AWS Organizations vs. Microsoft Entra ID

AWS Organizations is well suited for centralized billing and user management of all of your AWS accounts when paired with AWS SSO and a SAML provider of your choice. AWS Organizations does not have an integration with IAM user accounts and this could be helpful for organizations without SAML capability.

Incentivized

Microsoft Entra ID provides powerful and reliable identity and access management capabilities that enhance secure authentication and authorization for cloud systems. Offer modern security features, including MFA, conditional access, and threat intelligence, to protect identities and prevent unauthorized access. Single Sign-On allows us to access multiple apps with just a single login.

Incentivized

• Brings all AWS organizations under one management structure for billing
• Simplified management of user access with AWS SSO
• Centralized reporting

Incentivized

• Single Sign-on helps ease the user experience, allowing users to avoid typing multiple passwords.
• The identity and management are straightforward to use and easy to connect to other applications, as well as third-party applications.
• The support of remote work. Nowadays, many people work from home and need to access their accounts. Microsoft Enterprise ID gives secure access to the company data.

Incentivized

• Could include cross organization IAM management
• Could allow quick login access to other organizations like the AWS SSO homepage

Incentivized

• For larger organizations the policy management user interface gets complex
• Security group nesting limitations - you cannot always nest groups within groups depending on the group types and use case
• Price gets high if you need the enterprise or P2 premium licenses

Incentivized

MSFT Entra ID has been essential for managing our geographically dispersed team. We're confident that it will scale with us as grow, and we'll be able to take advantage of additional security and ID management features as they become necessary. Being able to centrally manage our user access from anywhere with a small support team is such a relief.

Incentivized

Simply because of what I mentioned earlier, the feature set sort of keeps changing and they do a lot of, they integrated with a lot of the other tools and so for users who are not as well seasoned, it may be a little bit more complicated for them to begin working within the tool.

Incentivized

There has been a handful of outages but they have been either minimal or rarely severe

Incentivized

I could probably rate this a 10 but I'm always conservative on giving out perfect scored bt performance has not been a problem for us using Entra ID.

Incentivized

I have not needed to engage support for anything at this time. I have been able to find the answers either online or in a knowledgebase. I tried to skip the question but it would not let me, so I rated a 9 based on other interactions with Microsoft support I have had

Incentivized

Most training was internally produced

Incentivized

Make sure you use a good partner. Our implementation was a bit longer and more problematic than we expected. Our partner got it done, but, in my opinion, some of their inexperience and staffing issues were evident.

Incentivized

Not applicable. AWS Organizations is unique in managing multiple AWS accounts.

Incentivized

Yeah, so basically that product to be honest, was more of a getting comfortable with cloud identification management. So that was a product I used. It has all the policies for desktops and doing updates and all that central directory identity provisioning stuff for users. Users and I will have an advantage because right now you get it from the time you get email, you get it, it is there, right? I mean you don't have to pay for anything. And then Microsoft, depending on your interest file license you have Access to Defender and all of those other nice products that compliment Entra ID. So I think that Entra ID is more rich. There's more potential as the business scales if that other product, you can't really scale as much as it was good because I deal with a lot of small medium size enterprises. I do a lot of more consulting type firms. They don't have more than 20 consultants and they just need a system whether it's for their legal activities, finance activities, et cetera. But in terms of having an email is very important to so many companies. So it's so easy to use the Entra ID and easy to expand more value for money for clients.

Incentivized

The features are getting addresses per requirements and their value for Money. The proposed ROI and actual ROI build confidence.

Scalability is pretty trival for Entra ID. It's not difficult to manage a few or many accounts.

Incentivized

Microsoft Professional Services' technical knowledge is appreciable as consultants design the solution as per customer requirements. Mapping of features per user specifications and assisting Customer IT engineers to implement so they can manage and administer the services.

• AWS Organizations allow for quick user access when paired with AWS SSO and SAML groups.
• AWS Organizations does not use IAM users and there is an initial cost in time to set up AWS SSO.

Incentivized

• I think it's had positive. It's enabled us to make authentication easier and more streamlined across the organization from frontline workers to back office workers.
• It's allowed us to really adopt authentication policies and methods that suit that user and their work environment.

Incentivized