Try our new research platform with insights from 80,000+ expert users

Microsoft Configuration Manager vs Qualys CyberSecurity Asset Management comparison

Microsoft and Qualys are both solutions in the Patch Management category. Microsoft is ranked #1 with an average rating of 8.0, while Qualys is ranked #6 with an average rating of 9.2. Microsoft holds a 12.8% mindshare in PM, compared to Qualys’s 1.0% mindshare. Additionally, 90% of Microsoft users are willing to recommend the solution, compared to 100% of Qualys users who would recommend it.
Microsoft Configuration Man...
Read 81 Microsoft Configuration Manager reviews
  • 3,415 Views
  • 1,059 Comparison Views
90% willing to recommend
Qualys CyberSecurity Asset ...
Read 22 Qualys CyberSecurity Asset Management reviews
  • 177 Views
  • 41 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 20, 2025

Microsoft Configuration Manager and Qualys CyberSecurity Asset Management compete in IT operations management. Microsoft Configuration Manager holds an advantage in application deployment and integration capabilities, while Qualys offers superior asset visibility and risk identification.

Features: Microsoft Configuration Manager offers centralized control through application deployment, patch management, and integration with Microsoft solutions. Its extensive inventory features support centralized IT management. Qualys CyberSecurity Asset Management provides asset discovery, dynamic tagging, and vulnerability management integration, enhancing risk identification and management capabilities.

Room for Improvement: Microsoft Configuration Manager needs to address high CPU/memory usage and expand integrations with non-Microsoft products. Enhanced compliance reporting and cloud service integration are also needed. Qualys CyberSecurity Asset Management should improve scan frequency control, user interface intuitiveness, and enhance tag and configuration features. Better integration with third-party tools would add value.

Ease of Deployment and Customer Service: Microsoft Configuration Manager operates mainly on-premises, supported by community resources though tech support can vary in quality. Qualys CyberSecurity Asset Management, often deployed in cloud or hybrid settings, receives praise for documentation and customer support, though response times could be improved.

Pricing and ROI: Microsoft Configuration Manager may be costly due to licensing requirements but some find it justifiable given its integrated features. Qualys CyberSecurity Asset Management's pricing is considered fair with good ROI, especially when bundled with other Qualys services, offering strong market positioning.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management Report (Updated: June 2025).
Buyer's Guide
Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management
June 2025
Download the complete report
Helped 859,687 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Configuration Man...
Ranking in Patch Management
1st
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
81
Ranking in other categories
Server Monitoring (7th), Configuration Management (4th)
Qualys CyberSecurity Asset ...
Ranking in Patch Management
6th
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
22
Ranking in other categories
Vulnerability Management (8th), Cyber Asset Attack Surface Management (CAASM) (3rd), Attack Surface Management (ASM) (3rd), Software Supply Chain Security (5th)
 

Mindshare comparison

As of July 2025, in the Patch Management category, the mindshare of Microsoft Configuration Manager is 12.8%, down from 17.3% compared to the previous year. The mindshare of Qualys CyberSecurity Asset Management is 1.0%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Patch Management
 

