Try our new research platform with insights from 80,000+ expert users
Microsoft Defender for Cloud Apps Logo

Microsoft Defender for Cloud Apps pros and cons

Vendor: Microsoft
4.2 out of 5
Badge Leader
1,258 followers
Start review

Pros & Cons summary

Microsoft Defender for Cloud Apps offers strong threat detection with real-time alerts and seamless service integration, enhancing security with robust alert policies and data protection features. It provides shadow IT discovery, offering comprehensive security insights. However, improvements are needed in pricing, integration with Microsoft security products, support, false-positive detection, and multi-cloud capabilities. Enhanced reporting, configuration, and more precise alerts are required for effective use by tech buyers.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Microsoft Defender for Cloud Apps provides robust threat detection with alerts for anomalies, such as unauthorized website access or email surges.
It offers seamless integration across different clouds, enhancing ease of management and coordination between services.
Data protection is enhanced with data loss prevention and data classification capabilities.
The alerting system delivers real-time notifications, enabling proactive security measures and policy decisions.
Shadow IT discovery and control of unauthorized applications help maintain a secure environment, backed by comprehensive monitoring capabilities.

CONS

Pricing needs improvement, especially in offering a dedicated license for usage tracking and better integration with non-Windows platforms.
There are delays in policy application, which affects response time, and alerts are not proactive enough, requiring more effort to investigate issues.
Integration with multi-cloud and hybrid environments is complex, requiring additional configuration for non-Azure environments and Sentinel integration.
False positives and misconfigurations in policy creation are challenging, limiting troubleshooting and causing unnecessary alarms.
Reporting and documentation require enhancement, with a need for more granular reporting and quicker updates to documentation following changes.
 

Microsoft Defender for Cloud Apps Pros review quotes

RK
Jun 15, 2021
The feature that helps us in detecting the sensitive information being shared has been very useful. In addition, the feature that allows MCAS to apply policies with SharePoint, Teams, and OneDrive is being used predominantly.
Read full review
reviewer1662060 - PeerSpot reviewer
Aug 31, 2021
The solution does not affect a user's workflow.
Read full review
SB
Sep 15, 2022
On-demand scanning is the most valuable feature. In addition, it's a fairly fluid product. It syncs back to the cloud and provides metrics. It's pretty intelligent.
Read full review
Buyer's Guide
Microsoft Defender for Cloud Apps
March 2025
Free Report: Microsoft Defender for Cloud Apps Reviews and More
Learn what your peers think about Microsoft Defender for Cloud Apps. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
DOWNLOAD NOW
842,388 professionals have used our research since 2012.
Paarth Saarthi - PeerSpot reviewer
Oct 7, 2022
In Microsoft Defender for Cloud Apps, there is an option to enable files. Once you enable that, it will give you all the files in your organization and where they are located in the cloud... That feature is very useful for investigation purposes.
Read full review
SS
Aug 29, 2021
Threat detection is its key feature, and that's why we use this tool. It gives an alert if a PC is attacked or there is any kind of anomaly, such as there is a spike in sending emails or we see an unauthorized website being accessed. So, it keeps us on our toes. We get to know that there is something wrong, and we can isolate the user and find any issues with it. So, threat detection is very robust in this tool.
Read full review
Sachin Vinay - PeerSpot reviewer
Dec 2, 2022
One of the most valuable features is auditing. Some of the other protection services have issues with auditing. Microsoft Defender for Cloud has an excellent auditing technique that helps us avoid the risk of filtering or information loss. You can use different tools to guarantee these things. It allows you to conduct an in-depth exploration of applications, users, and files that are harmful or suspicious. You can also enhance your security setup by creating personalized rules or policies that help you better control traffic in the cloud.
Read full review
reviewer1689330 - PeerSpot reviewer
Oct 7, 2021
There are a lot of features with benefits, including discovery, investigation, and putting controls around things. You can't say that you like the investigation part but not the discovery. Everything is correlated; that's how the tool works.
Read full review
Jagadeesh Gunasekaran - PeerSpot reviewer
Aug 25, 2023
The most valuable feature is the alerting system.
Read full review
Adedapo Adeniji - PeerSpot reviewer
Sep 4, 2022
I like the alert policies because they are quite robust. It has some built-in templates that we can easily pick up. One of them is the alert for mass downloads, when a particular user is running a massive download on your SharePoint site.
Read full review
II
Aug 8, 2022
Everything from Microsoft is integrated. You receive regular reports on them all. You can push your reports, logs, and security alerts, which are all integrated. It is crucial that these solutions work natively together to deliver coordinated detection and response across our environment.
Read full review
Show 10 more reviews (out of 36)
 

