Amazon Cognito vs Microsoft Entra ID comparison

Amazon Web Services (AWS) and Microsoft are both solutions in the Access Management category. Amazon Web Services (AWS) is ranked #7 with an average rating of 7.9, while Microsoft is ranked #1 with an average rating of 8.7. Amazon Web Services (AWS) holds a 7.6% mindshare in AM, compared to Microsoft’s 29.9% mindshare. Additionally, 75% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 94% of Microsoft users who would recommend it.

Amazon Cognito

Read 12 Amazon Cognito reviews

2,282 Views
1,908 Comparison Views

75% willing to recommend

Microsoft Entra ID

Read 218 Microsoft Entra ID reviews

10,652 Views
7,862 Comparison Views

94% willing to recommend

Amazon Cognito

Microsoft Entra ID

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 11, 2024

Microsoft Entra ID and Amazon Cognito are prominent identity and access management solutions. Users are happier with the integrations and advanced security features of Amazon Cognito, although Microsoft Entra ID excels in ease of deployment and customer service.

Features: Microsoft Entra ID users value its seamless integration with other Microsoft services and its multi-factor authentication features. Amazon Cognito is appreciated for its robust security features and user management capabilities.

Room for Improvement: Microsoft Entra ID users have noted a desire for more customization options and improved analytics. Amazon Cognito users seek better documentation and a more intuitive setup process.

Ease of Deployment and Customer Service: Microsoft Entra ID is praised for its straightforward deployment and excellent customer service. Amazon Cognito, while powerful, is sometimes viewed as complex to set up, and users report mixed experiences with customer support.

Pricing and ROI: Microsoft Entra ID users find the setup cost reasonable and report solid ROI due to its seamless integration with existing Microsoft solutions. Amazon Cognito users feel the pricing reflects its advanced features, despite higher initial setup costs.

To learn more, read our detailed Amazon Cognito vs. Microsoft Entra ID Report (Updated: January 2025).

Buyer's Guide

Amazon Cognito vs. Microsoft Entra ID

January 2025

Download the complete report

Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Amazon Cognito

Ranking in Access Management

7th

Average Rating

7.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

No ranking in other categories

Microsoft Entra ID

Ranking in Access Management

1st

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

218

Ranking in other categories

Single Sign-On (SSO) (1st), Authentication Systems (1st), Identity Management (IM) (1st), Identity and Access Management as a Service (IDaaS) (IAMaaS) (1st), Microsoft Security Suite (4th)

Mindshare comparison

As of January 2025, in the Access Management category, the mindshare of Amazon Cognito is 7.6%, up from 7.3% compared to the previous year. The mindshare of Microsoft Entra ID is 29.9%, up from 26.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Access Management

Featured Reviews

Erik Aceiro

Solutions Architect III at Raizen

Good integration with AWS services but not feasible for B2C because MFAs are nonexistent

The developer experience for mobile apps is terrible. Documentation is very poor and it is difficult to read the documents available to put things into practice. Our team has issues finding information related to using the solution. SDK and libraries available for mobile apps are terrible. For example, if you use MFA to migrate one user from your database to the pool, you need to use Lambda functions or other methods in AWS to get the solution enabled. It is extremely difficult to put a very, very scalable project into practice. Our team doesn't think you can use the solution for B2C on a large scale. We thought the solution would provide an agile experience but it does not. The solution needs to keep a history of passwords. For example, you should be able to check if customers used the same password in the past when connecting to a company by username and password. This type of feature is a must for our project. The MFA related to the solution's side is nonexistent. MFA should occur on the Facebook or Google side and also on the solution's side. This is a big problem because we have wallets, credit cards, and sensitive data stored for each customer. One layer of security is totally missing.

Read full review

Aaron Liang

System engineer at a energy/utilities company with 501-1,000 employees

Has significantly improved secure access to applications and resources in our environment

Microsoft Entra ID has helped by simplifying our management of permissions for APIs. We are not directly exposing credentials, as we use tokens instead. It has made management easier and more secure, especially in a multi-user environment. The implementation of Microsoft Entra ID significantly improved secure access to applications and resources in our environment, primarily through the widespread use of single-sign-on. Managing API permissions became much easier, as application registration often involves calling an API to utilize services without directly exposing credentials, relying instead on token-based authentication. This streamlined approach benefits end-users by simplifying access while remaining transparent to them. Ultimately, my role focuses on ensuring a smooth and user-friendly experience, even if the underlying technology remains unseen by the end-users. Our company strongly emphasizes passwordless authentication, primarily through device-bound passkeys in Microsoft Authenticator. While administrators with high-privileged accounts utilize YubiKeys and passwords for tasks like accessing Microsoft Graph, we are actively transitioning all other users towards passwordless methods such as Windows Hello biometrics. This approach streamlines authentication and enhances security. Though initial deployment in 2022 presented challenges due to hardware limitations and the lingering effects of the COVID-19 pandemic, the technology has significantly improved and provides a simple and effective user experience.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I appreciate Amazon Cognito's ability to scale with demand and its seamless user verification features."

