LastPass is a password management application to simplify access to enterprise applications for users but also increase centrality and ease of management of access for administrators with task automation, convenient and secure password sharing, and other features.
$36
per year 1 user
Microsoft Defender for Cloud Apps
Score 7.5 out of 10
N/A
Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) is a multimode cloud access security broker.
Honestly, I cannot think of a scenario where LastPass is less appropriate for business use. LastPass has done nothing but help me complete my day to day work in a much more efficient manner. Due to LastPass I no longer have to try and remember my user IDs and password and I save time by not having to type the data into the user ID and password fields. This is exceptionally helpful for me as I work in IT/Software Support and I am logging in and out of the same websites numerous times a day.
Microsoft Defender for Cloud Apps is well suited when working with other Microsoft Applications. For example, if you are working with Microsoft Office 365 it works very well when implementing CASB features. It works when implementing monitoring or blocks on Sanctioned applications however customizing the message to users is not that great.
The integration to Microsoft Entra ID is seamless, which allows Conditional Access to redirect the session to Microsoft Defender for Cloud App for it to take actions (Block or Monitor).
Tracker users' activity is very good when troubleshooting or running an investigate.
Detecting risky users through tight integration with Microsoft Entra ID is a very good feature.
Detecting mass downloads and blocking the download of files from non-manage company devices is a very good feature as well.
It takes some time to scan and apply the policies when there is some sensitive information.
After it applies the policies, it works, but there is a delay.
It doesn't provide any way to scan Microsoft Teams when an external exchange of images is happening. You can always do the filtering on the documents during the chat, but if there is an image, then some kind of OCR capability is required to detect it. At present, there is no way [Microsoft Cloud App Security] can go and detect those kinds of images and alert us
LastPass has been a game changer for me. I keep more than 100 passwords for financial sites for my company and many of those sites will automatically log you out if you've been idle for 10 or 15 minutes. Typing and re-typing credentials is not only extremely inefficient, but it also adds the risk that you could type them incorrectly and have your account locked. LastPass fills in all my credentials automatically and helps me to generate secure passwords for new sites. I will always want this software on my machine because it makes my life so much easier.
I login to LastPass when I turn on my computer in the morning and I use it throughout the day. I cannot express how much easier, quicker, smoother (running out of adjectives) this is than our old Excel spreadsheet. I don't bookmark pages anymore, I put them in last pass as all I have to do is search for the site name, press launch and because I have auto signin for most of the sites, I'm in and doing my business in seconds. Truly a blessing!
The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.
Haven't had to directly contact support all that much (at least not me personally, I don't know that anyone else on the team has needed to) but the Help Desk options/resources and documentation available are enough to answer any questions, although for what it's worth, the contact support options are not hard to find, and aren't hidden like some sites have it. Additionally, free new user training is offered for those who want it.
I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.
Educating users on password management and the basics of the solution is key to then have them successfully start using it themselves. Many have taken it further and now use it for personal passwords as well.
I use LastPass for Business has a user as it has been chosen by my company. If I have to compare with other tools that I use for personal reasons like KeePassXC I consider LastPass well integrated, I don;t find the same good way with the other tool I just mentioned.
More flexible and more features with easy integration with cloud services like Microsoft Azure and other cloud services. Overall both gives similar features but we prefer Microsoft cloud app security due to its high threat detection rate. mostly we have been able to stop the threat in very very less time.
Access levels and the organization features in LastPass are so flexible that you can set up your structure to work for virtually any scenario. You can also prevent employees from being able to see the actual credentials, which is huge for security, especially in large companies.
Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations
