Try our new research platform with insights from 80,000+ expert users

Microsoft ATA [EOL] vs Rapid7 InsightIDR comparison

Microsoft and Rapid7 are both solutions in the User Entity Behavior Analytics (UEBA) category. Additionally, 50% of Microsoft users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.
Microsoft ATA [EOL]
Read 3 Microsoft ATA [EOL] reviews
    50% willing to recommend
    Rapid7 InsightIDR
    Read 31 Rapid7 InsightIDR reviews
    • 6,825 Views
    • 1,024 Comparison Views
    95% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive Summary
    We performed a comparison between Microsoft ATA [EOL] and Rapid7 InsightIDR based on real PeerSpot user reviews.

    Find out what your peers are saying about IBM, Exabeam, Cynet and others in User Entity Behavior Analytics (UEBA).

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed User Entity Behavior Analytics (UEBA) Report (Updated: October 2025).
    Buyer's Guide
    User Entity Behavior Analytics (UEBA)
    October 2025
    Download the complete report
    Helped 871,358 peers since 2012

    Review summaries and opinions

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Categories and Ranking

    Microsoft ATA [EOL]
    Average Rating
    6.6
    Number of Reviews
    3
    Ranking in other categories
    No ranking in other categories
    Rapid7 InsightIDR
    Average Rating
    8.4
    Reviews Sentiment
    7.4
    Number of Reviews
    31
    Ranking in other categories
    Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (5th), Endpoint Detection and Response (EDR) (25th), Threat Deception Platforms (4th), Extended Detection and Response (XDR) (17th)
     

    Featured Reviews

    it_user1369068 - PeerSpot reviewer
    Good integration, simple to maintain, and very stable
    Scalability shouldn't be a problem, at least for the size of network team that I work with. Right now we have between 400 and 500 users. This is deployed in a network that is actually about 500 users. We don't plan to increase usage. We're already using it as fully as we can and we don't have any more room. We might look at all the Microsoft programs that relate to office 365, like the ATP, because there is a difference between the ATA and the ATP. We are going to look and see whether there's any gaps that we can close. I think if you compare ATA with the actual ATP it's basically the same functionality. One is more on-premises versus the cloud. Since we are progressively in moving to the cloud, we might look at the ATP, which integrates better with the Microsoft cloud.
    Read full review
    Asim Naeem - PeerSpot reviewer
    Providing comprehensive insight into alerts while working towards AI enhancement
    I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "The solution works well when used with other Microsoft solutions."
    "The stability of the solution is very good."
    "One of the most valuable features is the ability to report on questionable activity."
    "I definitely recommend Rapid7 InsightIDR."
    "​​User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."
    "The solution provides satisfying native integration features"
    "Features for user behavior analytics and the rules for attack review are good."
    "Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."
    "I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company."
    "Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."
    "The log aggregation and storage provided by InsightIDR has shown no issues with scalability; aggregating over one hundred millions events daily."
    More Rapid7 InsightIDR pros
     

    Cons

    "Some of the newer features are not completely there yet... For example, there's a tool that allows you to grade your overall internal security and I don't feel that it's completely accurate."
    "There are occasions where it generates some false positives and you have to embark into figuring it out. You need to find out if it was a true alert or a false positive. It's a little bit cumbersome in that area."
    "It would be ideal if the interface allowed for more granular configurations. For example, if I were to set a rule that is a deviation from the pre-defined rules in the Microsoft product, there's conflict."
    "Needs a better ability to customize the check within the console."
    "Cloud risk assessment is one area where I think they need a lot of improvement."
    "I feel it would greatly benefit from more supported log sources."
    "Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
    "InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
    "Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."
    "They should add more configuration and security features to it."
    "Lacks a mobile application."
    More Rapid7 InsightIDR cons
     

    Pricing and Cost Advice

    "I believe we are looking into new licenses. They may be called the E5. Honestly, I don't have it on top of my mind, but I think it's around seven to $10 a user per month."
    "Rapid7 InsightIDR is priced very well and is cost-effective."
    "​Accurately predict your licensing counts as this is a subscription based product.​"
    "The pricing is good, and it is not very expensive."
    "The pricing and licensing are competitive."
    "It is a reasonably priced solution."
    "Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
    "It is more reasonably priced than other vendors."
    "The pricing of the solution depends on the user. But there is a yearly licensing cost."
    More Rapid7 InsightIDR pricing and cost advice
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which User Entity Behavior Analytics (UEBA) solutions are best for your needs.
    See recommendations
    871,358 professionals have used our research since 2012.
     

    Top Industries

    By visitors reading reviews
    No data available
    Computer Software Company
    14%
    Financial Services Firm
    8%
    Manufacturing Company
    7%
    Government
    7%
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    No data available
    By reviewers
    Company SizeCount
    Small Business19
    Midsize Enterprise5
    Large Enterprise6
     

    Questions from the Community

    Ask a question
    Earn 20 points
    What SOC product do you recommend?
    For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
    See all answers
    What do you like most about Rapid7 InsightIDR?
    During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
    See all answers
    What is your experience regarding pricing and costs for Rapid7 InsightIDR?
    The product pricing is very cheap.
    See all answers
     

    Comparisons

    No data available
    Rapid7 InsightVM vs Rapid7 InsightIDR Logo
    Rapid7 InsightVM vs Rapid7 InsightIDR
    Compared 8% of the time
    Darktrace vs Rapid7 InsightIDR Logo
    Darktrace vs Rapid7 InsightIDR
    Compared 8% of the time
    Microsoft Sentinel vs Rapid7 InsightIDR Logo
    Microsoft Sentinel vs Rapid7 InsightIDR
    Compared 7% of the time
    CrowdStrike Falcon vs Rapid7 InsightIDR Logo
    CrowdStrike Falcon vs Rapid7 InsightIDR
    Compared 6% of the time
    Splunk Enterprise Security vs Rapid7 InsightIDR Logo
    Splunk Enterprise Security vs Rapid7 InsightIDR
    Compared 5% of the time
    More Rapid7 InsightIDR Competitors
     

    Product Reports

    Buyer's Guide
    User Entity Behavior Analytics (UEBA)
    October 2025
    Microsoft ATA [EOL] reportDownload Microsoft ATA [EOL] product report
    Buyer's Guide
    Rapid7 InsightIDR
    October 2025
    Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
     

    Also Known As

    Microsoft Advanced Threat Analytics, MS ATA [EOL]
    InsightIDR
     

    Overview

    Microsoft Advanced Threat Analytics (ATA) provides a simple and fast way to understand what is happening within your network by identifying suspicious user and device activity with built-in intelligence and providing clear and relevant threat information on a simple attack timeline. Microsoft ATA is an on-premises platform to help you protect your enterprise from advanced targeted attacks by automatically analyzing, learning, and identifying normal and abnormal entity (user, devices, and resources) behavior. It detects suspicious activities and malicious attacks with behavioral analytics, adapts to the changing nature of cyber-security threats, focuses on what is important with a simple attack timeline and reduces false positive fatigue.
    Microsoft

    Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

    Rapid7
     

    Sample Customers

    Turkish Airlines, Seoul National University Bundang Hospital, Empa, The Alberta Teachers' Association
    Liberty Wines, Pioneer Telephone, Visier
    Buyer's Guide
    User Entity Behavior Analytics (UEBA)
    October 2025
    Download Free Report
    Find out what your peers are saying about IBM, Exabeam, Cynet and others in User Entity Behavior Analytics (UEBA). Updated: October 2025.
    DOWNLOAD NOW
    871,358 professionals have used our research since 2012.
    See our list of best User Entity Behavior Analytics (UEBA) vendors.

    We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.