Microsoft Intune Reviews

I support mobile technology for the Department of Homeland Security first responders nationwide, particularly in the weapons of mass destruction area. This diverse group includes first responders, firefighters, and police, explicitly located in high-risk urban areas like New York, including Northern New Jersey and Southern Connecticut, Chicago, San Francisco, and Washington D.C. Additionally, a mobile deployment group travels to major events like New Year's Eve in Times Square, Pro Bowls, Super Bowls, and World Series games, carrying chemical and biological detection devices with Microsoft Intune integrated into their mobile technologies.

Intune consolidates our endpoint and security management tools, providing a centralized solution for controlling security and ensuring compliance with the federal government, NIST, and ISO standards. This centralized control is crucial for maintaining a secure and compliant environment.

Endpoint analytics help proactively detect and remediate anomalies on endpoints. We receive alerts from various detection devices, including biological, radiological, and mobile platforms. A common challenge with Bluetooth or similar technologies is maintaining connectivity, whether it's Bluetooth or Wi-Fi. Additionally, we need to protect the Wi-Fi network itself. To address these security concerns, we often use proprietary connectivity protocols to ensure data integrity and prevent hacking, fraud, or unauthorized access.

Intune's Cloud PKI helps us manage our current and historical actions. We can easily access recurring tasks and look for common problems, which is an important attribute of using the cloud service.

For our benefit, Intune is very useful. However, the challenge is keeping it up to date and dealing with shift workers across different time zones. When deploying to the New York region, multiple fire and police departments use these devices. We maintain a database to track deployment status and device updates to ensure effective management. Devices unused for 90 days are suspended with the carrier to avoid higher fees for inactive devices. Although maintaining these devices can be challenging, we closely monitor them and collaborate with regional directors to ensure they are turned on at least every 90 days for automatic updates.

We use the privilege management feature exclusively for points of contact or location managers. Due to the group's diversity and the inclusion of shift workers, these individuals require specific access from an identity management perspective. We only permit access in these designated areas.

Intune saves costs for the federal government.

One reason my employer switched to Intune was the integration of Intune with Microsoft 365 and Microsoft Security.

We deploy applications and manage infrastructure based on specific needs, including lockdown services to prevent unauthorized app downloads. We utilize management controls for this purpose. Currently, it's a small environment consisting of approximately 20 major locations nationwide, with plans for future expansion. The management control feature is the most valuable.

Intune endpoint analytics can be challenging. However, factors like usage patterns, timeliness, and time of day can provide valuable insights. We must also consider help desk tiers, change management processes, and other relevant factors. We must prioritize user-friendly reporting over complex, jargon-filled explanations to present these analytics effectively to the federal mobility group and leaders countering weapons of mass destruction, who may need to be more technical experts.

I have been using Microsoft Intune for 18 months.

The technical support has been good. We have priority, given that we work with first responders.

Positive

Before I joined as a contractor consultant, the government used VMware. They changed vendors, and the new vendor convinced management that Microsoft Intune was superior to VMware. I disagreed, having done a lot of business with VMware over the years. I believe any VMware issues could be resolved with the proper account management and connections in production and development.

They believed Intune offered superior controls compared to VMware, but a thorough evaluation wasn't conducted. Instead of adhering to federal government regulations that mandate due diligence when switching technologies, they bypassed the process. They directly consulted the individual heading CWMD at the time, whose recommendation led to their employment and subsequent contract. Their justification for the switch to Microsoft Intune was based on their assertion that it would enable them to perform better. Typically, an in-depth evaluation is conducted before any transition, highlighting the differences to the federal government and justifying the necessity of the change. Cost-benefit analysis might be a factor, but not always the deciding one. Improved engineering, deployment models, and infrastructure management could all contribute to the rationale behind such a decision.

I would rate Microsoft Intune nine out of ten.

The user experience is a learning process, and it's improving. We primarily deal with shift workers who share devices, making identity management difficult and necessitating tighter security. For first responders, feedback and chemical and biological device management for alerts aren't the top priority. They focus on murders, robberies, thefts, fires, etc. Getting them to update their devices is challenging. We try to set it up so they only need to reconnect their devices every 90 days, but depending on the vulnerability, it might have to be done sooner.

Intune is a necessary tool, and we're currently undergoing a transformation with one vendor leaving and another coming in. This involves going through documentation, projects, upgrade requirements, and processes. MDM is only necessary due to the number of tools we have, including Sonim rugged mobile devices and Panasonic rugged desktops used in police cars, fire trucks, and other mobile settings. Dealing with Sonim is challenging because our contract is with the carriers, AT&T, Verizon, etc., not the federal government. Attestations and an executive order 14.28 about managing technology on these devices exist. Sonim is developed and manufactured in China, raising concerns about mobile technologies and managing them through third-party suppliers from non-friendly countries. All these factors contribute to the challenges in MDM.

I'm working with InTune on the user side. It's used for device enrollment and mobile device management. It's used for remote desktops and remote control for compliance. 

The solution helped us resolve user enrollment issues. Sometimes, users want to reset, for example, file server systems and Intune ensures a user can't just enroll any new systems.

The mobile device management is very useful. With mobile device management, we can monitor everything and control devices. We can monitor devices and fix things on remote desktops. 

Intune brings all endpoints and security management tools into one place. This helps us monitor everything from one portal. We can exclude any PowerShell command. It helps us not only monitor for but also fix any problems. We can add and remove items remotely from any device from a single place. 

The solution has a helpful feature called Co-Pilot. We can access it via the portal and configure it as we need. However, I have not used it myself. 

We use Intune with a hybrid model. We can connect it easily to other services. 

With the ability to monitor everything from one place, our security is quite good. The level of security is better. I'd rate the level of security we've been able to achieve ten out of ten.

It's positively affected IT productivity in our organization. Having Intune has made our IT engineers more effective. They can use the cloud portal from anywhere and at any time to easily adjust or deploy whatever users need. 

We've been able to save money compared to using SCCM. Intune has helped from a cost-savings perspective, although I can't speak to exact costs. 

There are a lot of updates happening on Microsoft.

I've used the solution for about six months. 

I haven't had any challenges with stability.

I haven't come across any limitations in terms of scalability. 

I've never had to reach out to technical support.

I also use VMware. 

The initial setup was straightforward. We simply needed to create an account don't he Microsoft side and then we can go and get licenses. 

I administrate and maintain Intune for the company.

I don't have any visibility in regards to Intune pricing. 

I'd recommend Intune to others. I'd rate Intune ten out of ten. 

We are using it for the endpoint deployment piece.

By implementing Intune, we are trying to get everything off on-prem.

Because of the FedRAMP space and some of the pieces we are doing, such as the new policies for CMMC 2.0, we have more worries when we have anything physical. It just made sense to go for a cloud solution. Because we were already using Microsoft products and we were previously partially using Intune, it just made sense to use Intune.

Once you start getting things hosted in the cloud, rather than having to host the domain pieces yourself, they can be generally managed by Intune. One of the issues that we had when we had the hybrid or on-prem deployment set was that users would have to use a VPN to be able to change their user email or their password sets. Having to manage on-prem exchange was an issue as well. There were other things like that. As we are moving the pieces over, we are noticing a lot more availability and easier configuration of pieces for users.

Intune has helped us with compliance. We are using it for CMMC 2.0 compliance.

Intune provides full endpoint visibility and IT control across device platforms. You can individualize it for your company with the Intune Company Portal app. You can make applications and other things and have them deployed via scripts.

The user experience of Intune has been nice for other individuals from what I have seen.

A lot of security is achieved via Intune policy deployment cases. There is a baseline security set, and then a part of it was configured with some of the other things that we needed for CMMC 2.0 compliance. It is containerizing for cell phones in particular and not allowing specific connection sets. We have more cells than anything else. A lot of the users do not even need to touch a lot of the system sets that we use. We have not had any issues with user availability.

One of the things that you can do with Intune is that you can have approved app sets. As a corporation, you know that a user needs to use an application, so you can have it added to Intune Company Portal apps. You can have it pre-downloaded for the users without the need for an admin's intervention. For the apps that users could need or do need, you can either force installation or set it up for the user if they need it.

Intune certainly affects our organization's attack surface. We are utilizing DLP, domain policies, and things like that via Intune. It is nice to be able to make sure that the users can have their laptops, and there is also no need to have a VPN service for a lot of those. It makes it easier for each user's things to be isolated.

We started utilizing the app proxy service. If you have local applications that use a web URL, you can use the app proxy and have Microsoft handle the VPN connection set rather than needing a VPN yourself.

Intune has helped to reduce the risk of security breaches in our organization. Intune has saved us costs. It has helped us reduce our workloads. When doing the hybrid deployment, we have to manage our on-prem environment and have additional security for it. By moving into the cloud, we have reduced the electrical cost of the office. There is also a price difference. Hosting our own VM sets versus having them host in Azure are two different things. Doing cloud integrations with pieces is easier in Intune than on-prem. It has been a nice thing that we have been dealing with recently.

We are using it for its DM Hosting, user hosting, and end-to-end deployment as well. It is all very nice.

I would like them to stop making changes and not tell people they have already made the changes.

I know that their AI pieces are at the infancy stage, but allowing users to do more tagging for information would be an interesting thing because Intune also directly integrates with Azure. Because a lot of the devices are hosted with that, you also get a lot of tagging of user data and other things like that. Tagging is still at more of an infancy set. You get a lot of false flags.

There can also be a more simplified use case for app deployment. They leverage MSIs and WIN32. I am having a more washed-out EXE process. Rather than having to build the script sets yourself, having them autogenerated script based on you uploading in a default location would be nice.

We are still in phases. It is not simple to just do a hard cutover for a lot of it.

Even though it is a Microsoft product, Microsoft does not sell or support the product directly, so you have to talk to a third-party set that is considered their partner to be able to access support. Our partner is JourneyTEAM. After utilizing billable hours with them and other pieces like that, we have been getting a lot of nice support via them. I would rate JourneyTEAM a 10 out of 10. I really enjoy working with those individuals.

We were using Symantec, and we ended up using Intune. Symantec is a nice security piece, and it does some device management. There is a domain-joined service for laptops. Intune has a similar service set. You do what is called the hardware hash join into the Microsoft Intune to have the laptop cleaned by an organization rather than turning on a VPN and connecting to a domain service for a domain controller that an organization has. A lot of that is cloudly or natively handled by Intune. Especially if you go further with the Intune hardware hash joining process, there are some script sets that were put out. You can even do hardware hash harvesting from where you are purchasing, so you can have the OEMs give you the hardware hashes to be able to input that into your cloud environment. You then know that anyone cannot just walk away with the laptop because it is still joined to your Intune base.

In terms of differences between these two solutions, there is the domain service set. Intune manages the whole domain set, and then it also integrates into the other application sets. Intune is more of a product suite set. It also does the policy and detection pieces for devices, whereas Symantec is more strictly the policy sets and security.

Intune can bring all of your endpoint and security management tools into one place. For the use case that we are doing, we are leveraging additional security software as well, so there is a little bit of everything.

We are not using it for corporate assets. We are utilizing the M365 VM license set, which is a semi-part of Intune. That is how the users are reaching some of the remote corporate resources.

I would rate Intune a 9 out of 10. It is definitely a nice product, but there are nuances to it. Especially with them coming out with and changing name schemes for a lot of the features, you have to do digging to find the whole use case, but with all the options and different use cases, there is a lot to be gained.

I have worked in various roles with Intune. In my previous organization, I supported Intune on a job board. Currently, I am in a consulting role, responsible for development, deployment, and other aspects of Intune. This experience has given me a well-rounded understanding of Intune's support and implementation aspects.

We implemented Intune to manage devices across multiple operating systems, including Windows, Mac, iOS, and Android. My expertise lies in device enrollment, compliance enforcement, configuration management, Autopatch, Autopilot for Windows, and application provisioning through Apple Business Manager for Mac devices.

We have clients who have deployed Intune on a hybrid platform and others who are fully cloud-based.

Intune's security management capabilities effectively meet our compliance requirements. While there may be a few unique instances where our needs are particularly complex and don't perfectly align with Intune's design, it's clear that Intune comprehensively addresses the compliance standards and policies necessary for any organization.

Intune serves as a unified platform for managing endpoint and security tools. As a comprehensive management solution, Intune allows for centralized control of various aspects of device and security management. In terms of Microsoft Defender, Intune seamlessly integrates certain features of this advanced security product, providing an additional layer of protection. This integration streamlines incident management by centralizing relevant information and tools within a single platform.

With the advancements in Intune automation, the role of IT administrators has become significantly less complex than in previous years. Tasks that once required extensive manual configuration and monitoring, such as deploying security updates to Windows machines, are now streamlined through features like Windows Autopatch. This service automates the entire process, including policy creation, deployment, and monitoring. Additionally, Autopatch offers flexible deployment options, allowing for gradual rollout to pilot groups, IT staff, and the general workforce. As a result, IT teams can focus on higher-level tasks and reduce the time spent on routine maintenance.

Intune's user experience is generally seamless, with minimal user interaction required. While some applications might occasionally conflict, causing minor disruptions, Intune's compliance and configuration policies are typically applied in the background without significant user input. As a result, the user experience is generally straightforward, with few interruptions from Intune's administrative tasks.

If implemented, Intune can significantly enhance data protection, compliance, and security. By implementing security codes, we can control user-level access to applications and ensure that only authorized individuals can access company data. In case of device loss, we can remotely wipe the device to prevent data compromise. Intune also plays a crucial role in productivity. Deploying and managing applications through Intune is straightforward, and it supports a wide range of applications, including built-in ones. These features make Intune a valuable tool for organizations seeking to improve data protection, security, compliance, and overall productivity.

Intune effectively secures hybrid work and protects data on both company-owned and BYOD devices. For company-provided devices, MDM enrollment ensures robust security. However, BYOD devices rely on MAM, requiring user interaction through the company portal or Authenticator. While most users comply, there are instances of resistance to installing the company portal app, making MAM management challenging. To address this, Microsoft could explore alternative solutions that avoid the necessity of the company portal on personal devices, accommodating user preferences.

Intune enhances IT efficiency by streamlining application deployment. Applications developed for Intune are directly accessible within the application list, eliminating the need for separate provisioning from third-party vendors. Microsoft's extensive collaborations with numerous applications ensure that features and upgrades are managed seamlessly through Intune. Overall, Intune offers a promising solution for current IT productivity needs.

Intune offers comprehensive compliance features, covering even the intricate registry aspects of Windows security. Through the settings catalog, we can configure virtually all desired settings. Existing templates can be customized, and we can delve deeper into the same settings previously configured in our on-premises environment. For those transitioning to hybrid or cloud environments, Intune provides numerous features that can be customized or replicated from on-premises, offering a seamless transition.

As an IT administrator, I appreciate Intune's ability to implement granular device-level policies for our organization's employees. This allows us to enforce company-wide regulations and ensure compliance while minimizing the risk of data breaches. Intune's user-friendly interface and straightforward accessibility make it a valuable tool for IT staff and employees.

The enterprise application management feature in Intune Suite for app discovery, deployment, and automatic updating is well-suited for Windows devices but is premature for Android and iOS. From an administrator's perspective, managing Windows apps with Intune is relatively straightforward. However, for Android and iOS, the feature requires further refinement due to their third-party operating system nature. While Android devices pose fewer challenges, iOS devices often necessitate using Apple Business Manager as an intermediary, complicating the management process. This is particularly evident when considering Apple's role as the primary manager of iOS devices.

Intune could be enhanced by automating application upgrades, similar to how it automates operating system upgrades. This would streamline the process and reduce manual effort, especially for organizations with multiple applications requiring regular updates. Additionally, the tenant dashboard could be more user-friendly by providing more customizable options and charts for monitoring various aspects of the Intune environment. This would allow administrators to easily access and track key metrics without navigating through multiple menus.

I have been using Microsoft Intune for three years.

I would rate the stability of Intune eight out of ten.

I would rate the scalability of Intune eight out of ten.

Regarding the frontline support we contact, they could be more responsive. While the support is essentially the same for all users, Intune customers' response times, reservation times, and overall service are influenced by their license agreement. There is room for improvement in this area. Ultimately, we use the same product and license, but premium customer service comes with an additional cost. For instance, clients with premium licenses and support add-ons typically have issues resolved within three to four days, compared to seven to eight days for those without premium or unlimited customer service.

Neutral

I have experience with Jamf and NBF solutions. While Jamf offers robust capabilities for managing iOS devices online and is user-friendly, it surpasses Microsoft Intune in its features for Mac devices. However, Intune remains a better choice for Windows devices.

The initial deployment of Intune can be improved by automating enrollment processes for Windows Autopilot. This would streamline the process and reduce the number of options IT admins need to manage. Additionally, automating the initial Intune procedures performed by IT would further simplify Windows Autopilot deployment.

The deployment time varies depending on the operating system. For Windows, it can take around ten hours. Android deployment takes 15 to 20 minutes. iOS deployment requires more time due to intermediaries between the device and Apple Business Manager. Setting up a connector between Apple Business Manager and Microsoft Intune, creating profiles on both platforms, and procuring licenses for the device on both ends are necessary steps for Mac deployment. Windows deployment is simpler, and methods like Windows Autopilot are less time-consuming.

The cost of the license and the features are justified for myself as a technical person.

I would rate Microsoft Intune eight out of ten.

The Microsoft Intune Suite is a valuable tool for companies seeking a reliable MDM solution. Given the current structural and developmental trends in businesses, Intune has become essential for ensuring data security, protection, and compliance. It's a user-friendly platform that's relatively easy to learn, even for those with limited IT experience, such as support staff. For individuals aiming to enhance their skills and explore cloud technology, Intune offers a solid starting point before delving into Azure. By beginning with Intune and gradually expanding their capabilities, users can effectively leverage the Microsoft cloud ecosystem.

