Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs Microsoft Intune comparison

Microsoft Defender for Endpoint and Microsoft Intune are both solutions in the Microsoft Security Suite category. Microsoft Defender for Endpoint is ranked #6 with an average rating of 8.3, while Microsoft Intune is ranked #1 with an average rating of 8.3. Microsoft Defender for Endpoint holds a 9.0% mindshare in Microsoft Security Suite, compared to Microsoft Intune’s 13.9% mindshare. Additionally, 94% of Microsoft Defender for Endpoint users are willing to recommend the solution, compared to 93% of Microsoft Intune users who would recommend it.
Microsoft Defender for Endp...
Read 190 Microsoft Defender for Endpoint reviews
  • 5,227 Views
  • 3,887 Comparison Views
94% willing to recommend
Microsoft Intune
Read 234 Microsoft Intune reviews
  • 8,928 Views
  • 6,444 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 12, 2025

Microsoft Intune and Microsoft Defender for Endpoint operate in the endpoint management and security realm. While Intune provides extensive device management within the Microsoft ecosystem, Defender for Endpoint prioritizes robust threat detection and protection. Microsoft Defender for Endpoint holds a slight edge due to its comprehensive security offering, real-time analytics, and third-party integration capabilities.

Features: Microsoft Intune delivers comprehensive device management with seamless Microsoft ecosystem integration, supports cloud administration, and offers conditional access. It stands out with its cloud-first strategy, compatibility with Azure, and mobile device management capabilities. Microsoft Defender for Endpoint boasts powerful threat detection, integration with non-Microsoft platforms, and emphasizes real-time device protection and advanced threat intelligence, focusing on proactive analytics and cross-platform security measures.

Room for Improvement: Microsoft Intune requires enhancements in detailed reporting, Linux support, and certain Android policies. Its app deployment and interface also need improvements for better usability. Microsoft Defender for Endpoint could enhance third-party integrations, reduce false positives, and improve centralized threat intelligence for a better user experience and efficacy.

Ease of Deployment and Customer Service: Microsoft Intune is designed for cloud-based operations, offering scalability through public and hybrid cloud deployments. Customer service ranges from efficient to occasionally slow, based on support tiers. Microsoft Defender for Endpoint integrates smoothly within the Microsoft infrastructure but retains a focus on on-premises capabilities. Customer support is generally responsive but may need escalations for complex inquiries.

Pricing and ROI: Microsoft Intune is competitively priced, often bundled within Microsoft enterprise packages, offering cost-effective solutions for organizations integrated with Microsoft services, highlighting significant ROI through reduced operational management costs. Microsoft Defender for Endpoint, typically included in broader Microsoft licensing, provides economical security enhancements within the ecosystem. Despite appearing costlier as a standalone, its inclusion in Microsoft 365 enhances value, delivering substantial ROI through consolidated security and enhanced operational efficiencies.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Defender for Endpoint vs. Microsoft Intune Report (Updated: December 2024).
Buyer's Guide
Microsoft Defender for Endpoint vs. Microsoft Intune
December 2024
Download the complete report
Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.2
Users report positive ROI from Microsoft Defender for Endpoint, citing cost savings, improved security, and effective system integration.
Sentiment score
7.5
Microsoft Intune boosts ROI by reducing costs and improving efficiency with seamless device management and reduced reliance on other services.
The return on investment is primarily in time savings and better observability of what's happening.
For more quotes and insights, download the Microsoft Defender for Endpoint report
Everything we've gained from it makes my job easier day after day, and I see value in it as an engineer.
Importantly, when someone leaves the company, it helps protect document access on their devices.
Applications are deployed through Intune, and we see fewer tickets for common issues because we can resolve them through the solution.
For more quotes and insights, download the Microsoft Intune report
PJ
AndreaReynolds - PeerSpot reviewerNabil Saied - PeerSpot reviewerJoseph Merusi - PeerSpot reviewer
 

