Overview
Product Information on Microsoft Defender for Identity
Updated 14th October 2025
What is Microsoft Defender for Identity?
Microsoft Defender for Identity Pricing
Overall experience with Microsoft Defender for Identity
Operations Manager
<50M USD, Real EstateFAVORABLE
“Effective real-time threat detection, but overwhelming alert volumes hinder workflow”
Based on our experience, what has worked well in using this product is since our common arrangement in outsourcing is we access records from multiple locations. This product is valuable to us as it is able to detect suspicious activity, credential theft and unauthorized access attempts. What hasn't worked well for us so far is the volume of security alerts we receive, as we have high employee turnover resulting in new login activities, we also have volume of alerts that are unnecessary to review.
It Security & Risk Management Associate
<50M USD, Energy and UtilitiesCRITICAL
“Integrated Threat Detection in Defender for Identity for Microsoft-centric environments.”
The overall experience for admins in Microsoft Defender for Identity (MDI) is streamlined, intelligent and very well integrated, especially for Microsoft-centric environments. Administrators are now able to access this through the unified security portal, making it very easy to administer, review alerts and customise. This interface is very much designed with SOC users in mind, well done Microsoft!
About Company
Company Description
Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement. Microsoft Security helps protect people and data against cyberthreats to give peace of mind.
Company Details
Company type
Public
Year Founded
1975
Head office location
Redmond, Washington, United States
Number of employees
10000+
Annual Revenue
30B+ USD
Website
Do You Manage Peer Insights at Microsoft?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Top Microsoft Defender for Identity Alternatives
Peer Discussions
Microsoft Defender for Identity Reviews and Ratings
Filter Reviews
Sort By:
Most helpful
Last 12 Months
Star Rating
Reviewer Type
Reviewer's Company Size
Reviewer's Industry
Reviewer's Region
Reviewer's Job Function
- It Security & Risk Management Associate<50M USDEnergy and UtilitiesReview Source
Integrated Threat Detection in Defender for Identity for Microsoft-centric environments.
The overall experience for admins in Microsoft Defender for Identity (MDI) is streamlined, intelligent and very well integrated, especially for Microsoft-centric environments. Administrators are now able to access this through the unified security portal, making it very easy to administer, review alerts and customise. This interface is very much designed with SOC users in mind, well done Microsoft! - Operations Manager<50M USDReal EstateReview Source
Effective real-time threat detection, but overwhelming alert volumes hinder workflow
Based on our experience, what has worked well in using this product is since our common arrangement in outsourcing is we access records from multiple locations. This product is valuable to us as it is able to detect suspicious activity, credential theft and unauthorized access attempts. What hasn't worked well for us so far is the volume of security alerts we receive, as we have high employee turnover resulting in new login activities, we also have volume of alerts that are unnecessary to review. - Software Developer<50M USDSoftwareReview Source
Unified Identity Visibility Enhances Detection Yet Remains Tied to Microsoft Ecosystem
The overall experience with this piece of software has been strong, especially as part of a broader Microsoft security stack. It's not a standalone ITDR tool, but rather a deeply integrated solution that brings identity signals into a unified security ecosystem. What stands out is the visibility - it correlates identity activity across on-prem, cloud and even third-party identity providers, giving a much clearer picture of what's happening across the environment. - IT Security & Risk Management Associate10B+ USDBankingReview Source
Effective identity threat detection with seamless hybrid environment integration
Microsoft ITDR across Entra ID and on-premises AD has been working well for us. Anomaly detection is effective at catching identity-based threats, and real-time alerting means we get notified quickly when something looks suspicious. Automated response capabilities like account lockdown and MFA enforcement are reliable. Integration between Entra ID and our on-prem AD has been smooth, and both are feeding threat intelligence to our deteciton pipleline without issues. - Communications Manager50M-1B USDConsumer GoodsReview Source
It facilitates identity monitoring, but requires adaptation to alerts.
We've had a good experience with Microsoft Defender for Identity. We implemented it primarily to gain more visibility into what's happening in Active Directory and to detect suspicious behavior that's difficult to identify. It has helped us detect risks related to users, credentials, and network activity.
...
Showing Result 1-5 of 301
Recommended Gartner Insights
This service may contain translations provided by Google. Google disclaims all warranties related to the translations, express or implied, including any warranties of accuracy, reliability, and any implied warranties of merchantability, fitness for a particular purpose and noninfringement. Gartner's use of this provider is for operational purposes and does not constitute an endorsement of its products or services.
