Microsoft Entra ID vs Microsoft Entra Permissions Management comparison

Microsoft Entra ID vs. Microsoft Entra Permissions Management

Download the complete report

Helped 842,651 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Entra ID

Ranking in Microsoft Security Suite

2nd

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

219

Ranking in other categories

Single Sign-On (SSO) (1st), Authentication Systems (1st), Identity Management (IM) (1st), Identity and Access Management as a Service (IDaaS) (IAMaaS) (1st), Access Management (1st)

Microsoft Entra Permissions...

Ranking in Microsoft Security Suite

28th

Average Rating

7.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Cloud Infrastructure Entitlement Management (CIEM) (7th)

Mindshare comparison

As of March 2025, in the Microsoft Security Suite category, the mindshare of Microsoft Entra ID is 9.2%, up from 6.3% compared to the previous year. The mindshare of Microsoft Entra Permissions Management is 0.6%, down from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Microsoft Security Suite

Featured Reviews

Aaron Liang

System engineer at a energy/utilities company with 501-1,000 employees

Has significantly improved secure access to applications and resources in our environment

Microsoft Entra ID has helped by simplifying our management of permissions for APIs. We are not directly exposing credentials, as we use tokens instead. It has made management easier and more secure, especially in a multi-user environment. The implementation of Microsoft Entra ID significantly improved secure access to applications and resources in our environment, primarily through the widespread use of single-sign-on. Managing API permissions became much easier, as application registration often involves calling an API to utilize services without directly exposing credentials, relying instead on token-based authentication. This streamlined approach benefits end-users by simplifying access while remaining transparent to them. Ultimately, my role focuses on ensuring a smooth and user-friendly experience, even if the underlying technology remains unseen by the end-users. Our company strongly emphasizes passwordless authentication, primarily through device-bound passkeys in Microsoft Authenticator. While administrators with high-privileged accounts utilize YubiKeys and passwords for tasks like accessing Microsoft Graph, we are actively transitioning all other users towards passwordless methods such as Windows Hello biometrics. This approach streamlines authentication and enhances security. Though initial deployment in 2022 presented challenges due to hardware limitations and the lingering effects of the COVID-19 pandemic, the technology has significantly improved and provides a simple and effective user experience.

Read full review

Sameer Bhat

Vice President at Goldman Sachs

Provides resource-based access and security, but time-bound access can be a problem

Entra ID is the core of the identity management that we have. This is the key product that we are using. I am currently also looking into Entra Private Access because we are planning to deploy about 50,000 desktops into Azure and use Azure Virtual Desktop. We would like to give access to the users from the desktop to on-premises applications. I learned that Entra Private Access is a good solution. That is not yet GA, but that is what we are looking for. Entra provides a single pane of glass for managing user access, but because our company also integrates with Nebula API, only administrators use Entra's pane. A normal person who wants to get onboarded can do self-service using Nebula. The features for whitelisting and other things are definitely there. That is what we use specifically. Application IDs, enterprise applications, and all those things are already there, so we have more efficiency. There is also security because we usually do not allow user identities to get direct access to Azure resources. Usually, we use the service principles from Entra ID, so this way, it increases security. Entra has helped to save time for our IT administrators. We tend to automate a lot of things. We can do automation using Graph APIs and save time. It is hard to quantify the time savings, but there has been a medium amount of time savings. Entra has helped to save our organization money. We care about security and risk more than money, but it also saves money. We are premium customers, and because we have a commit-to-consume contract with Microsoft of multi-million dollars, the money does not come into it because we have to consume those resources.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It helps us with maintaining enterprise identities."

"We have a complex scenario with several applications, and we're trying to achieve SSO for most of our applications, but some of our legacy applications don't support SSO or modern protocols. Our core applications are ready for SSO or to be federated. We've centralized our authentication process using Entra ID, so we can collect sign-offs from the users and filter using conditional access."

"The security features, such as attack surface rules and conditional access rules, are the most valuable aspects of Azure AD."