Featured Reviews

MikeNelson2 - PeerSpot reviewer
Deployment recovery works well but requires configuration improvements
While I do not use the product frequently, many issues were due to configuration rather than the product itself. I cannot give an exact recommendation as it is not my area of responsibility. The team that uses it finds it adequate. It is presently good enough for us not to investigate other options. Overall, I rate the product a six out of ten.
Read full review
Scott Frederick - PeerSpot reviewer
Well-integrated with our vulnerability scanning utilities and efficient in asset tagging and identification
Our favorite features are the tagging and the ability to quickly find assets in the portal. Additionally, I do like the fact that Qualys CSAM is integrated with the rest of our vulnerability scanning utilities. We use the full suite from Qualys. The fact that it is integrated makes it very easy to understand. It shares tagging information with VMDR. That is very nice. Qualys CSAM has discovered assets not previously covered by our vulnerability management program. Primarily, if we have assets without vulnerabilities, they become less visible, but Qualys CSAM alerts us to them because they have IP addresses and are attached to our network. It could discover everything from printers to servers to endpoints. It could discover UPSs, network devices, and across all operating systems. It discovers our security badge readers and digital signage. We have to feed that the IP address ranges, but beyond that, it finds everything in our internal network. We were able to realize its benefits within the first quarter of installing it. We did have to take some time to learn it and understand how to operationally leverage what it was telling us, but it was very quick. In addition to vulnerabilities, Qualys CSAM helps identify other risk factors to a degree. For instance, we can see if servers or assets have incorrect naming standards. We have our network segmented into development model, test, and production, and we have server naming standards that identify which management they should be in. If a production server has the naming standard of a development model server, we can find that. That is one area we have used it for. We are not fully using TruRisk, but we are using the Qualys detection score that is central to our corporate risk prioritization approach. It has completely replaced our homegrown one.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The main, clear valuable feature is updating the latest, patches and updates from Windows. This is the main feature we really utilize a lot."
"The product is suitable for our size, handling 800 devices."
"With the SCCM inventory, we found a lot of rogue applications. We were able to identify them, find out who was running them, and either put them on our application list or remove them."
"The most valuable feature of Microsoft Endpoint Configuration Manager is it's incredibly simple to configure and execute changes in bulk, allowing for seamless deployment. With this solution, you can easily track the status of all modifications and send them with ease, making it a comprehensive and efficient solution for any necessary adjustments."
"There is a faster time to rollout. If we get a new PC, it can be ready for productivity right away."
"The scalability to deploy the package."
"It saves a lot of money when you can install things automatically and they are installed the exact same way on every computer."
"I find the product valuable for deployment recovery and it has done much more than that."
More Microsoft Configuration Manager pros
"My favourite feature of Qualys CyberSecurity Asset Management is its ability to target missing software."
"Tags are very useful for us since we can tag virus applications in infrastructure types such as databases, operating systems, or web platforms."
"The fact that it is integrated makes it very easy to understand."
"The scanning results are pretty good, and some insights are quite valuable."
"I would rate Qualys CSAM a ten out of ten."
"With Qualys CSAM, we can see which assets have critical application vulnerabilities. This feature helps us prioritize and address these vulnerabilities more efficiently."
"Qualys CyberSecurity Asset Management offers valuable features such as continuous vendor support, rapid response times, dedicated vendor partnerships, and advanced technical capabilities for risk identification."
"We have had zero attacks since we enabled all the features in Qualys CSAM."
More Qualys CyberSecurity Asset Management pros
 

Cons

"Their compliance reporting is not accurate, and they admitted it on the phone when we had a call with them. We were trying to understand why their numbers didn't match on our compliance reports. It is not accurate and you cannot depend on the compliance reports. The numbers just don't match, and we can't figure out why. We called Microsoft and they said, "Yeah, that's a known issue." But there is no word that they're working on it."
"In spite of us being a premier customer we find the support unsatisfactory."
"They should improve their anti-malware policies like the SCEP policies. For instance, you can't have different policies for different servers, there is only one policy in all the servers, and everything is covered under that. For example, say you want to scan one group of servers on Saturday, and then you want to scan another group of servers on Sunday, you can't do that. You have to scan all your servers, a regular scan or a full scan, on the same day and at the same time. That's definitely one thing they need to resolve. In the next release, it would actually be nice if they included Apple products. It will also help if you can use Intune again. Their compliance reporting feature could also be better. They can maybe work a bit on that for patching now. It would be better if SCCM came with the functions of Right Click Tools built-in. If SCCM would have all those functions already built-in, we won't have to go and spend $5,000, just as an add-in from another company to get those functions."
"It would be nice to have everything in one place. Now they have Intune for the desktops and SCCM to handle their servers."
"There is a reboot issue with the patching. Sometimes, if patching runs into any issue whatsoever, it doesn't reboot but it doesn't tell you it errored out. It just sits there and we don't find out until the next day whether it patched or not. That was a big issue for us. We're working through that. They added some stuff in there now where you can actually tell reboot is pending. But we still need some kind of notification that if something fails or is pending, we know. We shouldn't have to go in and look. They don't have anything for that right now."
"Microsoft Endpoint Configuration Manager could improve the integration."
"The solution should be more compatible with different versions of Linux."
"SCCM does not scale well, which is one of the reasons we are not going to continue to use it."
More Microsoft Configuration Manager cons
"Qualys CSAM is not super responsive, and there can be delays sometimes, especially with the network passive sensor. You might see duplicate objects which eventually disappear but it takes time. If that can be done faster, it will be great."
"We have had challenges modifying the agent configuration. Particularly, when we want to change the tenant that the agent is pointing to, we have had difficulties making that reliable and working properly."
"The UI needs improvement as it can become overwhelming after prolonged use."
"One improvement that they can make in the EASM module is the scan frequency. After EASM is configured the first time, it allows you to do the complete configuration, but if you want to reconfigure it, it will not ask or provide any option for scan frequency. For that, you need to raise a case with Qualys and talk to the Qualys team."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
"Some areas that would be helpful are more comprehensive tagging and the ability to set up better dynamic rules."
"The Qualys CAPS service requires further exploration and improvement, particularly in its handling of protocols and reactivity with MAC and IP addresses for CAP agents."
"Further research and development are needed to enhance integration with other cloud agents and products, particularly improving communication with external products and vendors."
More Qualys CyberSecurity Asset Management cons
 