Customer Service

Sentiment score
6.6
Microsoft Defender for Endpoint's support is generally reliable, with mixed reviews on response time and resolution quality.
Sentiment score
6.6
Microsoft Intune's customer support is mixed; premium tiers are quicker, but response times and complexity handling need improvement.
The level-one support seems disconnected from subject matter experts.
I rate Microsoft support 10 out of 10.
Due to our size, we don't have access to direct technical support, but the knowledge base, Microsoft Learn, and the articles available are really good.
For more quotes and insights, download the Microsoft Defender for Endpoint report
When a support ticket is submitted, it directly reaches someone with Intune support expertise.
When I contacted Microsoft, they had the same expertise, if not more, which is phenomenal because I felt heard and my problem was solved.
Sometimes, the support provided is excellent, and the representative is knowledgeable, while other times, the service needs improvement.
For more quotes and insights, download the Microsoft Intune report
reviewer2595198 - PeerSpot reviewerreviewer2595933 - PeerSpot reviewer
PJ
Joseph Merusi - PeerSpot reviewerAndreaReynolds - PeerSpot reviewerJeff Wickham - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.6
Microsoft Defender for Endpoint offers scalable integration and cloud-based management, but customization may need extra tools in complex settings.
Sentiment score
8.3
Microsoft Intune is highly scalable and flexible, easily supporting various business sizes with its cloud-based integration and licensing.
We managed to scale it out in a short amount of time, with two months of planning and three months of implementation on 10,000 computers.
It's pretty easy to scale with Microsoft, as they make it easy if you look into the documentation.
Defender's scalability is phenomenal, and it's going to be one of the keys to resolving issues for the SOC.
For more quotes and insights, download the Microsoft Defender for Endpoint report
The scalability of Microsoft Intune is ten out of ten.
Ideally, we want to automatically segregate devices based on user properties like primary use, but currently, dynamic groups seem limited to device properties.
It supports organizations with 200 endpoints and those with more than 15,000 endpoints.
For more quotes and insights, download the Microsoft Intune report
reviewer2595933 - PeerSpot reviewerJohn Rallo - PeerSpot reviewer
PJ
reviewer2595288 - PeerSpot reviewerreviewer2595294 - PeerSpot reviewerMartijn Van De Weijenberg - PeerSpot reviewer
 

Stability Issues

Sentiment score
7.9
Microsoft Defender for Endpoint is stable, integrates well with Windows, but occasionally has configuration and memory issues.
Sentiment score
8.0
Microsoft Intune is stable and reliable, with minor issues; users generally rate it between seven to ten.
I haven't seen any outages with Microsoft.
I rate Defender 10 out of 10 for stability.
Defender for Endpoint is extremely stable.
For more quotes and insights, download the Microsoft Defender for Endpoint report
Microsoft Intune has been very stable.
A couple of years ago, the performance was not as good as it is now, but there are noticeable backend improvements.
We've encountered problems with other services like Exchange, Intune has remained unaffected.
For more quotes and insights, download the Microsoft Intune report
John Rallo - PeerSpot reviewerreviewer2595933 - PeerSpot reviewer
PJ
Joseph Merusi - PeerSpot reviewerreviewer2595252 - PeerSpot reviewerreviewer2595294 - PeerSpot reviewer
 

Room For Improvement

Users criticize Microsoft Defender for Endpoint's complex interface, limited integration, and request enhancements in analytics, protection, and support.
Microsoft Intune needs improvements in reporting, device support, integration, user interface, and cost efficiency for better management.
Repeated interactions are necessary due to Level One's lack of tools and knowledge, hindering efficient problem-solving and negatively impacting our experience with Microsoft support.
We use Microsoft partners to help govern the platform, and as part of an alliance, we want to gather data from each tenant and combine them for a complete view.
You have to go through tons of documentation to find what you want.
For more quotes and insights, download the Microsoft Defender for Endpoint report
There are communication issues, so you might start working with a feature without knowing if it will be deprecated six months from now.
Many third-party companies offer single-pane-of-glass reporting that shows you what your update environment looks like, how your patch is doing, application status, etc., but Intune's reporting is not intuitive.
Workspace ONE operates in real-time, whereas Intune has a noticeable delay when deploying policies or apps.
For more quotes and insights, download the Microsoft Intune report
reviewer2595198 - PeerSpot reviewerreviewer2595933 - PeerSpot reviewerJohn Rallo - PeerSpot reviewerJoseph Merusi - PeerSpot reviewerJeff Wickham - PeerSpot reviewerreviewer1388478 - PeerSpot reviewer
 

