We performed a comparison between Azure Web Application Firewall and Microsoft Defender for Cloud based on real PeerSpot user reviews.
Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The integration it has with GitHub is great."
"Azure WAF is extremely stable."
"It's quite a stable product and works well with Microsoft products."
"It has been a stable product in my experience."
"We have found the most valuable features to be the web application, minimal skills required for management, control through policies, and automation."
"It's a good option if you want a solution that's ready to go and easy for your team to learn. It's cloud-based, so you don't need to buy or maintain any hardware infrastructure."
"The most valuable feature is that it allows us to publish our applications behind the firewall."
"The initial setup is easy and straightforward...Azure Web Application Firewall is a scalable product."
"The integration with Logic Apps allows for automated responses to incidents."
"The entire Defender Suite is tightly coupled, integrated, and collaborative."
"The most valuable feature is that it's intuitive. It's very intuitive."
"The most valuable features of the solution are the insights, meaning the remediation suggestions, as well as the incident alerts."
"When you have commissioned Defender, you have these things visible already on your dashboard. This gives the efficiency to the people to do their actual work rather than bothering about the email, sorting out the email, or looking at it through an ITSM solution, whey they have to look at the description and use cases. Efficiency increases with this optimized, ready-made solution since you don't need to invest in something externally. You can start using the dashboard and auditing capability provided from day one. Thus, you have fewer costs with a more optimized, easier-to-use solution, providing operational efficiency for your team."
"The technical support is very good."
"It takes very little effort to integrate it. It also gives very good visibility into what exactly is happening."
"The most valuable features are ransomware protection and access controls. The solution has helped us secure some folders on our systems from unauthorized modifications."
"The documentation needs to be improved."
"I would say that Azure's customer service is not that good...I am not very happy with the support offered."
"From a reporting perspective, they could do more there."
"In Brazil, we have some problems with the phone service that affect our connection with the cloud. However, it isn't common."
"The management can be improved."
"Azure WAF should not be deployed in the middle of the traffic."
"Deployment should be simplified so that a non-techie can handle it."
"The support for proxy forwarding could improve."
"The solution is quite complex. A lot of the different policies that actually get applied don't pertain to every client. If you need to have something open for a client application to work, then you get dinged for having a port open or having an older version of TLS available."
"I would like to have the ability to customize executive reporting."
"The documentation could be much clearer."
"The product was a bit complex to set up earlier, however, it is a bit streamlined now."
"Another thing that could be improved was that they could recommend processes on how to react to alerts, or recommend best practices based on how other organizations do things if they receive an alert about XYZ."
"For Kubernetes, I was using Azure Kubernetes Service (AKS). To see that whatever is getting deployed into AKS goes through the correct checks and balances in terms of affinities and other similar aspects and follows all the policies, we had to use a product called Stackrox. At a granular level, the built-in policies were good for Kubernetes, but to protect our containers from a coding point of view, we had to use a few other products. For example, from a programming point of view, we were using Checkmarx for static code analysis. For CIS compliance, there are no CIS benchmarks for AKS. So, we had to use other plugins to see that the CIS benchmarks are compliant. There are CIS benchmarks for Kubernetes on AWS and GCP, but there are no CIS benchmarks for AKS. So, Azure Security Center fell short from the regulatory compliance point of view, and we had to use one more product. We ended up with two different dashboards. We had Azure Security Center, and we had Stackrox that had its own dashboard. The operations team and the security team had to look at two dashboards, and they couldn't get an integrated piece. That's a drawback of Azure Security Center. Azure Security Center should provide APIs so that we can integrate its dashboard within other enterprise dashboards, such as the PowerBI dashboard. We couldn't get through these aspects, and we ended up giving Reader security permission to too many people, which was okay to some extent, but when we had to administer the users for the Stackrox portal and Azure Security Center, it became painful."
"Microsoft Defender could be more centralized. For example, I still need to go to another console to do policy management."
"They could always work to make the pricing a bit lower."
More Azure Web Application Firewall Pricing and Cost Advice →
Azure Web Application Firewall is ranked 19th in Microsoft Security Suite with 9 reviews while Microsoft Defender for Cloud is ranked 2nd in Microsoft Security Suite with 46 reviews. Azure Web Application Firewall is rated 8.4, while Microsoft Defender for Cloud is rated 8.0. The top reviewer of Azure Web Application Firewall writes "It's a good option if you want a solution that's ready to go and easy for your team to learn". On the other hand, the top reviewer of Microsoft Defender for Cloud writes "Provides multi-cloud capability, is plug-and-play, and improves our security posture". Azure Web Application Firewall is most compared with AWS WAF, Fortinet FortiWeb, Azure Front Door, Azure Firewall and Prisma Cloud by Palo Alto Networks, whereas Microsoft Defender for Cloud is most compared with AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Microsoft Defender XDR, Wiz and Microsoft Defender for Endpoint. See our Azure Web Application Firewall vs. Microsoft Defender for Cloud report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
