Microsoft Defender for Endpoint vs Microsoft Entra Verified ID comparison

Microsoft Defender for Endpoint vs. Microsoft Entra Verified ID

February 2026

Download the complete report

Helped 885,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender for Endp...

Ranking in Microsoft Security Suite

3rd

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

213

Ranking in other categories

Endpoint Protection Platform (EPP) (2nd), Advanced Threat Protection (ATP) (5th), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (3rd)

Microsoft Entra Verified ID

Ranking in Microsoft Security Suite

21st

Average Rating

8.0

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Customer Identity and Access Management (CIAM) (8th)

Mindshare comparison

As of March 2026, in the Microsoft Security Suite category, the mindshare of Microsoft Defender for Endpoint is 7.1%, down from 9.0% compared to the previous year. The mindshare of Microsoft Entra Verified ID is 1.6%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Microsoft Security Suite Mindshare Distribution
Product	Mindshare (%)
Microsoft Defender for Endpoint	7.1%
Microsoft Entra Verified ID	1.6%
Other	91.3%

Microsoft Security Suite

Featured Reviews

Robert Arbuckle

Security Analyst III at a healthcare company with 10,001+ employees

Automatically isolates threats and integrates with logging to reduce response time

Overall, I would evaluate the Microsoft support level that I receive at probably about a seven, but that depends on the day. It has been spotty. We have had issues where the urgency level of the Microsoft support is not as high as ours, especially during a data breach or potential data breach situation. We have had issues with some of the offshore support being lackluster. One specific thing that comes to mind is we were on a support call with our CISO on the call, and the Microsoft agent, who did not actually work for Microsoft, is one of the vendors that Microsoft uses for support, said, "Just to set expectations, my lunch break is in an hour and I am going to go away then." For us, it was already ten o'clock at night and we had been working on this for a couple of hours, trying to get a security engineer on with us. For him to tell us that he was going to go away and have lunch, it was, "Okay, but go find somebody else if you need to." It was just the lackluster approach, and it seemed like he did not really care. We seem to get a lot of this when we get non-Microsoft support. I can identify areas for improvement with Microsoft Defender for Endpoint, as it is kind of a convoluted mess to try to take care of false positives. Especially when they have been identified as false positives but they keep going off over and over again. It is great for my pocketbook because it generates a lot of on-call action, but I would really prefer more sleep at two o'clock in the morning than dealing with false positives. I would say that the unified portal for managing Microsoft Defender for Endpoint is suitable for both teams as they are all in there. It would be great if they would stop moving things around and renaming things, which makes sense. The new XDR portal is pretty nice. Being able to have it central again inside of the regular Security Center without having to open up two windows is helpful. Overall, I think it is pretty good. There is always going to be something that could be improved, such as alerting and the ability to modify alerts would be a little bit helpful to have. Being able to add more data into the alerts and turn off alerts that are not as useful would be beneficial. It is hard to say what the quantitative impact the security exposure management feature has had on our company's security, because a lot of it is kind of subjective. I think we are sitting at around a fifty percent score still, and a lot of it is just kind of unusual circumstances that we cannot really implement without breaking the organization.

Read full review

MuhammadWaqar

IT Director at Interwood Mobel Pvt Ltd

Supports user management and authentication but needs simpler hybrid integration for broader adoption

I believe there should be an easy provision for the on-premises and for the hybrid environment in Microsoft Entra Verified ID, as there seems to be some difficulty with hybrid implementations, especially in a country like Pakistan where most are transitioning to cloud but not fully migrating, instead opting for hybrid solutions. An ease for hybrid integration would greatly help the technical teams. I believe the policy implementation is a little bit complex on the Microsoft side; there should be a simpler way to implement policies, utilizing standardized templates for compliance, such as industry-specific templates for the service industry, which would be helpful for HIPAA and other compliances.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I like the real-time protection features. Windows Defender will detect if there's a threat like a Trojan or something like that but Kaspersky lets it run normally."

"Its threat intelligence feature is beneficial. This solution smoothly integrates with SIEM."

"I like that it's easy to deploy because it already comes with Windows 10. Overall, it has all the features that we need. Easy to deploy, comes with updates, and comes with Windows updates. You don't have to really manage or update the signature."

