Microsoft 365 E5 is the most over deployed SKU in enterprise software. The buyer side that measures Defender, Purview, Power BI Pro, and Teams Phone adoption recovers the E3 to E5 spread on the next EA renewal.
Microsoft 365 E5 is the most over deployed enterprise SKU. Most large enterprises bought broad E5 in earlier EA cycles on the promise of integrated security and compliance. Actual workload adoption rarely matches the licensing footprint, and the spread between E3 and E5 quietly compounds across the term.
The buyer side that measures Defender XDR, Purview, Power BI Pro, and Teams Phone adoption against the licensed E5 user count rebuilds the EA on E3 with surgical E5 overlay where the workloads actually live.
Microsoft 365 E5 is E3 plus four workload bundles. The bundles are advanced security (Microsoft Defender), advanced compliance (Microsoft Purview), advanced analytics (Power BI Pro), and unified communications (Teams Phone System). Each bundle carries deployment effort that most enterprises underestimate.
Microsoft 365 E3 covers Office apps, Exchange Online, SharePoint, Teams, OneDrive, Windows 11 Enterprise, Entra ID P1, Intune, and basic security. The baseline that most information workers actually use day to day.
Microsoft Defender for Endpoint Plan 2, Defender for Office Plan 2, Purview information protection advanced, Power BI Pro, and Teams Phone System. These four workloads are the only reason to buy E5 over E3 plus targeted add ons.
Microsoft 365 E5 typically prices at roughly 56 USD per user per month at EA list. Microsoft 365 E3 prices at roughly 36 USD per user per month. The 20 USD spread per user per month compounds across users, across months, and across the three year EA term.
The shelfware test measures actual usage of the four E5 only workloads per user. Users licensed for E5 but using none or only one of the workloads are the shelfware population. The EA rightsizing proposal targets the shelfware population first.
| Workload | E3 only equivalent | E3 plus standalone price | E5 bundled |
|---|---|---|---|
| Defender for Endpoint P2 | Defender P1 included in E3 | Defender P2 add on roughly 5 USD | Included |
| Defender for Office P2 | EOP included in E3 | Defender for Office add on roughly 5 USD | Included |
| Purview advanced | Basic labelling in E3 | Advanced add on roughly 5 USD | Included |
| Power BI Pro | None | Power BI Pro standalone roughly 14 USD | Included |
| Teams Phone System | None | Phone System add on roughly 8 USD | Included |
Microsoft Defender XDR is the largest E5 only investment. Defender for Endpoint Plan 2, Defender for Office Plan 2, Defender for Identity, and Defender for Cloud Apps form the XDR portfolio. Deployment effort is significant and adoption varies widely across enterprise estates.
Pull the Defender for Endpoint deployment report. Devices reporting to the Defender portal per licensed user. Below 60 percent coverage signals weak deployment. Below 40 percent signals the SKU is largely unused on the population.
Defender for Office Plan 2 protects against phishing and business email compromise. Defender for Identity sits on the Active Directory plane. Both require deliberate deployment and most enterprises run partial coverage.
Many enterprises run CrowdStrike Falcon, SentinelOne, or another EDR alongside Microsoft Defender. The overlap is the largest E5 shelfware driver. Customers pay for Defender XDR while consuming a competing EDR product as the primary endpoint protection.
Microsoft Purview is the unified compliance plane covering information protection, data loss prevention, eDiscovery, and records management. The advanced capabilities are E5 only. Adoption requires labelling policies, scanner deployment, and ongoing governance.
Pull the Purview sensitivity label adoption report. Percentage of documents and emails carrying a sensitivity label. Below 30 percent coverage signals weak information protection adoption. Most enterprises sit below 20 percent.
Data Loss Prevention policies require deployment, tuning, and continuous management. Most enterprises run a handful of DLP policies and far below the capability the E5 advanced features enable.
Purview Records Management enforces retention and disposal at scale. Adoption requires the compliance function to own and govern the retention schedule. Most enterprises run records management in legacy systems and underuse the Purview capability.
Power BI Pro is the per user license for content creators and publishers. E5 includes Power BI Pro by default. The question is whether the Power BI Pro inclusion alone justifies the E5 premium when other E5 workloads are unused.
If the user consumes Power BI Pro but not Defender XDR, Purview advanced, or Teams Phone, the math typically favours E3 plus Power BI Pro standalone over full E5. The standalone price runs at roughly 14 USD per user per month.
Power BI Premium Per User adds Premium capacity features for individual users at roughly 24 USD per user per month. Adds large dataset support, AI features, and paginated reports. The PPU SKU is the right fit for advanced analyst populations.
Power BI Premium capacity bundles dedicated capacity for the tenant. Suitable when the BI population exceeds 500 users and the workload justifies a fixed capacity rather than per user licensing.
Teams Phone System is the unified communications workload in E5. The Phone System feature alone does not constitute a complete phone system. Customers also need a calling plan or Direct Routing to connect to the PSTN. The full economics matter at renewal.
