Cyber resilience for Microsoft Azure, Entra ID & AD

With over 60% of organizations reporting public cloud-related security incidents, building stronger cyber resilience across cloud environments is a top priority. As organizations seek end-to-end protection across hybrid and multicloud environments, Cohesity is addressing these needs with enhanced and new cyber resilience offerings for Microsoft Azure and Microsoft identity infrastructure. These enhanced and new offerings aim to secure infrastructure, storage and databases, and expand on powerful ecosystem partnerships.

Together, Cohesity and Microsoft deliver unified cyber resilience capabilities that span on-premises, the cloud, and the edge—enabling secure workloads, identity protection, and predictable, rapid, and accessible recovery.

Cyber resilience for Azure: Expanding protection, security, and recovery with lower TCO

The shared responsibility model defines modern cloud security. While providers like Microsoft secure their Azure cloud infrastructure, organizations are responsible for managing and protecting operations, data, workloads, and identities. As cloud adoption accelerates, attackers increasingly target the customer’s domain—data, critical workloads, and identity systems like Active Directory and Entra ID.

Cohesity’s customer-managed DataProtect for cloud is now available on Azure so customers can confidently protect data and recover where their Azure workloads live. Our platform, Cohesity Data Cloud, gives organizations a consistent data protection experience across Azure commercial and Azure Government, with policy-driven protection, immutability options, and integration with Azure storage tiers.

Building an effective cyber resilience strategy shouldn’t come with a higher price tag. Fragmented protection across cloud and on-prem environments can drive up costs, operational complexity, and overhead. Cohesity helps eliminate these inefficiencies in Microsoft environments by unifying key cyber resilience capabilities in a single platform and enabling cost-effective deduplication and storage tiering based on specific organizational needs.

Protect your entire cloud environment

As customers use Azure to run their businesses, Cohesity provides breadth and depth of coverage across services—from infrastructure to storage to databases:

Azure VM, with disk exclusions and granular disk level or file restores from Azure VM.
Azure Kubernetes Service (AKS)
Azure Databases:
- Azure SQL
- Azure SQL MI
- Azure MySQL
- Azure PostgreSQL
- Azure Table Storage
- Azure CosmosDB NoSQL
- Azure CosmosDB MongoDB
- Azure CosmosDB Cassandra
- Azure CosmosDB TableAPI
Azure Blob Storage and Azure Data Lake, with the ability to recover individual containers and data at the prefix or folder-level.
Azure GovCloud, with parity to data on Azure commercial.
Red Hat OpenShift and OpenShift Virtualization on Azure.
Cloud archive and cold tiering, with the ability to tier older backups from hot storage to Azure Cool/Cold tiers or archive to low-cost Azure storage to reduce TCO while keeping data easily recoverable.

With this extensive services support, you can ensure that your data protection scales seamlessly with your cloud footprint. Further, data can be stored cost effectively in different tiers based on recovery requirements and moved to a secure air-gapped vault, lowering your TCO.

Built-in advanced security and recovery capabilities

Security and protection are inseparable in the cloud. We are closing the gap between protection and recovery with powerful security enhancements:

Expanded DSPM integration with Cyera: The expanded integration supports compliance, risk detection, prioritized recovery, and cost reduction for Azure workloads and data.
Azure VM threat scanning: Cohesity’s AI-powered threat scanning now extends to applications running on Azure VMs. Use this feature to investigate potential threats and scan for malware during backup operations and recovery workflows.
Hash-based threat hunting: This powerful tool for incident responders can reduce the threat detection process across backup data to a single operation that can rapidly search for indicators of compromise across billions of files.
Cohesity RecoveryAgent with agentic AI: Delivers a guided, end-to-end experience for recovery planning and execution. Customizable blueprints simplify and unify workflows, options, scripts, and specialized operations—ensuring consistent, repeatable recovery across scenarios. Non-disruptive rehearsals enable validation and refinement of recovery procedures without affecting production, increasing readiness for real-world events.

