 employees
Centralized policies have improved remote endpoint control and have simplified data visibility
The integration is not simple and easy. It requires experienced users or people who have done the implementation. When certain policies are applied, they do not immediately push the policies. For example, we manage endpoint device USB access. We set a policy to block it, but it does not come into effect immediately. Sometimes it takes three or four days for it to reflect. That is a pain point. I have raised this issue with support as well, but they said that I need to limit the number of devices in the policy. In terms of application deployment, for us, it was seamless.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The product's most valuable features are massive user and feature intelligence exploit detection."
"Palo Alto is constantly adding new features."
"Traps is quite a stable product. Once it was properly deployed and configured, you have nothing to be worried about."
"The normal protection was really effective, and we detected situations that if we didn't have Cortex XDR by Palo Alto Networks, it's highly likely that we would have been affected, but it protected the infrastructure."
"Cortex XDR's most valuable feature is its intelligence-based dashboards."
"Cortex XDR by Palo Alto Networks has changed the way my security team detects, investigates, and responds to threats, as we are able to see the files, unwanted files, unsecured files, and unauthorized files, so we are quarantining them."
"After installing this solution, it identified, blocked, and provided the complete attack chain, which was very helpful."
"The initial setup is easy."
"I highly recommend Kandji to others looking into using it since I have not seen any game-breaking issues; it is highly reliable, scalable, improves security, and reduces the time individuals need to spend on system configuration for security updates."
"After deploying Kandji, I see a return on investment because the IT workload is reduced due to automated and faster employee onboarding, and we also have fewer support tickets because we do not have to manually install the software as employees can use Kandji Self Service and install the software on their own."
"I have seen a return on investment with Kandji, as I save time."
"It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want."
"Kandji offers excellent features, including the ability to erase devices remotely without needing to be in front of the laptop."
"Kandji has positively impacted my organization by simplifying the management of the Apple fleet."
"Kandji has positively impacted my organization by providing remote and quick support."
"Kandji has positively impacted my organization because many things happen through Kandji, especially on the laptops and desktops at the infrastructure workspace level."
"I would say Tanium is the best tool for vulnerability management."
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
"Tanium's most valuable feature is its instant discovery aspect."
"Tanium is stable and it is also lightweight."
"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."
"Tanium’s best features include support for any Windows, Linux, or Mac endpoint, regardless of where it is, and the ability to do IT operations and security operations."
"Tanium is a very good product and I would rate it eight or nine out of ten."
"Tanium is highly scalable."
 

Cons

"Currently, we are monitoring all USB drives and ports but we would like to improve our device control capabilities."
"Data privacy is a matter of concern. You have to be careful with data privacy, it can be sensitive and Cortex can have most of your access."
"It's very time-consuming to log support issues and the people that answer the tickets aren't very knowledgeable."
"There is also no recovery feature; if some endpoint is under attack there must be the possibility of recovering it or restoring it to a normal state."
"A potential area of improvement for Cortex XDR by Palo Alto Networks is the cost."
"There are some false positives. What our guys would have liked is that it would have been easier to manipulate as soon as they found a false positive that they knew was a false positive. How to do so was not obvious. Some people complained about it. The interface, the ESM, is not user-friendly."
"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."
"I would like to see some additional features related to email protection included."
"One thing I think could be improved is what happens when a user gets locked out."
"I think Kandji could be improved with a better UI."
"In Kandji, I see a drawback related to the remote wipe function."
"Kandji should give open customization."
"There are certain limitations with blueprints where each machine can only have one or must have a blueprint, which is frustrating since certain machines may not need to have a blueprint straight away for testing."
"While it might be on the expensive side compared to Jamf Pro, it is closer in pricing to other MDMs such as Microsoft Intune, which comes with the EMS E3 license, making it potentially pricey for startups, yet a good cost for established enterprises."
"The Windows part needs a lot of work."
"One thing I have noticed is that Kandji is mainly for Mac devices."
"We set a policy to block USB access. The moment a device is being set up on the network, I apply the policy, but it does not come into effect immediately."
"They could improve the UI."
"There are downsides and drawbacks in Tanium, and there is room for improvement from my perspective."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"Any movement into a SaaS solution has challenges since the processes and data flows are not well defined. Hence, you need to build it at the same time."
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, create bundles, and then perform the task."
"Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based."
"The most painful thing is the interface. It's a bit unclear sometimes."
 

Pricing and Cost Advice

"The price of the product is not very economical."
"I am using the Community edition."
"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."
"Our customers have expressed that the price is high."
"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"Our license will require renewal in August, after which the maintenance will continue as usual."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
"The price of the solution is high for the license and in general."
"Users have to pay a yearly licensing fee for Kandji, which is expensive."
"It's an expensive solution. It would be nice if the cost were lower."
"The solution offers value for money."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"It is higher than some competitors in the market."
"The solution is expensive but it's a good investment."
"There is an annual license required to use this solution."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Financial Services Firm
12%
Comms Service Provider
10%
Outsourcing Company
8%
Computer Software Company
7%
Financial Services Firm
14%
Government
10%
Manufacturing Company
9%
Healthcare Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise5
Large Enterprise7
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise3
Large Enterprise12
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Kandji?
My experience with pricing, setup cost, and licensing is that we are using nearly 100 machines in Kandji, which comes...
What needs improvement with Kandji?
Kandji can definitely be improved by the complexity. I feel we cannot necessarily tweak the Blueprints in the ways th...
What is your primary use case for Kandji?
My main use case for Kandji is MDM management, so managing our Macs and iOS devices in a corporate enterprise environ...
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the co...
What advice do you have for others considering Tanium?
For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it econom...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
Tanium Inc Cloud, Tanium XEM
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Find out what your peers are saying about Kandji vs. Tanium and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.