Microsoft Entra ID vs Microsoft Entra Permissions Management comparison

Microsoft Entra ID vs. Microsoft Entra Permissions Management

Download the complete report

Helped 831,020 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Entra ID

Ranking in Microsoft Security Suite

4th

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

218

Ranking in other categories

Single Sign-On (SSO) (1st), Authentication Systems (1st), Identity Management (IM) (1st), Identity and Access Management as a Service (IDaaS) (IAMaaS) (1st), Access Management (1st)

Microsoft Entra Permissions...

Ranking in Microsoft Security Suite

27th

Average Rating

7.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Cloud Infrastructure Entitlement Management (CIEM) (3rd)

Mindshare comparison

As of January 2025, in the Microsoft Security Suite category, the mindshare of Microsoft Entra ID is 8.7%, up from 6.0% compared to the previous year. The mindshare of Microsoft Entra Permissions Management is 0.5%, down from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Microsoft Security Suite

Featured Reviews

Aaron Liang

System engineer at a energy/utilities company with 501-1,000 employees

Has significantly improved secure access to applications and resources in our environment

Microsoft Entra ID has helped by simplifying our management of permissions for APIs. We are not directly exposing credentials, as we use tokens instead. It has made management easier and more secure, especially in a multi-user environment. The implementation of Microsoft Entra ID significantly improved secure access to applications and resources in our environment, primarily through the widespread use of single-sign-on. Managing API permissions became much easier, as application registration often involves calling an API to utilize services without directly exposing credentials, relying instead on token-based authentication. This streamlined approach benefits end-users by simplifying access while remaining transparent to them. Ultimately, my role focuses on ensuring a smooth and user-friendly experience, even if the underlying technology remains unseen by the end-users. Our company strongly emphasizes passwordless authentication, primarily through device-bound passkeys in Microsoft Authenticator. While administrators with high-privileged accounts utilize YubiKeys and passwords for tasks like accessing Microsoft Graph, we are actively transitioning all other users towards passwordless methods such as Windows Hello biometrics. This approach streamlines authentication and enhances security. Though initial deployment in 2022 presented challenges due to hardware limitations and the lingering effects of the COVID-19 pandemic, the technology has significantly improved and provides a simple and effective user experience.

Read full review

Sameer Bhat

Vice President at Goldman Sachs

Provides resource-based access and security, but time-bound access can be a problem

Entra ID is the core of the identity management that we have. This is the key product that we are using. I am currently also looking into Entra Private Access because we are planning to deploy about 50,000 desktops into Azure and use Azure Virtual Desktop. We would like to give access to the users from the desktop to on-premises applications. I learned that Entra Private Access is a good solution. That is not yet GA, but that is what we are looking for. Entra provides a single pane of glass for managing user access, but because our company also integrates with Nebula API, only administrators use Entra's pane. A normal person who wants to get onboarded can do self-service using Nebula. The features for whitelisting and other things are definitely there. That is what we use specifically. Application IDs, enterprise applications, and all those things are already there, so we have more efficiency. There is also security because we usually do not allow user identities to get direct access to Azure resources. Usually, we use the service principles from Entra ID, so this way, it increases security. Entra has helped to save time for our IT administrators. We tend to automate a lot of things. We can do automation using Graph APIs and save time. It is hard to quantify the time savings, but there has been a medium amount of time savings. Entra has helped to save our organization money. We care about security and risk more than money, but it also saves money. We are premium customers, and because we have a commit-to-consume contract with Microsoft of multi-million dollars, the money does not come into it because we have to consume those resources.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is pretty good in terms of stability."

"Very stable and scalable IAM service with good SSO and authentication features."

"It's multi-tenant, residing in multiple locations. The authentication happens quickly. Irrespective of whether I'm in Australia, the US, India, or Africa, I don't see any latency. Those are the good features that I rely on."

"The most valuable features of this solution are definitely the authorization and authentication, and the rule-based user validation."

"Microsoft Entra ID efficiently responds to numerous requests, and we have not faced significant connectivity issues, making it reliable."

"It's very good at not disrupting the user experience."

"Conditional Access, Geofencing, and Azure Multi-Factor Authentication are the major security features to secure resources."

"We have not had any formal issues with scalability."

More Microsoft Entra ID pros

"The solution integrates well with our infrastructure and other systems without any issues."

"Multifactor authentication is valuable."

Cons

"The only issue is the OU is not properly synced. Therefore, you have to do a manual sync sometimes or you might lose the connector due to AD Connect or sync servers."

"One challenge with Entra ID is its complexity, stemming from integrating many components into a single solution."

"Tech support is inconsistent."

"The synchronization between my AD and Azure AD needs improvement."

"The most challenging aspect I found was the creation of organizational units and specific domains. They have a tool called Bastion, which is expensive and a little bit confusing."

"The product takes at least ten minutes to activate privilege identity management roles."

"The cost of licensing always has room for improvement."

"The cost is one area that needs improvement."

More Microsoft Entra ID cons

"We use a third-party API called Nebula API to integrate the account for authorization. The time-bound access area in Entra can be a problem. It can be improved in terms of the granularity of the permissions."

