HomeSoftwareIdentity & Access ManagementMicrosoft Entra ID
Identity & Access ManagementMicrosoft

Microsoft Entra ID (formerly Azure AD) Review 2026

4.5/ 5.0 from 7,820 verified reviews
Vendor
Microsoft Corporation
Pricing
Per user / month, from $0
Deployment
Cloud (Microsoft Azure)
Best For
Mid-market and enterprise on Microsoft 365
Industries
All sectors, especially regulated industries
Implementation
1–6 months typical

Overview

Microsoft Entra ID is Microsoft's cloud-native identity and access management service, rebranded from Azure Active Directory in 2023. It provides single sign-on, multi-factor authentication, conditional access policies, identity protection, and lifecycle management for workforce, B2B partner, and external (B2C) identities. The service is delivered as part of Microsoft 365, with paid P1 and P2 tiers adding advanced governance and risk-based controls.

Entra ID is the default identity backbone for any organisation running Microsoft 365, Dynamics 365, or Azure workloads, and is one of the two largest workforce identity platforms by deployed seats alongside Okta. Conditional access, the policy engine that decides when to challenge a sign-in based on user, device, location, and risk signals, is widely considered the platform's strongest differentiator. The Entra family has expanded to include Entra ID Governance, Permissions Management for cloud entitlements, Internet Access (SSE), and Verified ID for decentralised credentials.

Key Features

  • Single sign-on with 5,000+ pre-integrated SaaS connectors
  • Conditional Access policy engine with risk-based controls
  • Multi-factor authentication including FIDO2 passkeys
  • Identity Protection with sign-in and user risk detection
  • Privileged Identity Management (PIM) with just-in-time role activation
  • Entra ID Governance for access reviews, lifecycle workflows, and entitlement management
  • B2B collaboration and external identities (CIAM)
  • Hybrid identity through Entra Connect and password hash sync
  • Application Proxy for on-premises web apps
  • SCIM-based user provisioning to SaaS apps
  • Workload Identities for service principals and managed identities
  • Native integration with Microsoft Defender for Identity

Pricing

EditionModelTypical Cost
Entra ID FreePer tenantIncluded with Microsoft 365 / Azure
Entra ID P1Per user / month$6.00 (annual commit)
Entra ID P2Per user / month$9.00 (annual commit)
Entra ID Governance add-onPer user / month$7.00 (requires P1 or P2)

Pricing verified from microsoft.com May 2026. P1 is included with Microsoft 365 E3 and EMS E3; P2 is included with Microsoft 365 E5 and EMS E5. The Entra Suite bundle is priced at $12 per user / month.

Strengths

  • Conditional Access is the most mature risk-based policy engine in the IAM market
  • Bundled with Microsoft 365, removing line-item cost for many organisations
  • Largest application gallery with 5,000+ pre-built SAML and OIDC integrations
  • Tight integration with Microsoft Defender, Purview, and Intune for cross-product signals
  • Strong roadmap on passwordless and passkeys, with broad Windows and platform support

Limitations

  • Governance features (PIM, access reviews, entitlement management) require the higher-priced P2 tier
  • Customer identity (Entra External ID) is less mature than Auth0 or Cognito for B2C scale
  • Group-based licensing and conditional access can become complex to audit at scale
  • Heavy reliance on Microsoft Graph API for automation, which has its own throttling and permission model
  • Migration tooling for non-Microsoft identity systems is limited compared to Okta or Ping

Alternatives

Okta Workforce Identity Cloud
Identity-first vendor with broader best-of-breed app coverage
4.4
Ping Identity Platform
Strong on customer identity and on-premises federation
4.3
JumpCloud Directory Platform
Cross-platform directory aimed at mixed-OS SMB and mid-market
4.5
Auth0
Developer-first customer identity and B2B SaaS authentication
4.4
OneLogin
Lighter-weight SSO and MFA with simpler licensing
4.0

Compare Microsoft Entra ID

Entra ID vs Okta → Entra ID vs Ping Identity → Entra ID vs JumpCloud →

Frequently Asked Questions

What is the difference between Entra ID P1 and P2?
P1 ($6 per user / month) adds Conditional Access, group-based licensing, and self-service password reset with writeback. P2 ($9 per user / month) adds Identity Protection, Privileged Identity Management, and Identity Governance preview features. Most enterprises deploy P1 broadly and P2 for administrative and privileged accounts.
Do we still need Active Directory on-premises?
Most organisations continue to run Active Directory Domain Services for legacy Windows-integrated authentication, file shares, and Kerberos-dependent applications. Entra ID synchronises with AD through Entra Connect. Greenfield deployments increasingly skip on-premises AD by joining devices directly to Entra ID.
Is Entra ID included with Microsoft 365?
Entra ID Free is included with every Microsoft 365 and Azure subscription. P1 is included with Microsoft 365 E3, A3, F3, and EMS E3. P2 is included with Microsoft 365 E5, A5, and EMS E5. Standalone P1 and P2 subscriptions are also available.
How does Entra External ID compare to Auth0 for customer identity?
Entra External ID (the successor to Azure AD B2C) covers the basics for consumer-facing apps at predictable per-MAU pricing. Auth0 remains stronger for developer experience, extensibility through Actions, and B2B SaaS multi-tenancy.
Last updated: May 2026

About Microsoft Corporation

Founded 1975. Headquarters: Redmond, Washington, USA. 228,000 employees. Revenue: $245B (FY2025). Listed: NASDAQ (MSFT).

Microsoft Implementation Partners → Microsoft Partners in United States → Microsoft Partners in United Kingdom →

Related Categories

All Identity & Access Management Cybersecurity Endpoint Management GRC & Compliance IT Service Management

Research

IAM Selection Guide 2026 IAM Pricing Benchmark Best IAM for Enterprise
Last updated: