Azure Web Application Firewall vs Microsoft Defender for Cloud Apps comparison

Azure Web Application Firewall vs. Microsoft Defender for Cloud Apps

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Azure Web Application Firewall

Ranking in Microsoft Security Suite

20th

Average Rating

8.4

Number of Reviews

Ranking in other categories

Web Application Firewall (WAF) (13th)

Microsoft Defender for Clou...

Ranking in Microsoft Security Suite

11th

Average Rating

8.4

Number of Reviews

Ranking in other categories

Cloud Access Security Brokers (CASB) (4th), Advanced Threat Protection (ATP) (12th)

Mindshare comparison

As of November 2024, in the Microsoft Security Suite category, the mindshare of Azure Web Application Firewall is 1.7%, down from 2.1% compared to the previous year. The mindshare of Microsoft Defender for Cloud Apps is 2.0%, up from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Microsoft Security Suite

Featured Reviews

Thomas Zebar

Azure Principal Architect at Cloud Computech Consultancy

May 4, 2023

Is priced well, is stable, and the initial setup is straightforward

I previously used Barracuda Web Application Firewall. I hope that Azure Web Application Firewall will look at other products and replicate some of their functionality. Azure WAF is doing great because it is designed to host web applications in Azure. However, it can be improved with other services. Barracuda is the most advanced firewall in the industry, so Azure WAF could pick some of its features and replicate them into its own application firewall. Barracuda WAF was deployed in parallel to the traffic. Azure WAF should not be deployed in the middle of the traffic. It should support both public and private points of presence. Additionally, like Barracuda, Azure WAF should have an inspection engine that covers not just Microsoft products, but also products from other manufacturers. This would be a great addition to the product and would increase its security functionality.

Read full review

Anthony Alvarico

Deliver Practice Director at DynTek

Jul 9, 2024

Provides discovery, data exfiltration, and sensitive data exposure at low cost

The deployment process is quick, taking two to three days. The implementation and customization require more time. We need to adjust the setup to fit the client's needs, which involves fine-tuning notifications and alerts to avoid overwhelming them. First, you need the appropriate licensing. Once you have that, go to security.microsoft.com and integrate with Defender for Endpoints to receive information. While you can ingest logs from different firewalls, such as Palo Alto or Cisco, we usually implement them with Defender for Endpoints. Once a laptop or desktop is set up in Defender for Endpoints, integrating Cloud Apps with the endpoints allows us to collect the data easily. I rate the initial setup a nine out of ten, where one is difficult and ten is easy.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's quite a stable product and works well with Microsoft products."

"The most valuable feature is that it allows us to publish our applications behind the firewall."

"The most valuable feature of Azure Web Application Firewall is its ability to filter requests and block false positives by using custom rules and the OWASP rule set."

"It has been a stable product in my experience."

"The integration it has with GitHub is great."

"It's a good option if you want a solution that's ready to go and easy for your team to learn. It's cloud-based, so you don't need to buy or maintain any hardware infrastructure."

"Azure WAF is extremely stable."

"The initial setup is easy and straightforward...Azure Web Application Firewall is a scalable product."

More Azure Web Application Firewall pros

"One of the most valuable features is auditing. Some of the other protection services have issues with auditing. Microsoft Defender for Cloud has an excellent auditing technique that helps us avoid the risk of filtering or information loss. You can use different tools to guarantee these things. It allows you to conduct an in-depth exploration of applications, users, and files that are harmful or suspicious. You can also enhance your security setup by creating personalized rules or policies that help you better control traffic in the cloud."

"The most valuable feature is the seamless integration across different clouds."

"It is very easy to use, which is what we look for in these types of solutions."

"We have become more aware of what services our users are using, how often they are using them, and what data is being sent out of the organization and to which services. So, it is really a lot about visibility and helping us make decisions based on that. It drives some of our policy decisions for adding extra security controls."

"The product’s most valuable feature is SQL database."

"It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one place."

"In Microsoft Defender for Cloud Apps, there is an option to enable files. Once you enable that, it will give you all the files in your organization and where they are located in the cloud... That feature is very useful for investigation purposes."

"The most valuable feature of this solution is its monitoring."

More Microsoft Defender for Cloud Apps pros

Cons

"Deployment should be simplified so that a non-techie can handle it."

"From a reporting perspective, they could do more there."

"The management can be improved."

"We would like to see additional site services using AI to provide information about blocking requests and offer analytics on the origin of calls."

"I would say that Azure's customer service is not that good...I am not very happy with the support offered."

"The documentation needs to be improved."

"The support for proxy forwarding could improve."

"In Brazil, we have some problems with the phone service that affect our connection with the cloud. However, it isn't common."

More Azure Web Application Firewall cons

"The technical support team has room for improvement."

"They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around."

"Microsoft Defender for Cloud Apps' initial setup was quite technical but we were prepared. The time of the implementation depends on the job and how many users are being set up."

"I want them to enhance in-session policy."

"The response time could be better. It will be helpful if the alerts are even more proactive and we can see more data. Currently, the data is a little bit weak. It is not complete. I can't just see it and completely know which user or which device it is. It takes some effort and time on my part to investigate and isolate a user. It would be great if it is more user-friendly or easy for people to understand."

"Defender for Cloud apps is primarily useful for Azure apps. It has limited capabilities for applications based on other cloud platforms."

"In the future, I would like to see more plug-and-play capabilities that use AI to tell you what needs to be done. It would be helpful if it scanned our devices and made security suggestions, on a configuration basis."

"There could be more granular roles that are out of the box included in the product."

More Microsoft Defender for Cloud Apps cons

Pricing and Cost Advice

"We have an enterprise agreement with Microsoft and the pricing is good."

"The price is reasonable. It is approximately $2,000 US per month."

"I give the pricing a nine out of ten."

"The price of the solution depends on your architecture and how you manage it. You can control the cost in Azure quite well. The costs do not directly correlate to expenses in the features we are using."

"Azure WAF has price advantages over other WAF solutions. The pricing model is flexible because you pay on a scale based on the level of protection you need."

"The price is for this solution is fair and there is a license needed."

"The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."

"We are an MST and we do not pay for the solution. However, the price of the solution could be better."

"It has fair pricing. You pay for what you get. As far as I know, there are no costs in addition to the standard licensing fee."

"This product is not expensive."

"The pricing is in the middle. It isn't too cheap or expensive compared to other antivirus or security products. It is priced according to industry standards."

"It has pretty good pricing."

"The product's pricing seems fair."

"Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."

More Microsoft Defender for Cloud Apps pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

21%

Financial Services Firm

11%

Manufacturing Company

10%

Government

Computer Software Company

17%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Azure Web Application Firewall?

The integration it has with GitHub is great.

What is your experience regarding pricing and costs for Azure Web Application Firewall?

The price is reasonable. It is approximately $2,000 US per month. This cost is one of the main reasons why we selected Azure Web Application Firewall. It provides enough functionality for our needs.

What needs improvement with Azure Web Application Firewall?

Microsoft is constantly working on improvements. We would like to see additional site services using AI to provide information about blocking requests and offer analytics on the origin of calls. Th...

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native solution, unifying multiple features like DNS-layer security, threat intelli...

What do you like most about Microsoft Cloud App Security?

It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications are pretty good.

What is your experience regarding pricing and costs for Microsoft Cloud App Security?

It's relatively low-cost, especially since it's often bundled with Microsoft 365.

AWS WAF vs Azure Web Application Firewall

Comparisons

Compared 45% of the time

Fortinet FortiWeb vs Azure Web Application Firewall

Compared 12% of the time

Azure Front Door vs Azure Web Application Firewall

Compared 6% of the time

Microsoft Defender for Endpoint vs Azure Web Application Firewall

Compared 4% of the time

F5 Advanced WAF vs Azure Web Application Firewall

Compared 3% of the time

More Azure Web Application Firewall Competitors

Zscaler Internet Access vs Microsoft Defender for Cloud Apps

Compared 24% of the time

Cisco Umbrella vs Microsoft Defender for Cloud Apps

Compared 18% of the time

Netskope vs Microsoft Defender for Cloud Apps

Compared 12% of the time

Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps

Compared 7% of the time

Skyhigh Security vs Microsoft Defender for Cloud Apps

Compared 4% of the time

More Microsoft Defender for Cloud Apps Competitors

Product Reports

Web Application Firewall (WAF)

Download Azure Web Application Firewall product report

Microsoft Defender for Cloud Apps

Download Microsoft Defender for Cloud Apps product report

Microsoft Defender for Cloud Apps report

Also Known As

No data available

MS Cloud App Security, Microsoft Cloud App Security

Learn More

Microsoft

Overview

Azure Web Application Firewall (WAF) provides centralized protection of your web applications from common exploits and vulnerabilities. Web applications are increasingly targeted by malicious attacks that exploit commonly known vulnerabilities. SQL injection and cross-site scripting are among the most common attacks.

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

Microsoft Defender for Cloud Apps Benefits:

Provides comprehensive security for cloud applications
Integrates with other Microsoft security tools
Easy to use and deploy
Provides real-time threat detection and response
Strong protection against phishing attacks and other common threats
Highly customizable to meet specific needs of different organizations

Microsoft Defender for Cloud Apps Use Cases:

Governance, authentication, security, and compliance.
Detects shadow IT and anomalous user behavior
Controls access to applications
Provides auditing and filtering setups
Used for end-user compute devices, file monitoring, user investigation, and activity
Used for data governance, threat detection, and getting visibility over cloud applications
Used to identify information about applications beyond organizational boundaries
Prevent exfiltration and data filtration of corporate data
Used to deal with spam emails and detect shadow IT

Reviews from Real Users

Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

Sample Customers

Information Not Available

Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.

Azure Web Application Firewall vs. Microsoft Defender for Cloud Apps