"Entra ID's ability to sync with the local Active Directory provides redundancy, allowing authentication via cloud features even if the local Active Directory faces issues. The SSO features with app registrations are also crucial, as we use Azure globally, allowing role and permission assignments directly from Entra."

"The most valuable feature is the factor identification. I find that it is natural integration, and it is just a natural step. I do not need to do anything else."

"I would rate Microsoft Entra ID 10 out of 10."

"The most important things of Azure Active Directory are the security and the facility to manage all the services and users. It is very easy to manage users and assign roles, permissions, and access. At the same time, it is a very secure environment. Microsoft takes security very seriously. They take care of all the security and all the factors to prevent any kind of data or information compromise."

"It's very good at not disrupting the user experience."

More Microsoft Entra ID pros

"The solution integrates well with our infrastructure and other systems without any issues."

"Multifactor authentication is valuable."

Cons

"I believe it can also be integrated into other Microsoft products, as well as more integrations with other solutions."

"Microsoft support has some room for improvement. I avoid contacting them because it can be time-consuming."

"It could be better if a simple member could understand more easily the prices of the products and packages offered by Microsoft."

"There is a concept of cross-tenant trust relationships, which I believe Microsoft is actively pursuing. That is something which in the coming days and years to come by will be very key to the success of Azure Active Directory, because many organizations are going into mergers and acquisitions or spinning off new companies. They will still have to access the old tenant information because of multiple legal reasons, compliance reasons, and all those things. So, there should be some level of tenant-level trust functionality, where you can bring people from other tenants to access some part of your tenant application. So, that is an area which is growing. I believe Microsoft is actively pursuing this, and it will be an interesting piece."

"I had some issues with the Azure Active Directory on Windows XP. However, it worked well on Windows 7."

"Having more training would be quite helpful."

"I rate Microsoft support five out of 10. It's just okay."

"The only improvement would be for everything to be instant in terms of applying changes and propagating them to systems."

More Microsoft Entra ID cons

"The solution's pricing and support services need improvement."

"We use a third-party API called Nebula API to integrate the account for authorization. The time-bound access area in Entra can be a problem. It can be improved in terms of the granularity of the permissions."

Pricing and Cost Advice

"Azure Active Directory has a very extensive licensing model. Most of the features are available in the free and basic version, and then there are premium P1 and P2 editions. The licensing model is based on how many users you have per month. In Australia, for a P1 license, the cost is 8 dollars. With P1 and P2 licenses, you get a lot of goodies around the security side of things. For example, User Identity Protection is available only in P2. These are extra features that allow you to have a pretty good security posture, but most of the required things are available in the free and basic version."

"The price of the solution was reasonable."

"The pricing for companies and businesses is okay, it's fair. But if you are trying to teach someone about Azure AD, there is no licensing option for that... It would be nice to have a 'learning' license, one that is cheaper for a single person."

"If you have a different IDP today, I would take a close look at what your licensing looks like, then reevaluate the licensing that you have with Microsoft 365, and see if you're covered for some of this other stuff. Folks sometimes don't realize that, "Oh, I'm licensed for that service in Azure." This becomes one of those situations where you have the "aha" moment, "Oh, I didn't know we can do that. Alright, let's go down this road." Then, they start to have conversations with Microsoft to see what they can gain. I would recommend that they work closely with their TAM, just to make sure that they are getting the right level of service. They may just not be aware of what is available to them."

"Our customers are looking for advanced features and processes for it to be cost-effective for their organizations. They see it as an overpriced product. They are enjoying using Azure Active Directory, but they are looking for better prices."

"We pay a yearly license. Licenses are very expensive."

"The licensing cost is a bit prohibitive."

"Microsoft Entra ID's pricing is reasonable."

More Microsoft Entra ID pricing and cost advice

"The product cost is in the mid to high range."

"We are a Fortune 500 company, so we always negotiate with Microsoft."

See which vendors are best for you

Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.

See recommendations

842,651 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

33%

Computer Software Company

10%

Financial Services Firm

Manufacturing Company

Financial Services Firm

15%

Computer Software Company

14%

Government

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

How does Duo Security compare with Microsoft Authenticator?