Teams Phone System provides the call control plane. Auto attendants, call queues, and call routing. The phone numbers and PSTN connectivity come from a separate Microsoft Calling Plan or from Direct Routing through a session border controller.
Microsoft Calling Plans price separately at roughly 12 USD per user per month for domestic calling. The full phone user costs Phone System plus Calling Plan. The E5 inclusion only covers the Phone System layer.
Direct Routing connects Teams Phone to existing PSTN trunks via a session border controller. Suitable for enterprises with existing telecom contracts. The economics favour Direct Routing at scale but require infrastructure investment.
Five buyer side moves drive the typical 25 percent recovery on the M365 line through E5 rightsizing. The buyer side that runs all five captures the recovery. Skipping any one move leaves shelfware in place for another three year term.
Pull the four workload adoption reports. Defender device coverage, Purview label coverage, Power BI Pro active users, Teams Phone users. The measurement is the evidence that supports the rightsizing proposal.
Map the user base by E5 workload need. Heavy E5 users (Defender plus Purview plus Power BI plus Phone). Light E5 users (one workload only). E3 candidates (no E5 only workload usage). The segmentation drives the EA proposal.
Quantify the recovery from moving the E3 candidate population to E3 plus targeted add ons. Defender Plan 2 add on, Purview advanced add on, Power BI Pro standalone, Phone System add on. The targeted add ons price below the full E5 spread.
Build the EA renewal proposal with the rightsized SKU mix. E5 for the heavy users, E3 plus add ons for the light users, E3 only for the E3 candidates. The rightsized mix is the proposal Microsoft accepts at the table.
The rightsized mix locks at the EA three year term. The lock protects against the next M365 list price event. Customers that rightsize and lock capture the recovery for the full three year term.
The checklist takes the IT and procurement functions from an E5 estate audit to a contained rightsizing proposal. The earlier the measurement runs, the wider the option set on the day Microsoft puts the EA renewal proposal on the table.
Licensed E5 SKUs where the user does not actively consume the E5 only workloads. The user is licensed for Defender, Purview, Power BI Pro, and Teams Phone but uses none or only one of those workloads.
Microsoft 365 E5 typically prices at roughly 56 USD per user per month versus 36 USD for E3. The 20 USD per user per month spread compounds across the user base and across the multi year EA term.
Microsoft Defender for Endpoint Plan 2 and Defender for Office Plan 2, Purview information protection and DLP advanced features, Power BI Pro, and Teams Phone System. These four drive the E5 premium.
Pull the Microsoft Defender for Endpoint deployment report. Active devices reporting to Defender XDR per user. Below 60 percent device coverage signals weak Defender adoption and shelfware risk.
Power BI Pro standalone prices at 14 USD per user per month. If only Power BI is used the E3 plus Power BI Pro standalone economics are typically cheaper than the full E5 step up.
Teams Phone requires the Phone System feature included in E5 plus a calling plan or Direct Routing. The full call estate decision involves Phone System plus PSTN spend, not E5 alone.
Typical 25 percent down move across the M365 line where Defender, Purview, Power BI Pro, and Teams Phone adoption is weak. The down move recovers the E3 to E5 spread for the next three year EA term.
Redress runs E5 shelfware audits inside the Software Spend Assessment and as part of the Microsoft EA renewal motion. The work covers the four E5 only workloads and the EA rightsizing proposal.
Redress runs this practice inside the Vendor Shield subscription, the Software Spend Assessment, and the Renewal Program.
Read the related Microsoft licensing guide 2026, the Microsoft EA renewals article, the Microsoft services, the Microsoft knowledge hub, the benchmarking service, and the Benchmark Program.
Microsoft Enterprise Agreement renewal motion, true up exposure, Copilot bundling, and the buyer side discount band moves.
Independent. Written for CIOs, CFOs, and procurement leaders. No vendor partner affiliation.
Open the playbook in your browser. Corporate email only.
Open the Paper →E5 sells on a vision of integrated security and compliance. Most enterprises consume the productivity layer and ignore the rest. The buyer side that measures actual Defender, Purview, Power BI Pro, and Phone adoption rebuilds the EA on E3 with surgical E5 overlay.
We run E5 shelfware audits inside the broader Microsoft EA renewal motion. Typical 25 percent recovery on the M365 line through Defender, Purview, Power BI Pro, and Teams Phone adoption math.
Cost benchmarks, license rightsizing patterns, and the negotiation moves that worked. Written for buyer side teams running active vendor decisions.
Once a month. Audit patterns, renewal benchmarks, vendor commercial signals across Oracle, Microsoft, SAP, Salesforce, IBM, Broadcom, AWS, Google Cloud, ServiceNow, Workday, Cisco, and the GenAI vendors. No follow up sales pressure.
Free providers (Gmail, Yahoo, Outlook) cannot subscribe. Work email only. Unsubscribe in one click.