Microsoft Defender for Cloud Apps Cons review quotes

RK
Jun 15, 2021
It takes some time to scan and apply the policies when there is some sensitive information. After it applies the policies, it works, but there is a delay. This is something for which we are working with Microsoft.
Read full review
reviewer1662060 - PeerSpot reviewer
Aug 31, 2021
The integration with macOS operating systems needs to be better.
Read full review
SB
Sep 15, 2022
They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around.
Read full review
Buyer's Guide
Microsoft Defender for Cloud Apps
March 2025
Free Report: Microsoft Defender for Cloud Apps Reviews and More
Learn what your peers think about Microsoft Defender for Cloud Apps. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
DOWNLOAD NOW
842,388 professionals have used our research since 2012.
Paarth Saarthi - PeerSpot reviewer
Oct 7, 2022
Sometimes, we'll get false positive alarms. For example, when a SharePoint path has no file sharing, but there is an external user, it will trigger an alarm that the file has been shared with an external user... the alerting mechanism should be more precise when giving you an alert about what activity has been done with the file...
Read full review
SS
Aug 29, 2021
The response time could be better. It will be helpful if the alerts are even more proactive and we can see more data. Currently, the data is a little bit weak. It is not complete. I can't just see it and completely know which user or which device it is. It takes some effort and time on my part to investigate and isolate a user. It would be great if it is more user-friendly or easy for people to understand.
Read full review
Sachin Vinay - PeerSpot reviewer
Dec 2, 2022
We sometimes get errors when we create policies, which is somewhat annoying because some policies stop working due to misconfigurations. We find this challenging because it limits our options for troubleshooting an issue.
Read full review
reviewer1689330 - PeerSpot reviewer
Oct 7, 2021
Currently, reporting is not very straightforward and it needs to be enhanced. Specific reports are not included and you need to run a query, drill down, and then export it and share it. I would love to have reports with more fine-tuning or granularity, and more predefined reports.
Read full review
Jagadeesh Gunasekaran - PeerSpot reviewer
Aug 25, 2023
The technical support team has room for improvement.
Read full review
Adedapo Adeniji - PeerSpot reviewer
Sep 4, 2022
It doesn't actually decrease the time to respond. This has been an issue with Microsoft recently. Sometimes, there is a delay when it comes to getting an alert policy email... Sometimes it takes two or three hours for that email to be sent.
Read full review
II
Aug 8, 2022
We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed. There is not enough visibility.
Read full review
Show 10 more reviews (out of 36)

