• Home
  • F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID

F5 BIG-IP Access Policy Manager (APM) vs Microsoft Entra ID comparison

Cancel
You must select at least 2 products to compare!
F5 Logo
F5 BIG-IP Access Policy Manager (APM)
Read 13 F5 BIG-IP Access Policy Manager (APM) reviews
1,319 views|1,070 comparisons
85% willing to recommend
Microsoft Logo
Microsoft Entra ID
Read 190 Microsoft Entra ID reviews
14,752 views|10,651 comparisons
94% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID
May 2024
Executive Summary
Updated on Jun 11, 2023

We performed a comparison between Azure Active Directory (Azure AD) and F5 BIG-IP Access Policy Manager (APM) based on real PeerSpot user reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Azure AD has a straightforward initial setup, but integrating on-premise active directory or third-party apps can be difficult. F5 BIG-IP APM's setup is more complex and can take up to nine months with a large team required for maintenance.
  • Features: Azure AD provides enhanced security options, seamless integration with external tools, and personalized settings for access control and verification. Meanwhile, F5 BIG-IP APM is a dependable and expandable platform with a useful login capability and impressive performance. The feature of "Stickiness" is also recognized as a valuable attribute.
  • Pricing: Azure Active Directory has a simple and flexible pricing model based on user count and desired features, while F5 BIG-IP Access Policy Manager is an expensive product that may require extra payment for certain functionalities and services, with no clear pricing structure provided.
  • Service and Support: While some have praised Azure AD's support team for their helpfulness and expertise, others have had negative experiences with slow response times and lack of knowledge. On the other hand, F5 BIG-IP APM's technical support has received high ratings across the board, with many satisfied customers giving it a perfect score of ten out of ten.
  • ROI: Azure AD and F5 BIG-IP APM are both solutions that offer benefits in terms of ROI. Azure AD offers increased security, flexibility, and cost savings by reducing password reset requests and providing seamless integration. On the other hand, F5 BIG-IP APM allows for access during times of unavailability and provides a positive ROI.

Comparison Results: Azure Active Directory is the preferred solution over F5 BIG-IP Access Policy Manager due to its advanced security features, customizable options, ease of use, and cost-effectiveness. While F5 BIG-IP APM is noted for its reliability and stability, it is considered complex and costly, with room for improvement in reporting and management. Azure AD offers a more feature-rich solution with better integration options and a user-friendly management interface, along with a free basic tier and flexible pricing options, making it a better value for the money compared to F5 BIG-IP APM.

To learn more, read our detailed F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID Report (Updated: May 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
Mahmmoud Rabie
A highly stable solution for load balancing, but the initial setup is complex
The solution helps us to distribute the load.
Anonymous User
Works well for small businesses but is not stable enough for a company of our scale
We tried to stand it up as a PoC, and we went back and forth with Microsoft on it for a few months. We never got to a resolution because there is... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The solution is stable and reliable.""The product allows us to create customized portals for your users.""Stickiness is the most valuable feature of the product.""This is a product that is easy to install and integrate, and it is simple to use.""The tool is reliable and easy to configure.""Our customers have never complained about the stability""The portal access was very good.""The load balancing features are valuable."

More F5 BIG-IP Access Policy Manager (APM) Pros →

"Conditional access is a very important feature where a specific user can be restricted such that they cannot connect to the application if they travel outside of the US.""The most valuable feature is that it is very easy to implement, you don't need a lot of effort to set up the solution. This is the most advantageous point, that you can do anything on Azure without taking too much time.""The security features, multi-factor authentication, and service management features are valuable.""Single sign-on is the reason we use AD.""Application integration is easy. MFA and password self-service have reduced most of the supportive work of IT. We use multi-factor authentication. Every access from a user is through multi-factor authentication. There is no legacy authentication. We have blocked legacy authentication methods. For people who use the MDM on mobile, we push our application through Intune. In a hybrid environment, users can work from anywhere. With Intune, we can push policies and secure the data.""Azure Active Directory has useful policy assigning and management.""Privileged Identity Management and Privileged Identity Management make controlling access considerably easier and ensure that authorized access is achieved.""Configuring the domain and setting it up in the Azure portal is just three clicks to be honest."

