We performed a comparison between Microsoft Defender for Identity and Microsoft Purview Compliance Manager based on real PeerSpot user reviews.
Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The feature I like the most about Defender for Identity is the entity tags. They give you the ability to identify sensitive accounts, devices, and groups. You also have honeytoken entities, which are devices that are identified as "bait" for fraudulent actors."
"All the integration it has with different Microsoft packages, like Teams and Office, is good."
"The feature I like most is that you can create your own customized detection rules. It has a lot of default alerts and rules, but you can customize them according to your business needs."
"The solution offers excellent visibility into threats."
"It automates routine testing and helps automate the finding of high-value alerts."
"The most valuable aspect is its connection to Microsoft Sentinel and Defender for Endpoint, and giving exact timelines for incidents and when certain events occured during an incident."
"Defender for Identity has not affected the end-user experience."
"Microsoft Defender for Identity provides excellent visibility into threats by leveraging real-time analytics and data intelligence."
"We have more visibility of data and how it is being shared."
"Purview delivers data protection across multi-cloud and multi-platform environments."
"We move data between clouds and also from on-premises to the cloud. There is no other mechanism to check if this data is moving according to industry standards for such things as security, bandwidth, and SSL encryption mechanism. We would not be able to see these metrics without Microsoft Purview Compliance Manager."
"One potential area for improvement could be exploring flexibility in the installation of Microsoft Defender for Identity agents."
"Defender for Identity gives us visibility, but we often get false positives from Azure that take us down the garden path. We go through 30 incidents each day and most of those are false positives or benign positive alerts. Occasionally, we get true positive alerts."
"When the data leaves the cloud, there are security issues."
"The tracking instance needs to be configured appropriately."
"Microsoft should look at what competing vendors like CrowdStrike and Broadcom are doing and incorporate those features into Sentinel and Defender. At the same time, I think the intelligence inside the product is improving fast. They should incorporate more zero-trust and hybrid trust approaches. They need to build up threat intelligence based on threats and methods used in attacks on other companies."
"And when you are working in a priority IP address, Identity is not able to know that those IPs are from the company. It sees that the IPs are from Taiwan or from Hong Kong or from India, even though they are internal IPs, resulting in a lot of false positives."
"The impact of the sensors on the domain controllers can be quite high depending on your loads. I don't know if there's any room for improvement there, but that's one of the things that might be improved."
"The solution could be better at using group-managed access and they could replace it with broad-based access controls."
"We've had issues with data connectors for Teams."
"We'd like to see the solution expanded to include firewalls and endpoints."
"One area for improvement is the technical support for Purview. With all the other solutions from Microsoft we get really good technical support, but with Purview we had a compliance error and we couldn't find the solution. Purview would not point us to the correct solution, it just indicated the error. We had to troubleshoot it and find out what led to this error. We contacted technical support but it took them one week to identify the root cause of the error."
More Microsoft Defender for Identity Pricing and Cost Advice →
More Microsoft Purview Compliance Manager Pricing and Cost Advice →
Microsoft Defender for Identity is ranked 8th in Microsoft Security Suite with 13 reviews while Microsoft Purview Compliance Manager is ranked 22nd in Microsoft Security Suite with 3 reviews. Microsoft Defender for Identity is rated 9.0, while Microsoft Purview Compliance Manager is rated 9.4. The top reviewer of Microsoft Defender for Identity writes "Offers robust protection from insider threats, but the customer support is poor". On the other hand, the top reviewer of Microsoft Purview Compliance Manager writes "Really good encryption mechanism prevents man-in-the-middle and other types of attacks". Microsoft Defender for Identity is most compared with Microsoft Entra ID Protection, Microsoft Defender for Office 365, Microsoft Entra Verified ID, Splunk User Behavior Analytics and Microsoft Defender for Endpoint, whereas Microsoft Purview Compliance Manager is most compared with Microsoft Defender XDR, Microsoft Purview Data Governance, OneTrust DataGovernance, Microsoft Defender for Cloud and Vanta. See our Microsoft Defender for Identity vs. Microsoft Purview Compliance Manager report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
