Microsoft Entra ID
by Microsoft
Covered
15
controls
Partial
3
controls
Gaps
3
controls
Overview
Microsoft Entra ID by Microsoft is an identity & access management solution that covers 15 NIST 800-171 controls (14% total coverage). It addresses key requirements in the identity & access management domain for defense contractors pursuing CMMC compliance.
Controls Covered (15)
Implementation Notes
Deploy Microsoft Entra ID with FIPS-validated configurations. Integrate with your SIEM for centralized audit logging. Review partial controls quarterly to identify supplementary tooling needs.
More Identity & Access Management Products
Frequently Asked Questions
How many NIST 800-171 controls does Microsoft Entra ID cover?
Microsoft Entra ID covers 15 of 110 NIST 800-171 controls (14%), with 3 partially covered and 3 gaps.
Can Microsoft Entra ID alone satisfy CMMC Level 2?
No single tool covers all 110 NIST 800-171 controls. Microsoft Entra ID covers 14% and should be part of a layered security stack addressing the remaining controls.
What controls does Microsoft Entra ID not cover?
Microsoft Entra ID does not cover controls mp-3-8-1, sc-3-13-8, pe-3-10-1. These require supplementary solutions such as physical security controls, additional access management, or media protection tools.
Map Your Full Security Stack
See NIST 800-171 control coverage for 80+ security products.
Open NIST Tool Mapper