More Microsoft Entra ID Pros →

Cons
"I'd suggest improved documentation integration directly within the GUI. Right now, finding comprehensive documentation often requires going to external websites like the community portal.""The technical support’s response time must be improved.""The solution is quite costly.""Integrating identity providers and single sign-on solutions can simplify user authentication and access control.""In my opinion, the GUI side needs some improvement based on my usage. Sometimes, it doesn't work as efficiently as the CLI side.""The operational deployment is not great.""The price of this product can be improved.""The solution’s GUI looks very old."

More F5 BIG-IP Access Policy Manager (APM) Cons →

"I want to see new functionalities for the active directory.""The product needs to improve its support.""If somebody is using an IdP or an identity solution other than Active Directory, that's where you have to start jumping through some hoops... I don't think the solution is quite as third-party-centric as Okta or Auth0.""The Cloud Provisioning Agent cannot provision a lot of the information that AD Connect does. For starters, the lightweight version cannot synchronize device information. If you have computers on-premises, the information about them will not be synchronized by the Cloud Provisioning Agent. In addition, if you have a user on the cloud and he changes his password, that information should be written back to the on-premises instance. But that workflow cannot be done with the lightweight agent. It can only be done with the more robust version.""An area where there is room for improvement is the ease of use of the dashboards.""We would like to have more granularity in the Azure conditional access in order to be able to manage more groups for devices and for applications.""Some of the features that they offer, e.g., customized emails, are not available with B2C. You are stuck with whatever email template they give you, and it is not the best user experience. For B2C, that is a bit of a negative thing.""The role-based access control can be improved. Normally, the role-based access control has different privileges. Each role, such as administrator or user, has different privileges, and the setup rules for them should be defined automatically rather than doing it manually."

More Microsoft Entra ID Cons →

Pricing and Cost Advice
  • "Recently, they have simplified the licensing"
  • "The product is very expensive."
  • "The tool is a little bit expensive."

    • More F5 BIG-IP Access Policy Manager (APM) Pricing and Cost Advice →

  • "The licensing cost is a bit prohibitive."
  • "The licensing is really not clear unless you are a premium client."
  • "Licensing is easy."
  • "It is a really nice tool and we have a license for the more complex model."
  • "It is not too expensive."
  • "It's really affordable."
  • "I do not have experience with pricing."
  • "Licensing fees are paid on a monthly basis and the cost depends on the number of users."

    • More Microsoft Entra ID Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Access Management solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about F5 BIG-IP Access Policy Manager (APM)?
    Top Answer:In my opinion, the GUI is perfect with the configuration options provided. F5 BIG-IP has given customization options and policy configuration tools in the GUI. It's good and good enough to work.
    Read all 13 answers   →
    What is your experience regarding pricing and costs for F5 BIG-IP Access ...
    Top Answer:The tool is a little bit expensive. I rate the pricing a six out of ten.
    Read all 5 answers   →
    What needs improvement with F5 BIG-IP Access Policy Manager (APM)?
    Top Answer:I'd suggest improved documentation integration directly within the GUI. Right now, finding comprehensive documentation often requires going to external websites like the community portal. In the APM… more »
    Read all 13 answers   →
    How does Duo Security compare with Microsoft Authenticator?
    Top Answer:We switched to Duo Security for identity verification. We’d been using a competitor but got the chance to evaluate Duo for 30 days, and we could not be happier Duo Security is easy to configure and… more »
    What do you like most about Azure Active Directory?
    Top Answer:It is very simple. The Active Directory functions are very easy for us. Its integration with anything is very easy. We can easily do third-party multifactor authentication.
    Read all 102 answers   →
    What is your experience regarding pricing and costs for Azure Active Dire...
    Top Answer:It is worth the money.
    Read all 84 answers   →
    Ranking
    6th
    out of 37 in Access Management
    Views
    1,319
    Comparisons
    1,070
    Reviews
    10
    Average Words per Review
    372
    Rating
    8.1
    1st
    out of 37 in Access Management
    Views
    14,752
    Comparisons
    10,651
    Reviews
    79
    Average Words per Review
    936
    Rating
    8.7
    Comparisons
    Also Known As
    F5 Access Policy Manager
    Azure AD, Azure Active Directory, Azure Active Directory, Microsoft Authenticator
    Learn More
    F5
    Microsoft
    Interactive Demo
    F5
    Demo Not Available
    Microsoft
    Watch a demo
    Overview