Setup Cost

Microsoft Defender for Endpoint offers flexible, cost-effective pricing, especially in E5 bundles, adapting to various enterprise licensing needs.
Microsoft Intune is cost-effective, especially when bundled with Microsoft 365, offering competitive pricing and valuable features for enterprises.
Given our extensive Microsoft licensing, transitioning to Defender for Endpoint did not affect licensing costs.
The pricing, setup, and licensing were very easy and simple.
For more quotes and insights, download the Microsoft Defender for Endpoint report
Introductory professional services, like a fast-track service, were included with our E5 membership, and there have been no additional costs.
The Intune suite and add-ons, such as batch management and remote help, are costly.
Microsoft Intune's costliness stems from licensing fees and the overhead associated with its management, user experience, and device remediation.
For more quotes and insights, download the Microsoft Intune report
reviewer2595933 - PeerSpot reviewer
PJ
reviewer2595750 - PeerSpot reviewerMahmoud-Eldeep - PeerSpot reviewerreviewer2563299 - PeerSpot reviewer
 

Valuable Features

Microsoft Defender for Endpoint provides comprehensive cybersecurity with seamless integration, robust threat analytics, and efficient management across platforms without performance impact.
Microsoft Intune offers seamless integration, robust security, and centralized management, enhancing compliance, scalability, and ease of use.
Defender for Endpoint's coverage across different platforms in our environment is pretty good. We have devices running Linux, Mac OS, Windows, iOS, and Android. It covers all of them.
Web filtering is the most valuable feature of Microsoft Defender for Endpoint because it effectively maintains security for website access.
Attack surface reduction and limiting attack surface vectors are valuable features.
For more quotes and insights, download the Microsoft Defender for Endpoint report
Intune excels in configuration and compliance management for Windows 10, ensuring devices receive timely updates and adhere to organizational standards.
Dynamic groups allow us to set conditions for automatic membership, eliminating the need for user intervention or manual review and ensuring a seamless workflow.
Windows Autopatch is the most valuable because it removes the burden of patch management.
For more quotes and insights, download the Microsoft Intune report
reviewer2595933 - PeerSpot reviewerreviewer2595198 - PeerSpot reviewerJohn Rallo - PeerSpot reviewerreviewer2563299 - PeerSpot reviewerreviewer2595294 - PeerSpot reviewerMartijn Van De Weijenberg - PeerSpot reviewer
 

Categories and Ranking

Microsoft Defender for Endp...
Ranking in Microsoft Security Suite
6th
Average Rating
8.0
Reviews Sentiment
7.1
Number of Reviews
190
Ranking in other categories
Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (2nd)
Microsoft Intune
Ranking in Microsoft Security Suite
1st
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
234
Ranking in other categories
Configuration Management (2nd), Remote Access (1st), Enterprise Mobility Management (EMM) (1st), Unified Endpoint Management (UEM) (1st)
 

Mindshare comparison

As of January 2025, in the Microsoft Security Suite category, the mindshare of Microsoft Defender for Endpoint is 9.0%, up from 6.1% compared to the previous year. The mindshare of Microsoft Intune is 13.9%, up from 10.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite
 

Featured Reviews

AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
Read full review
Joseph Merusi - PeerSpot reviewer
Everything has worked better since we started using it
Sometimes the syncing is inconsistent. I'm confident that the devices are checking in every eight hours, but sometimes the devices aren't picking up the settings as quickly as I would expect. Some features haven't been updated in a while, and Microsoft doesn't seem interested in developing them. Unless you talk to an engineer, you don't know whether there will be an update. There are communication issues, so you might start working with a feature without knowing if it will be deprecated six months from now. Some reporting areas still need development. For example, I noticed that the reporting for driver updates is still confusing.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
See recommendations
831,158 professionals have used our research since 2012.
 

