Azure Bastion vs Microsoft Sentinel comparison

Azure Bastion and Microsoft Sentinel are both solutions in the Microsoft Security Suite category. Azure Bastion is ranked #17 with an average rating of 8.9, while Microsoft Sentinel is ranked #5 with an average rating of 8.4. Azure Bastion holds a 1.6% mindshare in Microsoft Security Suite, compared to Microsoft Sentinel’s 5.4% mindshare. Additionally, 100% of Azure Bastion users are willing to recommend the solution, compared to 93% of Microsoft Sentinel users who would recommend it.

Azure Bastion

Read 9 Azure Bastion reviews

1,819 Views
872 Comparison Views

100% willing to recommend

Microsoft Sentinel

Read 89 Microsoft Sentinel reviews

6,087 Views
3,568 Comparison Views

93% willing to recommend

Azure Bastion

Microsoft Sentinel

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Azure Bastion and Microsoft Sentinel based on real PeerSpot user reviews.

Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Azure Bastion vs. Microsoft Sentinel Report (Updated: October 2024).

Buyer's Guide

Azure Bastion vs. Microsoft Sentinel

October 2024

Download the complete report

Helped 824,067 peers since 2012

Categories and Ranking

Azure Bastion

Ranking in Microsoft Security Suite

17th

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Network Monitoring Software (28th), Remote Monitoring and Management (RMM) (7th)

Microsoft Sentinel

Ranking in Microsoft Security Suite

5th

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (3rd), Security Orchestration Automation and Response (SOAR) (1st), AI-Powered Cybersecurity Platforms (5th)

Mindshare comparison

As of December 2024, in the Microsoft Security Suite category, the mindshare of Azure Bastion is 1.6%, up from 1.5% compared to the previous year. The mindshare of Microsoft Sentinel is 5.4%, down from 6.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Microsoft Security Suite

Featured Reviews

Aladin Steiner

Head of Value Stream Azure at SmartIT Services AG

Has good scalability and provides secure access to the virtual machines

The product improved the security posture of our organization. We don’t have open ports and connect them to servers using it. We can carry out two-factor authentication to protect the devices with conditional access features. It would be nice to have a feature to copy and paste the files into servers. I rate the product a nine out of ten.

Read full review

Nitin Arora

Security Delivery Senior Analyst at Accenture

Gives us one place to investigate and respond to threats, and automation eliminates manual work

They can work on the EDR side of things. It is already really superb, because of the kinds of features we get with the EDR solution. It's not a standard EDR and they have recently enhanced things. But the problem is with onboarding devices. I have different OS flavors, including a large number of Linux, Windows, macOS, and some on-prem machines as well. Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work. They can eliminate having to do manual configuration for the machines, and check the different types of configurations for each OS. In some cases, it does not support some OSs. If they could reduce this type of work, that would be really amazing.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The product's setup is easy."

"It provides all the security to us. Without getting on the internet, we can access our servers. We can access our desktop through our web browser. We don't need to run the mstsc command and login to the VM. All those things are not required."

"The most significant advantage lies in its runbook features, particularly beneficial for our infrastructure team."

"Azure Bastion makes it easy to provide quick virtual machine access to our customers."

"The interface is available in the edit portal."

"As an Azure consultant, for me, it is the best way to give the administrator access as you can manage the permission - including who can access Bastion."

"The solution's most valuable feature is that it is easy to use...It is modernized, so I can create complex infrastructures."

"The ability to operate the product with scripting is excellent."

More Azure Bastion pros

"Sentinel is a SIEM and SOAR tool, so its automation is the best feature; we can reduce human interaction, freeing up our human resources."

"One of the most valuable features is that it creates a kind of a single pane of glass for organizations that already use Microsoft software. So, when they have things like Microsoft 365, it is very easy for them to kind of plug in or enroll those endpoints into the Azure Sentinel service."

"I like the unified security console. You can close incidents using Sentinel in all other Microsoft Security portals, when it comes to incident response."

"The log query feature has been the most valuable because it's very good. You can put your data on the cloud and run queues from Sentinel. It will do it all very fast. I love that I don't have to upload it to an Excel file and then manually look for a piece of information. Sentinel is much faster and is good for big databases."

"The product can integrate with any device."

"Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment."

"Microsoft Sentinel enables you to ingest data from the entire ecosystem and that connection of data helps you to monitor critical resources and to know what's happening in the environment."

"The log analysis is excellent; it can predict what can or will happen regarding use patterns and vulnerabilities."

More Microsoft Sentinel pros

Cons

"Speaking of AI, having Microsoft Copilot in Azure Bastion would be good."

"We are not able to copy and paste files directly into the server over the patch host. We have to transfer files over to Azure Storage."

"There are some challenges because Bastion is more compatible with Edge but not with the other browsers. As an organization, it doesn't make sense that we have to use only Edge. We should be able to access Bastion over Chrome, Mozilla, or Opera. It should be our choice."

"The protocol speed could be faster."

"You are charged for retrieving your own data."

"The solution breaks down sometimes."

"While general support is valuable, having a detailed breakdown of the specific issues would contribute to a more streamlined and efficient resolution process."

"When you have a boot issue on Windows, you cannot use Azure Bastion to fix it. You have to use the Azure console or the VM console, and it is very limited."

"The pricing could be improved."