"I like the process visibility. This ability to visualize how something was executed is valuable, and the fact that Defender ATP is also linked to the threat intelligence that they have is also valuable. So, even if you have something that doesn't have a conventional signature, the fact that you get this strange execution means that you can detect things that are normally not visible."

"Microsoft Defender has been around for many years, and since Windows 10, they've really ramped it up, and it has gotten a lot better."

"With its intelligence and tools over cloud infrastructure, it's a good product."

"Microsoft Defender for Endpoint comes pre-installed in Microsoft Windows."

"The feature I appreciate most about Microsoft Defender for Endpoint is the portal, being able to see everything rolling up into the portal for a total overview of how the organization looks for all the managed endpoints."

More Microsoft Defender for Endpoint pros

"Microsoft Entra Verified ID has helped reduce fraud or impersonation attacks because if you are using a government-sanctioned ID, what is more secure than that?"

"Entra allows us and our customers to access workloads on Azure and Office 365 securely, and we've integrated it with other applications to provide a single pane of glass for user identification, eliminating the need for multiple IDs."

"The most valuable features of the solution are mainly in the areas of security and auditing."

"I find Microsoft Dynamics 365 very easy and useful because most of the users on our end are using Microsoft, thus they are very familiar with the Microsoft Office stack, and some of SharePoint and Teams."

"The MFA number matching feature effectively prevents unauthorized access by phishing bad actors who might obtain email credentials. This feature requires users to verify a number on their screen, ensuring they only approve genuine requests."

"I like the Microsoft Authenticator app since it comes with two-factor authentication."

"The authentication features of Microsoft Entra Verified ID are valuable. As an infrastructure professional, I appreciate the exceptional integration between on-premises Active Directory features and Entra ID."

"The biggest return on investment when using Microsoft Entra Verified ID is the single sign-on (SSO) feature."

More Microsoft Entra Verified ID pros

Cons

"They should bring back the feature of a dedicated proxy device for communication to the cloud. As of now, all the agents are required to send the logs directly to the cloud. There should be a solution where you can put a proxy and all the logs are consolidated, like a forwarder."

"I would like to see better integration with their other security products to give better visibility from a higher level."

"It can get a bit laggy sometimes. Other than that, we don't have any issues. They constantly tweak it and fix it up based on users' feedback. It has improved a lot over the past four years. Defender for Endpoint never really used to be a good endpoint security solution, but over the past couple of years, Microsoft has invested heavily in it. So, it has come a long way in all aspects of endpoint security. If they want to make it better, they should just continue investing in the current path of what they've been doing over the past couple of years."

"There could be an increase in security for the solution."

"I would like to have additional features such as DNS lookup, which would help for detecting malicious sites."

"The detection of viruses could be a little bit better."

"Initially, I experienced performance issues that hampered our servers. However, after setting appropriate exclusions, everything seemed to work fine."

"The UI for Microsoft Defender for Endpoint needs to be better."

More Microsoft Defender for Endpoint cons

"There is room for improvement in Microsoft Entra Verified ID, particularly in the integration with other platforms, as they could do better with the API, for example."

"Microsoft products basically have no support other than the knowledge base, so I would give it a two out of 10."

"I still feel the pricing is on the higher side for larger customers."

"I have not really seen return on investment with Microsoft Entra Verified ID."

"The tool's expensive nature is an area of concern where improvements are required."

"Standard support could be improved, as it's often not as responsive."

"I believe there should be an easy provision for the on-premises and for the hybrid environment in Microsoft Entra Verified ID, as there seems to be some difficulty with hybrid implementations, especially in a country like Pakistan where most are transitioning to cloud but not fully migrating, instead opting for hybrid solutions."

"While Microsoft continues to improve the solution, integrating the ID with biometric features could be enhanced, especially in terms of standard B2C flows for multi-factor authentication. Improvements in remembering devices and the timing of MFA triggers could also be beneficial."

More Microsoft Entra Verified ID cons

Pricing and Cost Advice

"Pricing for Microsoft Defender for Endpoint is competitive. Out of the bundle, you will get a lot of security, if I talk about Microsoft E5, for example, and get a lot of benefits. If the customer goes and purchases a different solution, it will cost more, so pricing for Microsoft Defender for Endpoint is quite reasonable at the moment. There isn't any challenge in terms of pricing, for example, I didn't see a customer who pulled back because of the price. Some prices could be negotiable, and sometimes, as a sales point, the two become negotiable, but they don't bill one and pull back because of the pricing. If you have an E5 license, you get everything."

