Publisher
MicrosoftSubcategories
Average rating
Deze score is berekend door AI op basis van publiek beschikbare informatie.
4.4 / 5
About this software
Cloud-based identity threat detection for hybrid environments that monitors Active Directory, AD FS, and AD CS signals. Sensors collect domain controller traffic and event data to detect suspicious activity, lateral movement paths, and compromised credentials. Integrated with Microsoft Defender XDR and Microsoft Secure Score, it provides prioritized alerts, identity inventories, automated responses for compromised identities, and tools for investigation and posture assessment.
Licenses & prices
Defender identity cao
Variant of Defender for Identity tailored for centralized administration, custom deployment configurations, and advanced policy controls.
Defender identity
Core Defender for Identity edition providing on‑premises Active Directory monitoring and behavioral threat detection across enterprise identities.
Purchase
Microsoft Defender for Identity
In Stock
Delivery: 1 working day
Loading...
€0.69
Free and without obligation
Do you need more information or looking for another license?
Benefits
- Threat detection: Identifies identity-based attacks using behavioral analytics and prebuilt detections.
- Identity inventory: Builds a consolidated inventory of cloud and on-premises identities.
- Attack path analysis: Maps potential lateral movement paths to highlight escalation risks.
- Incident investigation: Provides incident-level visibility and timelines for user activities and alerts.
- Automated response: Restricts confirmed compromised identities automatically to limit attacker movement.
Available languages
- English
- Spanish
- French
- German
- & more supported languages
Support information
- Product documentation: Official setup, deployment, and administration guides are on Microsoft Learn documentation.
- Release notes and updates: What's New pages list feature updates, release notes, and health advisories for the product.
- Community forums: Microsoft Tech Community hosts product discussions, announcements, and user-contributed guidance.
- Integration guides: Integration documentation explains Defender for Identity links to Defender XDR and Secure Score.
- PowerShell tooling: A DefenderForIdentity PowerShell module supports configuration, validation, and operational tasks.
Frequently asked questions
What environments does Defender for Identity protect?
It monitors hybrid identity environments, using signals from on-premises Active Directory, AD FS, AD CS, and cloud identities such as Microsoft Entra ID.
How does Defender for Identity collect and analyze data?
Sensors install on domain controllers or AD FS/AD CS servers, collecting network traffic and Windows events; a cloud service analyzes them for detections and alerts.
Can Defender for Identity integrate with other Microsoft security tools?
Yes; it integrates with Microsoft Defender XDR and feeds posture assessments and identity signals into Microsoft Secure Score.
What deployment components are required?
Deployment requires Defender for Identity sensors on domain controllers or relevant servers and a linked Defender tenant for cloud-based analysis.
Are there administration tools for automation and validation?
Yes; Microsoft provides a DefenderForIdentity PowerShell module and configuration guidance in the product documentation.