"The solution's pricing and support services need improvement."

Pricing and Cost Advice

"Azure Active Directory is more expensive than Google, but the capabilities they provide are superior."

"The pricing of Azure Active Directory is competitive. By default, the product exists in almost every Microsoft cloud product. But it then depends on the features that a customer really wants to make use of."

"It is worth the money."

"We pay a yearly license. Licenses are very expensive."

"We pay about $35 per user."

"The pricing is good; it's not cheap but very reasonable."

"It comes free with the Microsoft account. We have a yearly agreement, and all products are covered under it."

"Active Directory is bundled with a package of Microsoft services, so it doesn't cost much. I don't know about the individual license of Active Directory."

More Microsoft Entra ID pricing and cost advice

"The product cost is in the mid to high range."

"We are a Fortune 500 company, so we always negotiate with Microsoft."

See which vendors are best for you

Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.

See recommendations

831,020 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

32%

Computer Software Company

10%

Financial Services Firm

Manufacturing Company

Financial Services Firm

17%

Computer Software Company

13%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

How does Duo Security compare with Microsoft Authenticator?

We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Duo for 30 days, and we could not be happier. Duo Security is easy to configure a...

What do you like most about Azure Active Directory?

It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. We can easily do third-party multifactor authentication.

What is your experience regarding pricing and costs for Azure Active Directory?

We are an enterprise customer with an enterprise agreement in place with many of our partner companies, so there are no special questions or issues about pricing, setup cost, or licensing.

What do you like most about Microsoft Entra Permissions Management?

Multifactor authentication is valuable.

What is your experience regarding pricing and costs for Microsoft Entra Permissions Management?

The product cost is in the mid to high range. You need to have a good budget to implement it, so it is considered fairly expensive for our market. I rate the pricing a seven out of ten.

What needs improvement with Microsoft Entra Permissions Management?

The solution's pricing and support services need improvement.

Microsoft Intune vs Microsoft Entra ID

Comparisons

Compared 11% of the time

Google Cloud Identity vs Microsoft Entra ID

Compared 10% of the time

Okta Workforce Identity vs Microsoft Entra ID

Compared 9% of the time

Auth0 vs Microsoft Entra ID

Compared 6% of the time

CyberArk Privileged Access Manager vs Microsoft Entra ID

Compared 5% of the time

More Microsoft Entra ID Competitors

SailPoint Identity Security Cloud vs Microsoft Entra Permissions Management

Compared 36% of the time

Saviynt vs Microsoft Entra Permissions Management

Compared 35% of the time

Microsoft Defender for Cloud vs Microsoft Entra Permissions Management

Compared 14% of the time

More Microsoft Entra Permissions Management Competitors

Product Reports

Microsoft Entra ID

Download Microsoft Entra ID product report

Cloud Infrastructure Entitlement Management (CIEM)

Download Microsoft Entra Permissions Management product report

Microsoft Entra Permissions Management report

Also Known As

Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator

CloudKnox Permissions Management

Learn More

Microsoft

Interactive Demo

Microsoft

Demo not available

Microsoft

Overview

Microsoft Entra ID is used for extending on-premises Active Directory to the cloud, managing application access, enabling multi-factor authentication, and single sign-on. It facilitates policy enforcement and secure access, ensuring centralized identity management across cloud and on-premises resources.

Organizations utilize Microsoft Entra ID for robust user and group management, identity synchronization, and conditional access. Its seamless integration with third-party apps, scalability, and support for remote work make it a preferred choice. The admin center streamlines identity and access tasks, enhancing efficiency and security with features like privileged identity management and audit logs.

What are the key features of Microsoft Entra ID?

Single Sign-On: Simplifies user access to multiple applications with one login.
Multifactor Authentication: Enhances security by requiring additional verification.
Conditional Access: Establishes policies that determine how users' access cloud apps.
Integration: Easily integrates with various third-party applications.
User Identity Protection: Safeguards user identities from threats.
Privileged Identity Management: Manages elevated access to sensitive resources.
Audit Logs: Provides thorough activity logs for oversight and compliance.

What benefits should users look for in Microsoft Entra ID reviews?

Enhanced Security: Offers strong multifactor authentication and identity protection.
Administrative Efficiency: Simplifies identity and access management tasks.
Scalability: Supports growing user bases and remote work environments.
Integration Capabilities: Compatible with numerous third-party applications.
User-Friendly Interface: Makes managing user identities straightforward.

Microsoft Entra ID implementation varies across industries. Tech firms leverage it for secure, scalable access management, while healthcare organizations utilize its identity protection features to safeguard patient data. Educational institutions adopt Entra ID for streamlined user management and policy enforcement, ensuring secure access for students and staff across on-premises and cloud resources.

Microsoft Entra Permissions Management is a cloud infrastructure entitlement management (CIEM) solution that provides comprehensive visibility into permissions assigned to all identities – users and workloads – actions, and resources across cloud infrastructures. It detects, right-sizes, and monitors unused and excessive permissions and enables Zero Trust security through least privilege access in Microsoft Azure, AWS, and GCP.

Sample Customers

Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.

Information Not Available

Microsoft Entra ID vs. Microsoft Entra Permissions Management