"For me, the pricing is very good, but for management it's very expensive. Other solutions are less expensive. But when I present all the information and all the reports they say, "Well, it's expensive, but the cost-benefit is very good.""

"The solution comes as a part of Windows 10 and it is covered under its license."

"The price was a problem for me three years ago, but they improved their E3, E5, and a la carte licensing. In other words, you have to get all of E5. That used to be a problem because you had E3, Defender, and guardrails, but you needed an E5 license to get the management suite and the analytics. It's more flexible now. You can switch from a la carte to the entire suite when it starts to make sense. It's becoming more economically competitive to go that route."

"The license for Microsoft Defender for Endpoint is included in the license for the Microsoft Windows operating system."

"There is no license needed, the solution comes with Microsoft Windows."

"The solutions price could be cheaper."

"If we are acquiring everything in a single place, the front end becomes cost-effective."

More Microsoft Defender for Endpoint pricing and cost advice

"The pricing and setup are standard. With Entra, you choose between P1 and P2 licenses. We recommend having at least one P2 license in a company for better alert management, even though P2 is more expensive."

"I still feel the pricing is on the higher side for larger customers. They don't pay anything for on-prem Active Directory. Although we receive additional features with Microsoft’s SSO, pricing is an area Microsoft can work on."

"If one is cheap and ten is very expensive, I rate the product price as seven."

See which vendors are best for you

Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.

See recommendations

885,311 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

10%

Manufacturing Company

Financial Services Firm

Government

Computer Software Company

18%

Manufacturing Company

Construction Company

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	81
Midsize Enterprise	40
Large Enterprise	95

By reviewers
Company Size	Count
Small Business	4
Large Enterprise	4

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

What needs improvement with Microsoft Entra Verified ID?

It is hard for me to say how Microsoft Entra Verified ID can be improved. I really do not know the extent of how that can benefit everything. I am trying to learn that here at the Ignite conference.

What is your primary use case for Microsoft Entra Verified ID?

My main use cases for Microsoft Entra Verified ID are verifying the end user saying who they are and being able to back that up with government-issued proof.

What advice do you have for others considering Microsoft Entra Verified ID?

My organization has not implemented the Face Check feature yet; we are using YubiKeys. My organization's trust in digital interactions really has not changed since implementing Microsoft Entra Veri...

CrowdStrike Falcon vs Microsoft Defender for Endpoint

Comparisons

Compared 4% of the time

HP Wolf Security vs Microsoft Defender for Endpoint

Compared 4% of the time

Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint

Compared 4% of the time

Symantec Endpoint Security vs Microsoft Defender for Endpoint

Compared 4% of the time

F-Secure Total vs Microsoft Defender for Endpoint

Compared 3% of the time

More Microsoft Defender for Endpoint Competitors

Okta Platform vs Microsoft Entra Verified ID

Compared 16% of the time

Microsoft Entra ID vs Microsoft Entra Verified ID

Compared 9% of the time

Auth0 Platform vs Microsoft Entra Verified ID

Compared 8% of the time

Microsoft Purview Data Governance vs Microsoft Entra Verified ID

Compared 8% of the time

Microsoft Intune vs Microsoft Entra Verified ID

Compared 7% of the time

More Microsoft Entra Verified ID Competitors

Product Reports

Microsoft Defender for Endpoint

March 2026

Download Microsoft Defender for Endpoint product report

Microsoft Entra Verified ID

March 2026

Download Microsoft Entra Verified ID product report

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus

No data available

Interactive Demo

Demo not available

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Learn more about Microsoft Entra Verified ID

Microsoft Entra Verified ID is a managed verifiable credential service that lets organizations build unique user-owned identity scenarios designed for trustworthy, secure, and efficient interactions between people and organizations. Transform the way you perform identity verification with verifiable credentials.

Face Check with Microsoft Entra Verified ID is a premium privacy-respecting facial matching feature powered by Azure AI services that unlocks high-assurance identity verification at scale. It matches a user's real-time selfie with a trusted identity document – such as a driver’s license or a passport – without ever passing or storing personal data, providing secure, trustworthy verifications for organizations and a quick, simple experience for users.

Sample Customers

Petrofrac, Metro CSG, Christus Health

Information Not Available