    F5 BIG-IP Access Policy Manager (APM) is an access management proxy solution for managing global access to the enterprise networks, cloud providers, applications, and application programming interfaces (APIs). Through a single management interface, BIG-IP APM consolidates remote, mobile, network, virtual, and web access. 

    BIG-IP APM can also serve as a bridge between modern and classic authentication and authorization protocols and methods. For applications which are unable to support modern authentication and authorization protocols, like SAML and OAuth with OIDC, but which do support classic authentication methods, BIG-IP APM converts user credentials to the appropriate authentication standard supported by the application.

    BIG-IP APM Benefits:

    • Ease of use
    • Flexibility
    • Ability to integrate with other systems
    • Security features
    • Granular access control
    • Responsive and helpful support team

    BIG-IP APM Features:

    • Support for Identity Aware Proxy (IAP) enabling Zero Trust application access
    • Context-based authorization with dynamic L4/L7 ACLs
    • Integration with third-party MFA solutions
    • DTLS 2.0 mode for delivering and securing applications
    • SAML 2.0 identity federation support
    • Support for OAuth 2.0 authorization protocol
    • SSO support for classic authentication (Kerberos, header- based, etc.), credential caching, OAuth 2.0, SAML 2.0, and FIDO2 (U2F)
    • AAA server authentication and high-availability
    • Integration with leading IAM vendor products (Microsoft, Okta, Ping Identity)
    • BIG IP Edge Client and F5 Access integrate with VMware Horizon ONE (AirWatch), Microsoft Intune and IBM MaaS360
    • Risk-based access leveraging third-party UEBA and risk engines (HTTP Connector)

    Reviews from Real Users

    Below are some reviews and helpful feedback written by BIG-IP APM users.

    Mahmmoud Rabie, Senior Site Reliability Engineer, writes that BIG-IP APM is "A highly stable solution for load balancing, but the initial setup is complex."

    Clyde LivingstonSenior Process Specialist at Telstra, says that BIG-IP APM is "Easy to use, useful access remotely, but lacking stability."

    Chris LamSenior Solution Consultant at Macroview Telecom Limited, states that BIG-IP APM is "Useful for remote access VPN and VPI integration with VMware.

    Microsoft Entra ID, previously known as Azure AD (Active Directory), is Microsoft's cloud-based identity and access management (IAM) solution. Designed to help organizations of all sizes manage user identities and create an intelligent security perimeter around their cloud and on-premise resources. Microsoft Entra ID or Azure AD is integral to the Microsoft 365 and Azure ecosystems. It provides a robust set of capabilities to manage users and groups and secure access to applications in a centralized, streamlined manner.

    Microsoft Entra ID (Azure AD) is a login system, morphing into a sophisticated identity and access management (IAM) solution for the modern, hybrid workplace. Imagine a single vault for all your digital keys – that's the essence of Entra ID's identity management. It acts as a central repository for user identities, encompassing usernames, passwords, and even additional attributes like department or employee role.

    These capabilities enabled simplified administration using a unified platform for adding, modifying, and deleting user accounts. Users no longer need to remember login credentials for a plethora of applications. Entra ID streamlines access by using the same identity across various cloud services and on-premises resources (if integrated). Centralized identity management allows for stricter enforcement of security policies and password complexity requirements across the organization.