Answers from the Community

Ronald Chavez - PeerSpot reviewer
Feb 20, 2023
Feb 20, 2023
What do you think of the integration of Azure AD Services, Defender for Endpoint, and Intune as comprehensive security solutions?
In recent years Microsoft has really upped its game with Defender and Intune. As core cyber-security for an SME, keeping just to Microsoft is now a real option. The challenge is understanding the gaps / cyber security service weaknesses (if they exist) in comparison with other vendors such as ESET, Malwarebytes, Trend Micro, etc.
2 out of 4 answers
James OConnor - PeerSpot reviewer
Feb 15, 2023
I believe it is a good first step, and I would say even a requirement, but in no way is it a comprehensive security solution, even for endpoints.   There are many things that need to be addressed for security. In addition to this, there is XDR, MDR, more comprehensive AV for endpoints & Servers that stop attacks, Threat Hunting, Mitigation, PEN Testing, Security Training for end users, Multi-Factor Authentication (Microsoft's MFA is good but only for Microsoft products), Patch Management for Endpoints, Servers and Cloud Workloads, Network Access Control, Firewalls for On-Premise and Cloud server workloads, Network Segmentation, Password Management, Data Backups (3-2-1-1 Rule) with Immutable Backups, Power Backups, Physical Security, Monitoring, NOC/SOC services, and working towards a Zero Trust architecture...   But there are no single-point solutions that will make you secure, so don't get complacent. And you can outspend your profits if you do everything. Just remember it's best to have a layered approach that works together and looks at everything from a security perspective and how it integrates with your overall security plans and objectives to help identify holes and possible mitigations. Healthcare must do Risk Assessments by law, but I recommend that all companies of all sizes do at least annual risk assessments since there is so such thing as being too small or inconspicuous to be hit with malware or have a cyber security attack since much of the delivery is automated and not just by the script-kiddies of years gone by... Nation States are actively engaging in cyber warfare daily, along with terrorists, and opportunists looking to make big money from you...
Read full answer
Gaurav Chandola - PeerSpot reviewer
Feb 16, 2023
It depends on your company's infrastructure. Check with your cyber team whether you can sync your endpoints to Cloud using Azure AD as Azure Registered/ Azure Hybrid AD join/ Azure AD join, etc.        1. So, if the ask is only to enroll them in Intune to leverage defender/BitLocker services - go directly to Azure AD's join approach.        2. If you still want to manage patch management/mcm BitLocker but Defender via cloud, the approach should be Azure Hybrid AD join.         3. You can still use autopilot using both of these approaches. 
Read full answer
See all 4 answers
 

Top Industries

By visitors reading reviews
Educational Organization
27%
Computer Software Company
12%
Government
7%
Financial Services Firm
7%
Educational Organization
26%
Computer Software Company
11%
Financial Services Firm
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
See all answers
How does Microsoft Intune compare with VMware Workspace One?
Microsoft Intune is a great tool for managing a mobile device fleet while keeping access control. The solution makes it easy to control security and manage the usage of mobile apps when you have a ...
See all answers
What are the pros and cons of Microsoft Intune?
Microsoft Intune is a great configuration management tool and has a lot of good things going for it. Here are some of the things I like about it: Pros: Protected productivity: Intune gives you th...
See all answers
How does Google Cloud Identity compare with Microsoft Intune?
Microsoft Intune offers not only an easy-to-deploy data protection and productivity management solution, but also access to both Microsoft’s user community as well as around-the-clock customer s...
See all answers
 

Comparisons

CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 8% of the time
Symantec Endpoint Security vs Microsoft Defender for Endpoint Logo
Symantec Endpoint Security vs Microsoft Defender for Endpoint
Compared 5% of the time
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Compared 4% of the time
Trellix Endpoint Security vs Microsoft Defender for Endpoint Logo
Trellix Endpoint Security vs Microsoft Defender for Endpoint
Compared 4% of the time
Intercept X Endpoint vs Microsoft Defender for Endpoint Logo
Intercept X Endpoint vs Microsoft Defender for Endpoint
Compared 3% of the time
More Microsoft Defender for Endpoint Competitors
Jamf Pro vs Microsoft Intune Logo
Jamf Pro vs Microsoft Intune
Compared 16% of the time
Workspace ONE UEM vs Microsoft Intune Logo
Workspace ONE UEM vs Microsoft Intune
Compared 9% of the time
Microsoft Entra ID vs Microsoft Intune Logo
Microsoft Entra ID vs Microsoft Intune
Compared 7% of the time
ManageEngine Endpoint Central vs Microsoft Intune Logo
ManageEngine Endpoint Central vs Microsoft Intune
Compared 6% of the time
SOTI MobiControl vs Microsoft Intune Logo
SOTI MobiControl vs Microsoft Intune
Compared 4% of the time
More Microsoft Intune Competitors
 