Optimizing platform economics and redundancy

Organizations can expand cyber resilience while optimizing TCO by balancing protection with efficiency. New platform capabilities include:

Azure Cold Tier support: Azure Blob Storage Cold Tier is now supported for archive targets, so you can keep long-retention data in Azure without paying Hot tier prices. Policies can move data from the active protection store to Cold tier based on age and retention rules, helping you meet compliance and archive goals while keeping your data restorable inside Azure.
Lower RPO with increased frequency of backups.

Identity resilience: Securing the front line

Protecting AD and Entra ID is critical to cyber resilience, as identity remains the top target for attackers. Cohesity continues to offer a leading identity resilience solution with enhanced protection, best-of-breed ecosystem integrations, and automated recovery for end-to-end protection.

Cohesity Identity Resilience is an industry-leading AD protection and recovery solution that can cut downtime by up to 90%, according to Forrester. It features automated multi-forest recovery and end-to-end protection throughout the attack lifecycle. With powerful identity forensics to pinpoint compromised objects and configurations, Cohesity Identity Resilience can enable malware-free recovery and seamless integration with Cohesity Data Cloud that provides immutable, indelible, and durable AD backups.
Availability of agent-based integration between Cohesity and Semperis: Organizations can gain extra value from integrating Cohesity Data Cloud with Semperis ADFR while also having flexibility to deploy in agent-based or script-based workflows.
Enhancements to Entra ID protection: Enable consistent enforcement and security of Entra ID with support for conditional access policies and hybrid environments (where AD data is synced to Entra ID) with unified governance and visibility in Cohesity Cloud Protection Services (CCPS).

By securing your critical identity systems, you can protect the central nervous system of an organization and guard against one of the most common and devastating attack vectors.

Resilience everywhere

Cyber resilience isn't optional when it comes to your cloud strategy across workloads, identities, and environments. That’s why Cohesity continues to deliver a unified approach alongside Microsoft’s trusted cloud to secure, protect, and recover mission-critical data wherever attackers strike.

At Microsoft Ignite 2025, we are excited to showcase our deep partnership and purpose-built solutions for the Microsoft ecosystem. Join us November 17-20 at Booth #1737 to explore these innovations in action—and see how Cohesity can help you build cyber resilience everywhere.

More information:

Any unreleased services or features referenced in this blog are not currently available and may not be made generally available on time or at all, as may be determined in our sole discretion. Any such referenced services or features do not represent promises to deliver, commitments, or obligations of Cohesity, Inc. and may not be incorporated into any contract. Customers should make their purchase decisions based upon services and features that are currently generally available.

Written By

Isabelle Yang

Product Marketing Manager, Cohesity

Aditya Tandon

Sr. Director, Product Management

Cohesity Data Cloud

Data Cloud packaging

Certified platforms

Backup & Recovery

Cloud Data Protection

SaaS Data Protection

Unstructured Data Protection

Cyber Resilience

Zero Trust Security

Archive & Long-Term Retention

Disaster Recovery

Identity Resilience

Ransomware Anomaly Detection

Threat Protection

Data Classification

Cyber Vaulting

Cyber Recovery Orchestration

Digital Jump Bag

Clean Room Solution

AI Conversational Search

Reporting & IT Insights

Global Search

Why Cohesity

Cohesity vs. Rubrik

Cohesity vs. Commvault

View all solutions

Learn more

Microsoft 365 Protection

AWS

Azure

Google Cloud

Google Workspace

Slack

Active Directory & Entra ID

Hyper-V

Kubernetes

IBM

MongoDB

MS SQL Server

NAS

NoSQL & Hadoop

Nutanix

Oracle

Red Hat

SAP HANA

VMware

Financial services

Healthcare and life sciences

Manufacturing and logistics

Federal government

State, local government, and education

Retail and hospitality

Legal

Energy and utilities

Telecom

Technology

Media and Entertainment

View all

Corporate Overview

Blogs

Demos

Events and Webinars

Customer Stories

Glossary

Marketplace

Support

Support login

How-to videos

Cyber Event Response Team

Cohesity User Group

Cohesity Academy

Trust Center

Channel Partners

Global System Integrators

Security Partners

Cloud Alliances

Technology Partners

Managed Service Providers

Data Security Alliance

Leadership