Pricing and Cost Advice

"The price of Microsoft Endpoint Configuration Manager is expensive."
"Overall, I think it's fine. It's pretty much in-line because there are ways to offset it with the Office 365 licensing."
"We have a support license from Microsoft Endpoint Configuration Manager and the overall price of the solution is reasonable."
"The price is competitive and reasonable."
"There is not a license needed to use the solution."
"The price could be better."
"I would rate the cost as eight out of ten."
"Presently, I am using a free trial version."
More Microsoft Configuration Manager pricing and cost advice
"Qualys offers excellent value for money."
"The pricing is fair. I would love to see the price come down a little bit, but we do get a lot of value out of it. We are squeezing every ounce of value we can out of the tool."
"The pricing for Qualys Cybersecurity Asset Management is reasonable, with an annual subscription costing around $1,000 per year or a monthly subscription starting at approximately $72 per month, depending on the specific package and features included."
"The pricing for Qualys CSAM is nominal."
"Qualys CyberSecurity Asset Management can be expensive, especially if we already have VMDR."
"The cost for Qualys CyberSecurity Asset Management is high."
"Though the solution is considered expensive, if bundled with other services such as VMDR or cloud agents, its value would significantly increase. It is currently a bit costly, but with bundling, it could become attractive to more customers."
"The pricing is market-competitive."
More Qualys CyberSecurity Asset Management pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Patch Management solutions are best for your needs.
See recommendations
859,687 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Computer Software Company
11%
Government
10%
Manufacturing Company
8%
Computer Software Company
18%
Financial Services Firm
14%
Government
9%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Ansible compare to Microsoft Endpoint Configuration Manager (SCCM)?
Microsoft Endpoint Configuration Manager takes knowledge and research to properly configure. The length of time that the set up will take depends on the kind of technical architecture that your org...
See all answers
How to choose between ManageEngine Desktop Central and Microsoft Endpoint Configuration Manager (formerly SCCM)?
ManageEngine Desktop Central is very easy to set up, is scalable, stable, and also has very good patch management. What I like most about ManageEngine is that I can log on to every PC very easily a...
See all answers
What do you like most about SCCM?
One of the standout features of SCCM is its application management capabilities. It allows us to create packages efficiently and deploy them to specific groups within our network. This streamlined ...
See all answers
What is your experience regarding pricing and costs for Qualys CyberSecurity Asset Management?
The pricing is reasonable relative to the features provided, as it collects all module data and operates as a main, centralized inventory, making it a cost-effective solution.
See all answers
What needs improvement with Qualys CyberSecurity Asset Management?
Qualys CyberSecurity Asset Management helps us prioritize assets according to operating system, kernel version, installed software, and current version information. The ASM assists with attack surf...
See all answers
What is your primary use case for Qualys CyberSecurity Asset Management?
We are using Qualys CyberSecurity Asset Management for daily activities such as identifying new assets through network scanning and agent-based scanning for newly provisioned assets. When any new a...
See all answers
 

Comparisons

Red Hat Ansible Automation Platform vs Microsoft Configuration Manager Logo
Red Hat Ansible Automation Platform vs Microsoft Configuration Manager
Compared 13% of the time
ManageEngine Endpoint Central vs Microsoft Configuration Manager Logo
ManageEngine Endpoint Central vs Microsoft Configuration Manager
Compared 11% of the time
Tanium vs Microsoft Configuration Manager Logo
Tanium vs Microsoft Configuration Manager
Compared 9% of the time
BigFix vs Microsoft Configuration Manager Logo
BigFix vs Microsoft Configuration Manager
Compared 5% of the time
Quest KACE Systems Management Appliance (SMA) vs Microsoft Configuration Manager Logo
Quest KACE Systems Management Appliance (SMA) vs Microsoft Configuration Manager
Compared 5% of the time
More Microsoft Configuration Manager Competitors
Amazon Inspector vs Qualys CyberSecurity Asset Management Logo
Amazon Inspector vs Qualys CyberSecurity Asset Management
Compared 13% of the time
Armis vs Qualys CyberSecurity Asset Management Logo
Armis vs Qualys CyberSecurity Asset Management
Compared 10% of the time
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management Logo
CrowdStrike Falcon vs Qualys CyberSecurity Asset Management
Compared 9% of the time
Axonius vs Qualys CyberSecurity Asset Management Logo
Axonius vs Qualys CyberSecurity Asset Management
Compared 8% of the time
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management Logo
Microsoft Defender External Attack Surface Management vs Qualys CyberSecurity Asset Management
Compared 7% of the time
More Qualys CyberSecurity Asset Management Competitors
 