Product Categories

Product Categories
Cloud Access Security Brokers (CASB)
Advanced Threat Protection (ATP)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
Cisco Umbrella vs Microsoft Defender for Cloud Apps Logo
Cisco Umbrella vs Microsoft Defender for Cloud Apps
Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps Logo
Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps
Zscaler Zero Trust Exchange Platform vs Microsoft Defender for Cloud Apps Logo
Zscaler Zero Trust Exchange Platform vs Microsoft Defender for Cloud Apps
Lookout vs Microsoft Defender for Cloud Apps Logo
Lookout vs Microsoft Defender for Cloud Apps
Netskope vs Microsoft Defender for Cloud Apps Logo
Netskope vs Microsoft Defender for Cloud Apps
iboss vs Microsoft Defender for Cloud Apps Logo
iboss vs Microsoft Defender for Cloud Apps
Cato SASE Cloud Platform vs Microsoft Defender for Cloud Apps Logo
Cato SASE Cloud Platform vs Microsoft Defender for Cloud Apps
Skyhigh Security vs Microsoft Defender for Cloud Apps Logo
Skyhigh Security vs Microsoft Defender for Cloud Apps
Forcepoint ONE vs Microsoft Defender for Cloud Apps Logo
Forcepoint ONE vs Microsoft Defender for Cloud Apps
Akamai Enterprise Application Access vs Microsoft Defender for Cloud Apps Logo
Akamai Enterprise Application Access vs Microsoft Defender for Cloud Apps
Obsidian CDR Platform vs Microsoft Defender for Cloud Apps Logo
Obsidian CDR Platform vs Microsoft Defender for Cloud Apps
Forcepoint CASB vs Microsoft Defender for Cloud Apps Logo
Forcepoint CASB vs Microsoft Defender for Cloud Apps
Proofpoint Cloud App Security Broker vs Microsoft Defender for Cloud Apps Logo
Proofpoint Cloud App Security Broker vs Microsoft Defender for Cloud Apps
CloudLock vs Microsoft Defender for Cloud Apps Logo
CloudLock vs Microsoft Defender for Cloud Apps
Symantec CloudSOC CASB vs Microsoft Defender for Cloud Apps Logo
Symantec CloudSOC CASB vs Microsoft Defender for Cloud Apps
See all alternatives

Product Categories

Product Categories
Cloud Access Security Brokers (CASB)
Advanced Threat Protection (ATP)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
Cisco Umbrella vs Microsoft Defender for Cloud Apps Logo
Cisco Umbrella vs Microsoft Defender for Cloud Apps
Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps Logo
Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps
Zscaler Zero Trust Exchange Platform vs Microsoft Defender for Cloud Apps Logo
Zscaler Zero Trust Exchange Platform vs Microsoft Defender for Cloud Apps
Lookout vs Microsoft Defender for Cloud Apps Logo
Lookout vs Microsoft Defender for Cloud Apps
Netskope vs Microsoft Defender for Cloud Apps Logo
Netskope vs Microsoft Defender for Cloud Apps
iboss vs Microsoft Defender for Cloud Apps Logo
iboss vs Microsoft Defender for Cloud Apps
Cato SASE Cloud Platform vs Microsoft Defender for Cloud Apps Logo
Cato SASE Cloud Platform vs Microsoft Defender for Cloud Apps
Skyhigh Security vs Microsoft Defender for Cloud Apps Logo
Skyhigh Security vs Microsoft Defender for Cloud Apps
Forcepoint ONE vs Microsoft Defender for Cloud Apps Logo
Forcepoint ONE vs Microsoft Defender for Cloud Apps
Akamai Enterprise Application Access vs Microsoft Defender for Cloud Apps Logo
Akamai Enterprise Application Access vs Microsoft Defender for Cloud Apps
Obsidian CDR Platform vs Microsoft Defender for Cloud Apps Logo
Obsidian CDR Platform vs Microsoft Defender for Cloud Apps
Forcepoint CASB vs Microsoft Defender for Cloud Apps Logo
Forcepoint CASB vs Microsoft Defender for Cloud Apps
Proofpoint Cloud App Security Broker vs Microsoft Defender for Cloud Apps Logo
Proofpoint Cloud App Security Broker vs Microsoft Defender for Cloud Apps
CloudLock vs Microsoft Defender for Cloud Apps Logo
CloudLock vs Microsoft Defender for Cloud Apps
Symantec CloudSOC CASB vs Microsoft Defender for Cloud Apps Logo
Symantec CloudSOC CASB vs Microsoft Defender for Cloud Apps
See all alternatives
Related questions
  • 98
Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?
  • 15
Evaluating CASBs. Looking for community feedback on some vendors.
  • 162
What are your best practices for Identity and Access Management (IAM) in the Cloud?
  • 5
CloudLock vs. Skyhigh
  • 45
Why do organizations need CASB?
  • 6
When evaluating Cloud Security, what aspect do you think is the most important to look for?
  • 16
What is Unified Cloud Security? Can you define the scope and use cases of the term?
  • 6
Adallom vs. Cloudlock
  • 151
What is the difference between SASE and CASB?
  • 12
What are your recommended best practices and tools to prevent cloud jacking in your organization?