Lead Cloud Systems Architect at a computer software company with 5,001-10,000 employees
Real User
Top 20
Nov 19, 2025
I am not using the access review agent feature in Microsoft Entra ID Governance because that is in preview right now, and I do not know if that is available. My perception of Microsoft Entra ID Governance's ability to handle large volumes of users access and management tasks is good. There is a slight delay from creation of the actual access review to how long it takes to complete the actual review. For us, we are a large organization with over ten thousand employees. If we are doing a review on a larger group that has thousands of employees inside of it, it takes a while to actually complete, and then it becomes a headache for managers. If there were a way to condense that or decrease the amount of time it takes to do it, that would be better. We inspect thousands of people. Microsoft Entra ID Governance can be improved, and I actually have two tickets in with you now about improvements. I would have to dig it up because I do not know off the top of my head, but you can find it. We have two tickets that have been put in by the FastTrack team that I work with for identity governance. I think it was something about the ability to stop reviews early. When you create an access review now, and you put a time gate on it, say it is the end of this week, once the access review is finished, the managers went in there and finished the access review, you cannot finish it until the end of the week. That is a slight problem because we do not get a notification for people that are on the identity side that they have actually finished that, and I think there are two tickets in for that right now.
In terms of integration, improvements could be made. To enhance integration, they could provide out-of-box integration with HashiCorp. This out-of-box integration with HashiCorp or another product would be beneficial, as that's still evolving. Integrations with out-of-the-box applications remain an area for improvement.
Lead architect at a tech vendor with 501-1,000 employees
Real User
Top 10
Aug 6, 2025
Microsoft can improve Microsoft Entra ID Governance by expanding in the ID space, typically by offering a full lifecycle management solution and tighter or native integrations with database and web service-based applications. That would help build Microsoft Entra ID as a converged ITA plus AM plus TAM solution. I feel that on-premises connectivity and more integrations to third-party applications should be improved. The rest is good.
Senior IAM Architect at a government with 201-500 employees
Real User
Top 20
Apr 23, 2025
Microsoft Entra ID Governance ( /categories/grc ) is relatively new, and some features require more development. For example, when creating user access review campaigns, we can't specify the time to send emails to reviewers—only the date. This feature could be improved to allow more specificity. Compared to other IGA ( /categories/identity-management-im ) platforms like Saviynt ( /products/saviynt-reviews ) or SailPoint, Microsoft may need further enhancements in certain areas.
Azure Architect at a comms service provider with 5,001-10,000 employees
Real User
Top 10
Jan 15, 2025
There are some areas where improvements are necessary. Even though we have almost the full package, there are some bugs. I cannot directly perform some tasks from the portal. First, I have to go to the policy, change it, and then return to the package to add it. I cannot do it directly from the package. Workarounds are needed, so that can be improved. At the moment, that is the only issue we are facing that needs enhancement.
Advisory Specialist at a tech services company with 11-50 employees
MSP
Top 20
Jun 6, 2024
Other governance solutions, like SailPoint, have different modules for managing access packages, and they have a very easy way of managing those identities and access from a single console. Microsoft Entra ID Governance should improve its capability to manage identities and access from a single console. The tool should include more automation capabilities where I can even use existing users. If I create an access package or access reviews, the solution makes it easy for me to integrate new users. I would like to see the existing users governed by Microsoft Entra ID Governance.
Learn what your peers think about Microsoft Entra ID Governance. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
Senior Solution Architect at a tech vendor with 10,001+ employees
Real User
Top 20
Apr 26, 2024
Microsoft has done a commendable job with RPAX. However, Microsoft should prioritize enhancing its ABAC (Attribute-Based Access Control) capabilities. Currently, Microsoft's ABAC offering falls behind AWS in comparison.
The solution lacks the feature to work well with third-party applications. Microsoft Entra ID Governance does not provide full-fledged governance features that are provided by other tools, such as Saviynt.
Microsoft Entra ID Governance empowers organizations with advanced identity management, security enforcement, and seamless access management across environments, offering robust multi-factor authentication and audit capabilities.Microsoft Entra ID Governance provides comprehensive identity and security management through features like single sign-on and privileged identity management. It enhances user management with user behavior analytics, entitlement management, and access reviews while...
I am not using the access review agent feature in Microsoft Entra ID Governance because that is in preview right now, and I do not know if that is available. My perception of Microsoft Entra ID Governance's ability to handle large volumes of users access and management tasks is good. There is a slight delay from creation of the actual access review to how long it takes to complete the actual review. For us, we are a large organization with over ten thousand employees. If we are doing a review on a larger group that has thousands of employees inside of it, it takes a while to actually complete, and then it becomes a headache for managers. If there were a way to condense that or decrease the amount of time it takes to do it, that would be better. We inspect thousands of people. Microsoft Entra ID Governance can be improved, and I actually have two tickets in with you now about improvements. I would have to dig it up because I do not know off the top of my head, but you can find it. We have two tickets that have been put in by the FastTrack team that I work with for identity governance. I think it was something about the ability to stop reviews early. When you create an access review now, and you put a time gate on it, say it is the end of this week, once the access review is finished, the managers went in there and finished the access review, you cannot finish it until the end of the week. That is a slight problem because we do not get a notification for people that are on the identity side that they have actually finished that, and I think there are two tickets in for that right now.
In terms of integration, improvements could be made. To enhance integration, they could provide out-of-box integration with HashiCorp. This out-of-box integration with HashiCorp or another product would be beneficial, as that's still evolving. Integrations with out-of-the-box applications remain an area for improvement.
Microsoft can improve Microsoft Entra ID Governance by expanding in the ID space, typically by offering a full lifecycle management solution and tighter or native integrations with database and web service-based applications. That would help build Microsoft Entra ID as a converged ITA plus AM plus TAM solution. I feel that on-premises connectivity and more integrations to third-party applications should be improved. The rest is good.
Microsoft Entra ID Governance ( /categories/grc ) is relatively new, and some features require more development. For example, when creating user access review campaigns, we can't specify the time to send emails to reviewers—only the date. This feature could be improved to allow more specificity. Compared to other IGA ( /categories/identity-management-im ) platforms like Saviynt ( /products/saviynt-reviews ) or SailPoint, Microsoft may need further enhancements in certain areas.
There are some areas where improvements are necessary. Even though we have almost the full package, there are some bugs. I cannot directly perform some tasks from the portal. First, I have to go to the policy, change it, and then return to the package to add it. I cannot do it directly from the package. Workarounds are needed, so that can be improved. At the moment, that is the only issue we are facing that needs enhancement.
Other governance solutions, like SailPoint, have different modules for managing access packages, and they have a very easy way of managing those identities and access from a single console. Microsoft Entra ID Governance should improve its capability to manage identities and access from a single console. The tool should include more automation capabilities where I can even use existing users. If I create an access package or access reviews, the solution makes it easy for me to integrate new users. I would like to see the existing users governed by Microsoft Entra ID Governance.
Microsoft has done a commendable job with RPAX. However, Microsoft should prioritize enhancing its ABAC (Attribute-Based Access Control) capabilities. Currently, Microsoft's ABAC offering falls behind AWS in comparison.
The solution lacks the feature to work well with third-party applications. Microsoft Entra ID Governance does not provide full-fledged governance features that are provided by other tools, such as Saviynt.
The platform's configuration process needs improvement.