"It is easy to set up. Based on the number of devices you would like to set up, you can use scripts, Group Policy, etc. It takes five minutes to set up."
"This solution has advanced a lot over the last few years."
"The basic security monitoring at its core feature is the most valuable aspect. But also the investigative parts, the historical logging of events over the network are extremely interesting because it gives an in-depth insight into the history of account activity that is really easy to read, easy to follow, and easy to export."
"Defender for Identity has not affected the end-user experience."
"Very intuitive and easy to set up."
"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."
"Simple configuration and automatically syncs to the cloud platform."
"It is a very stable solution."
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"I would like to be able to do remediation from the platform because it is just a scanner right now. If you onboard a device, it shows you what is happening, but you can't use it to fix things. You need to go into the system to fix it instead."
"The solution could be better at using group-managed access and they could replace it with broad-based access controls."
"When the data leaves the cloud, there are security issues."
"The impact of the sensors on the domain controllers can be quite high depending on your loads. I don't know if there's any room for improvement there, but that's one of the things that might be improved."
"Inability to get access to compliance reports within the solution."
"The dashboard is an area that could be simplified."
"Lacks a mobile application."
"Cloud risk assessment is one area where I think they need a lot of improvement."
"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."
Microsoft Defender for Identity is a cloud-based security solution that leverages your on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at your organization. With Microsoft Defender for Identity, you can:
- Monitor users, entity behavior, and activities with learning-based analytics
- Protect user identities and credentials stored in Active Directory
- Identify and investigate suspicious user activities and advanced attacks throughout the kill chain
- Provide clear incident information on a simple timeline for fast triage
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.
Microsoft Defender for Identity is ranked 9th in User Behavior Analytics - UEBA with 4 reviews while Rapid7 InsightIDR is ranked 4th in User Behavior Analytics - UEBA with 5 reviews. Microsoft Defender for Identity is rated 9.0, while Rapid7 InsightIDR is rated 8.0. The top reviewer of Microsoft Defender for Identity writes "Gives most administrators absolutely amazing insight into what's happening in the network that they probably never had before". On the other hand, the top reviewer of Rapid7 InsightIDR writes "Easy to use with a simple setup and good scalability". Microsoft Defender for Identity is most compared with Microsoft Defender for Office 365, Splunk User Behavior Analytics, Palo Alto Networks WildFire, McAfee Advanced Threat Defense and Palo Alto Networks VM-Series, whereas Rapid7 InsightIDR is most compared with Microsoft Sentinel, Darktrace, Splunk, IBM QRadar and AT&T AlienVault USM. See our Microsoft Defender for Identity vs. Rapid7 InsightIDR report.
See our list of best User Behavior Analytics - UEBA vendors.
We monitor all User Behavior Analytics - UEBA reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.