Product Reports

Buyer's Guide
Microsoft Defender for Endpoint
January 2025
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
Buyer's Guide
Microsoft Intune
January 2025
Microsoft Intune reportDownload Microsoft Intune product report
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
Intune, MS Intune, Microsoft Endpoint Manager
 

Learn More

Microsoft
Microsoft
 

Interactive Demo

Microsoft
Demo not available
Microsoft
 

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft Intune is a comprehensive cloud-based service that allows you to remotely manage mobile devices and mobile applications without worrying about the security of your organization’s data. Device and app management can be used on company-owned devices as well as personal devices.

In an increasingly mobile workforce, Microsoft Intune keeps your sensitive data safe while on the move. Microsoft Intune makes it possible for your team members to work anywhere using their mobile devices. Microsoft Intune provides both the flexibility and the control needed for securing all your data on the cloud, no matter where the device with the data is located.

Microsoft Intune Device Management Key Features

With Microsoft Intune Device Management you can:

  • Ensure devices and apps are compliant with your security requirements.
  • Rapidly deploy and authenticate apps on all company devices.
  • Remotely access devices to troubleshoot issues or to remove data from them.
  • Generate reports for all devices in the system.
  • Monitor the way users access and share information to protect company information.
  • Set rules and configure settings on personal and organization-owned devices to access data and networks.
  • Create user groups and device groups, allowing you to rapidly access many users and devices simultaneously.

Mobile Application Management

Mobile application management in Intune is designed to protect your organization’s data at the application level.

With Microsoft Intune Application Management you can:

  • Configure apps to run with specific settings enabled.
  • Update existing apps that are already on the device.
  • See reports on which apps are used and monitor their usage.
  • Selectively wipe organization data from apps.
  • Add mobile apps to user groups and devices.

As part of Microsoft's Enterprise Mobility + Security (EMS) suite, Intune integrates with Microsoft Entra ID for access control and with Azure Information Protection for data protection. It also integrates with Microsoft 365 Applications.

Reviews from Real Users

Microsoft Intune stands out among its competitors for a number of reasons. Two major ones are its ability to secure all devices under its management and the flexibility that the solution offers its users.

A computing services manager notes, "Its security is most valuable. It gives us a way to secure devices, not only those that are steady. We do have a few tablets and other devices, and it is a way for us to secure these devices and manage them. We know they're out there and what's their status. We can manage their life cycle and verify that they're updated properly."

The head of IT engineering at a financial services company writes, "The one feature we find most useful is the Mobile Application Manager. There are two types: we have the complete MDM and the Mobile Application Manager (MAM). We don't give our users phones, it is their own personal phone, and we need to allow them to have access to the company details on their phone. We need to create a balance between their own personal data and the company data. We deploy the Mobile Application Manager for them so that we won't be able to interfere with their own personal data."

 

Sample Customers

Petrofrac, Metro CSG, Christus Health
Mitchells and Buzzers, Callaway
Buyer's Guide
Microsoft Defender for Endpoint vs. Microsoft Intune
December 2024
Free Report: Microsoft Defender for Endpoint vs. Microsoft Intune
Find out what your peers are saying about Microsoft Defender for Endpoint vs. Microsoft Intune and other solutions. Updated: December 2024.
DOWNLOAD NOW
831,158 professionals have used our research since 2012.
See our Microsoft Defender for Endpoint vs. Microsoft Intune report.
See our list of best Microsoft Security Suite vendors.

We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.