Skip to main content
TrustRadius
Microsoft Defender for Identity

Microsoft Defender for Identity
Formerly Azure ATP

Overview

What is Microsoft Defender for Identity?

Microsoft Defender for Identity (formerly Azure Advanced Threat Protection, also known as Azure ATP) is a cloud-based security solution that leverages on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at…

Read more
Recent Reviews
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons
Arjan Stijntjes
Security Consultant
Nedscaper (Information Technology & Services, 51-200 employees)
Return to navigation

Pricing

View all pricing
Microsoft Defender for Identity

Microsoft Defender for Identity

N/A
Unavailable

What is Microsoft Defender for Identity?

Microsoft Defender for Identity (formerly Azure Advanced Threat Protection, also known as Azure ATP) is a cloud-based security solution that leverages on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions…

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

53 people also want pricing

Alternatives Pricing

ManageEngine ADAudit Plus

ManageEngine ADAudit Plus

$595
per year
What is ManageEngine ADAudit Plus?

ADAudit Plus offers real-time monitoring, user and entity behaviour analytics, and change audit reports that helps users keep AD and IT infrastructure secure and compliant.Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.Achieve hybrid AD monitoring with a…

EmpMonitor

EmpMonitor

$2.92
per month per user
What is EmpMonitor?

EmpMonitor launched in 2014 as an early entrant of employee monitoring. With time and the latest versions, it’s now specialized in productivity management and insider threat detection. It helps in providing insights into employee computer working activities, forensics, user behavior analytics, data…

Return to navigation

Product Details

What is Microsoft Defender for Identity?

Microsoft Defender for Identity (formerly Azure Advanced Threat Protection, also known as Azure ATP) is a cloud-based security solution that leverages the user's on-premises Active Directory signals to identify, detect, and investigate advanced threats, compromised identities, and malicious insider actions directed at an organization.

Defender for Identity enables SecOp analysts and security professionals struggling to detect advanced attacks in hybrid environments to:

  • Monitor users, entity behavior, and activities with learning-based analytics
  • Protect user identities and credentials stored in Active Directory
  • Identify and investigate suspicious user activities and advanced attacks throughout the kill chain
  • Provide clear incident information on a simple timeline for fast triage

Microsoft Defender for Identity Video

What is Microsoft Defender for Identity?

Microsoft Defender for Identity Competitors

Microsoft Defender for Identity Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(11)

Reviews

(1-1 of 1)
Companies can't remove reviews or game the system. Here's why
June 20, 2024

Microsoft Defender for Identity - protect your identity platform

Arjan Stijntjes | TrustRadius Reviewer
Arjan Stijntjes
Security Consultant
Nedscaper (Information Technology & Services, 51-200 employees)
Score 7 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
Microsoft Defender for Identity is being used to complete the view of the threats in the XDR suite. We see often a broad scope of incidents and alerts, Microsoft Defender for Identity helps us to see the lateral movements and escalations to get a clear view of what is happening in the infrastructure after a possible breach
Pros and Cons
  • detect threats and suspicious activities
  • pro-active measurements on possible breaches
  • identity security posture
  • setup can be complicated, with AD complexity
  • Sometimes the load on DCs is pretty high, leading to performance issues
  • Better tuning options for preventing false-positive/bening alerts
Likelihood to Recommend
Microsoft Defender for Identity is a great solution for each company that has an Active Directory. It fills in the blanks for Identity related incidents that are being missed in the XDR platform. To get a full view on identity risks it is an essential component
Return on Investment
  • Cost impact was pretty high
  • Learning curve, needed time (money) for training
  • Greatly improved detections and gives more insights
Alternatives Considered
Microsoft Defender for Identity is more specialized on the Identity platform, it is a single solution compared to a multi-solution. The integration is better when using the XDR suite in combination with Sentinel.

Microsoft Defender for Identity gives a better overview of the security posture
Other Software Used
Return to navigation