"One of the key benefits of this software is its ease of integration with a wide range of applications, including mobile apps and web applications. This simplifies the process of integration, and it can be seamlessly incorporated with Azure, Kubernetes, and other software systems."

"The federation is one of the most efficient features as the pricing is competitive."

"The features most valuable to us are the ability to integrate with various IDPs and the capability to sync with multiple applications."

"The solution is proto connective and integrates well with other AWS services."

"The most valuable features of Amazon Cognito are the pre and post-token generation, and the different Cognito triggers. It has lots of functionality and flexibility."

"The most valuable features of Amazon Cognito are OTP validation and email validation."

"Cognito speeds up our development and saves us time."

More Amazon Cognito pros

"Azure Active Directory has many automation capabilities, and you can apply policies on top. You can do a lot of things with these combinations and integrate other tools like PingFederate."

"Azure Active Directory has been very useful for our company, it is not difficult to use."

"Our most valuable features are conditional access and Azure application proxy."

"The security features, such as attack surface rules and conditional access rules, are the most valuable aspects of Azure AD."

"It's very user-friendly for users."

"The most valuable feature of this solution is that is easy to use."

"Microsoft Entra ID has helped us defend against token theft and nation-state attacks."

"Microsoft Entra ID, integrated with Microsoft Teams, has enhanced the security of access to applications and resources within our environment."

More Microsoft Entra ID pros

Cons

"The MFA related to the solution's side is nonexistent."

"The secure authentication of Amazon Cognito has benefited our company. We were previously using legacy signup systems."

"There is room for improvement in Amazon Cognito."

"Amazon Cognito could improve by simplifying the configuration."

"I believe this product could improve by enriching user profiles."

"The setup and configuration can be complex, especially for advanced use cases."

"What I found generally lacking in AWS is privileged access management (PAM)."

"In a future release, we would like to have different methods to validate the characteristic of a user. For example, we would like to use biometric data to analyze the behavior of users."

More Amazon Cognito cons

"From an admin perspective, I would like to see improvement in the Microsoft Graph API."

"The cost is one area that needs improvement."

"Customers want to know exactly where they are spending their money, allowing them to assess and potentially save money in those specific areas."

"Microsoft has so many different requirements and priorities that sometimes they don't invest all their energy into the products that you have expectations to investigate."

"There are issues using it with ADFS."

"Whatever business requirements we needed in the past three years, users were created, with the name of the user and they were not connected with the Active Directory. We were trying to in house in three years and with directory, but we were not able to achieve it."

"We have a custom solution now running to tie all those Azure ADs together. We use the B2B functionality for that. Improvements are already on the roadmap for Azure AD in that area. I think they will make it easier to work together between two different tenants in Azure AD, because normally one tenant is a security boundary. For example, company one has a tenant and company two has a tenant, and then you can do B2B collaboration between those, but it is still quite limited. For our use case, it is enough currently. However, if we want to extend the collaboration even further, then we need an easier way to collaborate between two tenants, but I think that is already on the roadmap of Azure AD anyway."

"The scalability of the solution is good."

More Microsoft Entra ID cons

Pricing and Cost Advice

"The pricing is bad so I rate it a two out of ten."

"The product is relatively inexpensive compared to other tools."

"The price of Amazon Cognito is low. The pricing model is based on the users."

"We pay $600 monthly per user for licences and there are no other additional costs."

"The pricing of this solution is good compared to other solutions on the market."

"The price of the solution depends on the number of users using it."

"The price of Amazon Cognito is expensive. We are on an annual subscription."

"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a five out of ten."

"Azure AD's pricing is comprehensive and affordable. The prices are easy to understand, and the licenses include a variety of security monitoring and additional features."

"The price of the solution was reasonable."

"Entra has P1 and P2 licenses that are bundled with lots of applications."

"I give the cost a three out of ten."

"The E5 plan we are using contains the premium plans for Azure Active Directory. We are not paying only for the Azure Active Directory Premium licenses. We have it already included within our E5 plan."

"Entra ID is not too bad, but Microsoft licensing generally is insane. Most customers normally buy a bundle license with Microsoft 365, E3, or E5. Out of our 2,000 customers, for 99.9% of our customers, the Entra ID license that they are getting through the part of that would be sufficient. There are some more advanced ones that give you a bit more functionality, but we probably have not had a customer for that. We do not even internally use that ourselves. When you buy the Entra ID license on its own, it is probably three or four pounds. You just get it included in the license."

"The basic tier of Azure Active Directory is free, so many users use the service for free. For a small company having the security and compliance that Azure offers is a great benefit. For small companies that are using the basic services, not having to pay for Azure Active Directory is the main asset because they can manage their users and have authentications tools and security."

"Make sure that you get the most out of your Office 365 licenses for Azure AD. If you have additional concerns for users who don't have an Office 365 license, consider Azure AD Premium P1 and P2. Be aware that you have to evaluate your license usage beforehand."

More Microsoft Entra ID pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Access Management solutions are best for your needs.