"We'd like also a better ticketing system, which is older."

"There is a wider thing called Jupyter Notebooks, which is around the automation side of things. It would be good if there are playbooks that you can utilize without having to have the developer experience to do it in-house. Microsoft could provide more playbooks or more Jupyter Notebooks around MITRE ATT&CK Framework."

"I would like to see more AI used in processes."

"The solution could be more user-friendly; some query languages are required to operate it."

"The learning curve could be improved. I am still learning it. We were able to implement the basic features to get them up and running, but there are still so many things that I don't know about all its features. They have a lot of features that we have not been able to use or apply. If they could work on reducing the solution's learning curve, that would be good. While there is a training course held by Microsoft to learn more about this solution, there is a cost associated with it."

"While I appreciate the UI itself and the vast amount of information available on the platform, I'm finding the overall user experience to be frustrating due to frequent disconnections and the requirement to repeatedly re-authenticate."

"Documentation is the main thing that could be improved. In terms of product usage, the documentation is pretty good, but I'd like a lot more documentation on Kusto Query Language."

More Microsoft Sentinel cons

Pricing and Cost Advice

"It does not save money for us."

"The tool is cheaply priced. I would say that the product is free to use."

"Azure Bastion's pricing is good."

"The pricing is a lower decision point than high-quality security for our organization. Better security comes at a cost, but it's worth it, and that's what we tell our customers."

"The pricing is fair... With a traditional SIEM, you pay a lump sum for licenses. But with Sentinel, it's pay-as-you-go according to the amount of data you inject."

"Sentinel is fairly priced and pretty cost-effective."

"Sentinel is a pay-as-you-go solution. To use it, you need a Log Analytics workspace. This is where the logs are stored and the cost of Log Analytics is based on gigabytes... On top of that, there is the cost of Sentinel, which is about €2 per gigabyte. If a customer has an M365 E5 license, the logs that come from Microsoft Defender are free."

"It's costly to maintain and renew."

"From a cost perspective, Microsoft Sentinel is quite costly."

"We must have saved some money with this product. It is a cloud-native product, and the ingestion is per GB. Every GB costs a certain amount of money. That is how the license of Microsoft Sentinel works."

"Sentinel's pricing is on the higher side, but you can get a discount if you can predict your usage. You have to pay ingestion and storage fees. There are also fees for Logic Apps and particular features. It seems heavily focused on microtransactions, but they may be slightly optional. By contrast, Splunk requires no additional fee for their equivalent of Logic. You have a little more flexibility, but Sentinel's costs add up."

"There are no additional costs other than the initial costs of Sentinel."

More Microsoft Sentinel pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.

See recommendations

824,067 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Manufacturing Company

10%

Government

Financial Services Firm

Computer Software Company

16%

Financial Services Firm

10%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Azure Bastion?

Azure Bastion makes it easy to provide quick virtual machine access to our customers.

See all answers

What is your experience regarding pricing and costs for Azure Bastion?

The tool is cheaply priced. I would say that the product is free to use.

See all answers

What needs improvement with Azure Bastion?

I think the tool is pretty good. It is like having a tool that just works. If there are better tools that Azure comes up with, then that is a separate thing. In the current scenario, Azure Bastion ...

See all answers

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?

Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...

See all answers

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

See all answers

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

See all answers

Comparisons

Azure Firewall vs Azure Bastion

Compared 29% of the time

Azure Front Door vs Azure Bastion

Compared 22% of the time

TeamViewer Remote Management vs Azure Bastion

Compared 10% of the time

Azure Web Application Firewall vs Azure Bastion

Compared 10% of the time

Microsoft Defender for Cloud Apps vs Azure Bastion

Compared 5% of the time

More Azure Bastion Competitors

AWS Security Hub vs Microsoft Sentinel

Compared 21% of the time

IBM Security QRadar vs Microsoft Sentinel

Compared 10% of the time

Cortex XSIAM vs Microsoft Sentinel

Compared 7% of the time

Wazuh vs Microsoft Sentinel

Compared 6% of the time

Google Chronicle Suite vs Microsoft Sentinel

Compared 5% of the time

More Microsoft Sentinel Competitors

Product Reports

Buyer's Guide

Azure Bastion

December 2024

Download Azure Bastion product report

Buyer's Guide

Microsoft Sentinel

November 2024

Download Microsoft Sentinel product report

Also Known As

No data available

Azure Sentinel

Learn More

Microsoft

Overview

Azure Bastion is a service you deploy that lets you connect to a virtual machine using your browser and the Azure portal. The Azure Bastion service is a fully platform-managed PaaS service that you provision inside your virtual network. It provides secure and seamless RDP/SSH connectivity to your virtual machines directly from the Azure portal over TLS. When you connect via Azure Bastion, your virtual machines do not need a public IP address, agent, or special client software.

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Sample Customers

Information Not Available

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.

Buyer's Guide

Azure Bastion vs. Microsoft Sentinel

October 2024

Free Report: Azure Bastion vs. Microsoft Sentinel

Find out what your peers are saying about Azure Bastion vs. Microsoft Sentinel and other solutions. Updated: October 2024.

DOWNLOAD NOW

824,067 professionals have used our research since 2012.

See our Azure Bastion vs. Microsoft Sentinel report.

See our list of best Microsoft Security Suite vendors.

We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.