    Authentication sits at the heart of the solution, ensuring only authorized users gain access to sensitive resources. It employs a multi-pronged approach:

    • Password Authentication: The traditional method of username and password is still supported, but Entra ID encourages stronger authentication methods.
    • Multi-Factor Authentication (MFA): Adding an extra layer of security, MFA requires users to verify their identity beyond just a password – through a code sent to their phone, fingerprint recognition, or a security key.
    • Single Sign-On (SSO): This user-friendly feature eliminates the need to enter credentials repeatedly. Users sign in once to Entra ID and gain seamless access to all authorized applications, boosting productivity.
    • Conditional Access Policies: Providing granular control over how and when users can access resources. Based on conditions like user role, location, device state, and the application being accessed, Conditional Access policies help ensure that only the right people under the right conditions can access sensitive resources.
    • Seamless Integration: Seamless integration with thousands of SaaS applications, Microsoft 365, and on-premises applications via Application Proxy or third-party identity bridges.
    • Advanced Security Reports and Alerts: Sophisticated security monitoring, reporting tools, and automated alerts. These features enable to identify potential security issues, such as atypical behavior or attempted identity attacks, allowing for swift remediation actions.

    For organizations with on-premises infrastructure, Microsoft Entra ID (Azure AD) offers hybrid identity options. This allows for a smooth integration between on-premises Active Directory and Entra ID, providing a consistent identity for users across both environments. It enables organizations to leverage their existing investments in on-premises infrastructure while taking advantage of cloud scalability and flexibility.

    In conclusion, Microsoft Entra ID (Azure AD) is a comprehensive IAM solution that addresses the complex challenges of managing and securing identities in a cloud-centric world. Its blend of ease of use, security, and integration capabilities makes it an essential component of modern IT infrastructure, supporting both operational efficiency and strategic business objectives.

    Additional links:

        Sample Customers
        City Bank, Ricacorp Properties, Miele, American Systems, Bangladesh Post Office
        Microsoft Entre ID is trusted by companies of all sizes and industries including Walmart, Zscaler, Uniper, Amtrak, monday.com, and more.
        Top Industries
        REVIEWERS
        Comms Service Provider27%
        Media Company18%
        Computer Software Company18%
        Financial Services Firm18%
        VISITORS READING REVIEWS
        Financial Services Firm12%
        Computer Software Company11%
        Government11%
        Manufacturing Company8%
        REVIEWERS
        Financial Services Firm14%
        Computer Software Company14%
        Non Profit6%
        Manufacturing Company5%
        VISITORS READING REVIEWS
        Educational Organization26%
        Computer Software Company12%
        Financial Services Firm9%
        Government6%
        Company Size
        REVIEWERS
        Small Business50%
        Large Enterprise50%
        VISITORS READING REVIEWS
        Small Business17%
        Midsize Enterprise14%
        Large Enterprise69%
        REVIEWERS
        Small Business33%
        Midsize Enterprise14%
        Large Enterprise53%
        VISITORS READING REVIEWS
        Small Business18%
        Midsize Enterprise35%
        Large Enterprise47%
        Buyer's Guide
        F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID
        May 2024
        Free Report: F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID
        Find out what your peers are saying about F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID and other solutions. Updated: May 2024.
        DOWNLOAD NOW
        772,679 professionals have used our research since 2012.

        F5 BIG-IP Access Policy Manager (APM) is ranked 6th in Access Management with 13 reviews while Microsoft Entra ID is ranked 1st in Access Management with 190 reviews. F5 BIG-IP Access Policy Manager (APM) is rated 8.2, while Microsoft Entra ID is rated 8.6. The top reviewer of F5 BIG-IP Access Policy Manager (APM) writes " Facilitates packet inspection, modification, and offloading and offers visibility and troubleshooting capabilities, allowing for pre-production server testing". On the other hand, the top reviewer of Microsoft Entra ID writes "Saves us time and money and features Conditional Access policies, SSPR, and MFA". F5 BIG-IP Access Policy Manager (APM) is most compared with Citrix Gateway, CyberArk Privileged Access Manager, Ivanti Connect Secure, Cisco ISE (Identity Services Engine) and Aruba ClearPass, whereas Microsoft Entra ID is most compared with Microsoft Intune, Google Cloud Identity, CyberArk Privileged Access Manager, Ping Identity Platform and Okta Workforce Identity. See our F5 BIG-IP Access Policy Manager (APM) vs. Microsoft Entra ID report.

        See our list of best Access Management vendors.

        We monitor all Access Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.