We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Duo for 30 days, and we could not be happier. Duo Security is easy to configure a...

What do you like most about Azure Active Directory?

It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. We can easily do third-party multifactor authentication.

What is your experience regarding pricing and costs for Azure Active Directory?

We are an enterprise customer with an enterprise agreement in place with many of our partner companies, so there are no special questions or issues about pricing, setup cost, or licensing.

What do you like most about Microsoft Entra Permissions Management?

Multifactor authentication is valuable.

What is your experience regarding pricing and costs for Microsoft Entra Permissions Management?

The product cost is in the mid to high range. You need to have a good budget to implement it, so it is considered fairly expensive for our market. I rate the pricing a seven out of ten.

What needs improvement with Microsoft Entra Permissions Management?

The solution's pricing and support services need improvement.

Microsoft Intune vs Microsoft Entra ID

Comparisons

Compared 11% of the time

Google Cloud Identity vs Microsoft Entra ID

Compared 10% of the time

Okta Workforce Identity vs Microsoft Entra ID

Compared 9% of the time

Auth0 vs Microsoft Entra ID

Compared 6% of the time

CyberArk Privileged Access Manager vs Microsoft Entra ID

Compared 5% of the time

More Microsoft Entra ID Competitors

SailPoint Identity Security Cloud vs Microsoft Entra Permissions Management

Compared 39% of the time

Saviynt vs Microsoft Entra Permissions Management

Compared 33% of the time

Microsoft Defender for Cloud vs Microsoft Entra Permissions Management

Compared 17% of the time

More Microsoft Entra Permissions Management Competitors

Product Reports

Microsoft Entra ID

Download Microsoft Entra ID product report

Cloud Infrastructure Entitlement Management (CIEM)

Download Microsoft Entra Permissions Management product report

Microsoft Entra Permissions Management report

Also Known As

Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator

CloudKnox Permissions Management

Interactive Demo

Demo not available

Overview

Microsoft Entra ID is used for extending on-premises Active Directory to the cloud, managing application access, enabling multi-factor authentication, and single sign-on. It facilitates policy enforcement and secure access, ensuring centralized identity management across cloud and on-premises resources.

Organizations utilize Microsoft Entra ID for robust user and group management, identity synchronization, and conditional access. Its seamless integration with third-party apps, scalability, and support for remote work make it a preferred choice. The admin center streamlines identity and access tasks, enhancing efficiency and security with features like privileged identity management and audit logs.

What are the key features of Microsoft Entra ID?

Single Sign-On: Simplifies user access to multiple applications with one login.
Multifactor Authentication: Enhances security by requiring additional verification.
Conditional Access: Establishes policies that determine how users' access cloud apps.
Integration: Easily integrates with various third-party applications.
User Identity Protection: Safeguards user identities from threats.
Privileged Identity Management: Manages elevated access to sensitive resources.
Audit Logs: Provides thorough activity logs for oversight and compliance.

What benefits should users look for in Microsoft Entra ID reviews?

Enhanced Security: Offers strong multifactor authentication and identity protection.
Administrative Efficiency: Simplifies identity and access management tasks.
Scalability: Supports growing user bases and remote work environments.
Integration Capabilities: Compatible with numerous third-party applications.
User-Friendly Interface: Makes managing user identities straightforward.

Microsoft Entra ID implementation varies across industries. Tech firms leverage it for secure, scalable access management, while healthcare organizations utilize its identity protection features to safeguard patient data. Educational institutions adopt Entra ID for streamlined user management and policy enforcement, ensuring secure access for students and staff across on-premises and cloud resources.

Microsoft Entra Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities – users and workloads – actions, and resources across cloud infrastructures. It detects, right-sizes, and monitors unused and excessive permissions and enables Zero Trust security through least privilege access in Microsoft Azure, AWS, and GCP.

Sample Customers

Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.

Information Not Available

Microsoft Entra ID vs. Microsoft Entra Permissions Management