Product Reports

Buyer's Guide
Microsoft Configuration Manager
June 2025
Microsoft Configuration Manager reportDownload Microsoft Configuration Manager product report
Buyer's Guide
Qualys CyberSecurity Asset Management
June 2025
Qualys CyberSecurity Asset Management reportDownload Qualys CyberSecurity Asset Management product report
 

Also Known As

Microsoft Endpoint Configuration Manager, System Center Configuration Manager (SCCM )
No data available
 

Overview

Microsoft Configuration Manager helps IT manage PCs and servers, keeping software up-to-date, setting configuration and security policies, and monitoring system status while giving employees access to corporate applications on the devices that they choose. When Configuration Manager is integrated with Microsoft Intune, you can manage corporate-connected PCs and Macs along with cloud-based mobile devices running Windows, iOS, and Android, all from a single management console.

New features of Configuration Manager, such as the support of Windows 10 in-place upgrade, co-management with Microsoft Intune, Windows 10 and Microsoft 365 Apps for enterprise Servicing Dashboard, integration with Windows Update for Business, and more make deploying and managing Windows easier than ever before.

Microsoft

Qualys CyberSecurity Asset Management provides advanced real-time asset visibility, dynamic tagging, and External Attack Surface Management. It streamlines asset discovery and management using cloud agents and IP-based scanning, enhancing risk management and software lifecycle tracking.

Qualys CyberSecurity Asset Management offers a comprehensive solution for managing asset inventories and tracking software lifecycle states. It facilitates network visibility and supports zero-day vulnerability solutions, enhancing security posture through efficient monitoring. Users benefit from its cloud-based interface, which provides in-depth asset configurations and insights. Key features include automated vulnerability scanning and unauthorized software management, reducing manual efforts. The platform also emphasizes the importance of timely remediation and ongoing risk mitigation across multiple environments. Despite its strengths, users note the need for enhanced integration with additional CMDBs beyond ServiceNow, as well as cost efficiency improvements. Requests also include better report customization, more scan control, and a simplified UI.

What are the key features of Qualys CyberSecurity Asset Management?
  • Real-time Visibility: Offers continuous insight into asset status and condition.
  • Dynamic Tagging: Allows for flexible organization and assessment of assets.
  • External Attack Surface Management: Identifies potential threats from external sources.
  • Automated Vulnerability Scanning: Reduces manual scanning efforts and identifies vulnerabilities instantly.
  • Unauthorized Software Management: Detects and manages software not approved for use.
  • Asset Purge Rule: Automates the removal of obsolete assets from the inventory.
What benefits should users look for in reviews?
  • Enhanced Security Posture: Gains stronger defense through effective asset monitoring.
  • Efficient Risk Management: Identifies threats quickly, enabling timely resolutions.
  • Improved Compliance: Assists in meeting industry standards and regulations.
  • Reduced Manual Effort: Automates repetitive tasks, saving time and resources.
  • Comprehensive Insight: Provides detailed data for informed decision making.

In industries like finance, healthcare, and manufacturing, Qualys CyberSecurity Asset Management enhances asset control by offering visibility into hardware and software configurations. It aids in maintaining security compliance and identifying unauthorized software, crucial for sectors with strict regulatory requirements.

Qualys
 

Sample Customers

Bank Alfalah Ltd., Wªrth Handelsges.m.b.H, Dimension Data, Japan Business Systems, St. Lucie County Public Schools, MISC Berhad
Information Not Available
Buyer's Guide
Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management
June 2025
Free Report: Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management
Find out what your peers are saying about Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,687 professionals have used our research since 2012.
See our Microsoft Configuration Manager vs. Qualys CyberSecurity Asset Management report.
See our list of best Patch Management vendors.

We monitor all Patch Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.