See recommendations

831,158 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Healthcare Company

Educational Organization

32%

Computer Software Company

10%

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Amazon Cognito?

The most valuable feature of the solution is its swift authentication.

See all answers

What is your experience regarding pricing and costs for Amazon Cognito?

Pricing is considered expensive for smaller organizations. Cognito's pricing was rated seven out of ten due to its cost.

See all answers

What needs improvement with Amazon Cognito?

The setup and configuration can be complex, especially for advanced use cases. A dedicated documentation portal with comprehensive information would be helpful. The user interface could be more int...

See all answers

How does Duo Security compare with Microsoft Authenticator?

We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Duo for 30 days, and we could not be happier. Duo Security is easy to configure a...

See all answers

What do you like most about Azure Active Directory?

It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. We can easily do third-party multifactor authentication.

See all answers

What is your experience regarding pricing and costs for Azure Active Directory?

We are an enterprise customer with an enterprise agreement in place with many of our partner companies, so there are no special questions or issues about pricing, setup cost, or licensing.

See all answers

Comparisons

Auth0 vs Amazon Cognito

Compared 17% of the time

Cloudflare One vs Amazon Cognito

Compared 10% of the time

ForgeRock vs Amazon Cognito

Compared 6% of the time

WSO2 Identity Server vs Amazon Cognito

Compared 3% of the time

Ping Identity Platform vs Amazon Cognito

Compared 3% of the time

More Amazon Cognito Competitors

Microsoft Intune vs Microsoft Entra ID

Compared 11% of the time

Google Cloud Identity vs Microsoft Entra ID

Compared 10% of the time

Okta Workforce Identity vs Microsoft Entra ID

Compared 9% of the time

Auth0 vs Microsoft Entra ID

Compared 6% of the time

SailPoint Identity Security Cloud vs Microsoft Entra ID

Compared 4% of the time

More Microsoft Entra ID Competitors

Product Reports

Buyer's Guide

Amazon Cognito

January 2025

Download Amazon Cognito product report

Buyer's Guide

Microsoft Entra ID

January 2025

Download Microsoft Entra ID product report

Also Known As

No data available

Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator

Learn More

Amazon Web Services (AWS)

Microsoft

Interactive Demo

Demo not available

Amazon Web Services (AWS)

Microsoft

Overview

Amazon Cognito is a simple user identity and data synchronization service that helps you securely manage and synchronize app data for your users across their mobile devices. You can create unique identities for your users through a number of public login providers (Amazon, Facebook, and Google) and also support unauthenticated guests. You can save app data locally on users’ devices allowing your applications to work even when the devices are offline. With Amazon Cognito, you can save any kind of data in the AWS Cloud, such as app preferences or game state, without writing any backend code or managing any infrastructure. This means you can focus on creating great app experiences instead of having to worry about building and managing a backend solution to handle identity management, network state, storage, and sync.

Microsoft Entra ID is used for extending on-premises Active Directory to the cloud, managing application access, enabling multi-factor authentication, and single sign-on. It facilitates policy enforcement and secure access, ensuring centralized identity management across cloud and on-premises resources.

Organizations utilize Microsoft Entra ID for robust user and group management, identity synchronization, and conditional access. Its seamless integration with third-party apps, scalability, and support for remote work make it a preferred choice. The admin center streamlines identity and access tasks, enhancing efficiency and security with features like privileged identity management and audit logs.

What are the key features of Microsoft Entra ID?

Single Sign-On: Simplifies user access to multiple applications with one login.
Multifactor Authentication: Enhances security by requiring additional verification.
Conditional Access: Establishes policies that determine how users' access cloud apps.
Integration: Easily integrates with various third-party applications.
User Identity Protection: Safeguards user identities from threats.
Privileged Identity Management: Manages elevated access to sensitive resources.
Audit Logs: Provides thorough activity logs for oversight and compliance.

What benefits should users look for in Microsoft Entra ID reviews?

Enhanced Security: Offers strong multifactor authentication and identity protection.
Administrative Efficiency: Simplifies identity and access management tasks.
Scalability: Supports growing user bases and remote work environments.
Integration Capabilities: Compatible with numerous third-party applications.
User-Friendly Interface: Makes managing user identities straightforward.

Microsoft Entra ID implementation varies across industries. Tech firms leverage it for secure, scalable access management, while healthcare organizations utilize its identity protection features to safeguard patient data. Educational institutions adopt Entra ID for streamlined user management and policy enforcement, ensuring secure access for students and staff across on-premises and cloud resources.

Sample Customers

Expedia, Intuit, Royal Dutch Shell, Brooks Brothers

Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.

Buyer's Guide

Amazon Cognito vs. Microsoft Entra ID

January 2025

Free Report: Amazon Cognito vs. Microsoft Entra ID

Find out what your peers are saying about Amazon Cognito vs. Microsoft Entra ID and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,158 professionals have used our research since 2012.

See our Amazon Cognito vs. Microsoft Entra ID report.

See our list of best Access Management vendors.

We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.