Our clients are medium size organizations.

Intune necessitates regular maintenance. To ensure optimal performance, we generate quarterly reports that inform our planning for the following quarter. These reports enable us to identify areas for improvement in compliance, non-compliant devices, configuration issues, and security and application upgrades. By addressing these concerns proactively, we can enhance Intune's overall effectiveness.

With co-managed devices, integrating the Intune Suite can be challenging due to the interplay of on-premises and cloud environments. Determining which controls have precedence—cloud-based or on-premises Active Directory features like organizational units or first levels—is crucial. Cloud-based management simplifies this process as Microsoft handles many aspects automatically, reducing the need for extensive customization. Creating user-level profiles in Azure Active Directory is essential for backend operations. On-premises management often requires more manual tasks compared to cloud-based solutions.

Intune is a viable solution for those seeking a mobile device management tool, especially if they primarily use Windows devices. However, if a Mac environment is the primary focus, Jamf offers more comprehensive capabilities and features. For organizations with a mixed device environment, including Windows, Mac, Android, and iOS, Intune is a strong recommendation. Additionally, individuals aiming to enhance their skills in cloud technology can consider Intune as a valuable starting point.

We use Microsoft Intune to manage our endpoint.

Microsoft Intune simplifies endpoint and security management by unifying app deployment, device administration, and security features under one cloud-based platform. This lets us easily generate reports, and even remotely wipe missing devices through the Azure portal, enhancing overall endpoint protection.

Intune's user experience has been fantastic! The flexibility, especially with the company portal, allows users to independently install applications. This eliminates the need to constantly request installations from IT, saving everyone time.

Initially, some resistance and a learning curve slowed our adoption of Intune, but its benefits became clear during the shift to a remote workforce because of COVID-19. After initial deployment in 2020-2021, Intune simplified onboarding for new hires with remote access, allowing them to sign in to their laptops and gain immediate access to company resources.

Microsoft Intune helps with hybrid work models to secure company data by allowing employees to access work resources with BYOD while enforcing security measures on those devices.

Intune has positively affected our IT team's productivity. Everything is automated so their workloads have been reduced by 50 percent.

Intune has allowed us to consolidate other vendors. 

Microsoft Intune simplifies device management by replacing the traditional method of installing OS, joining a domain, and configuring everything manually. With a central management portal, we can easily group and manage all devices, eliminating the need to physically join them to a domain. This allows for seamless enrollment from anywhere, making Intune a user-friendly and flexible solution.

Manually syncing devices to enforce policies is cumbersome. Automating this process in Intune would significantly improve efficiency.

The licensing cost has room for improvement.

I have been using Microsoft Intune for three years.

We experience occasional delays with Intune, especially during updates, software deployments, and device syncs. While changes on the Intune portal should ideally reflect immediately on all devices, restarts or repeated syncing might sometimes be necessary for policy updates to reach endpoints. However, Intune functions well once everything is up-to-date.

Microsoft Intune is scalable as long as we have the licenses.

While SCCM offers a lower upfront cost with a single license, Intune's cloud-based subscription model provides greater flexibility and more features. Although continuous subscription fees make Intune more expensive over time, its functionality outweighs the cost factor for many users, especially those who don't require constant network connectivity for updates.

The initial deployment process was straightforward. We followed the on-screen instructions, downloaded the necessary software from the cloud, and our device was ready to use.

The time it takes to deploy Intune depends on our internet speed and location. On a fast network, deployment can be completed in ten to 20 minutes. Slower connections with high latency can take 30 to 45 minutes, and remote offices with limited bandwidth may require up to an hour or two.

Two people were required for the deployment.

The implementation was completed in-house.

Using the Cloud is expensive. Perhaps in five to ten years, we will see some cost savings.

The Intune license model is costly. We need to have an enterprise mobility license to use Intune. 

I would rate Microsoft Intune eight out of ten.

Our organization is currently piloting Microsoft Intune Copilot, which includes its AI functionalities. We're evaluating its features and functionality to determine its suitability for broader deployment across the entire organization.

Microsoft Intune simplifies mobile device management with BYOD for businesses, reducing the total cost of ownership. Intune's user-friendly interface eliminates the need for extensive IT expertise, making it a strong recommendation for most organizations.

I started using this solution in the summer of 2021. It was three years ago, and I remember it was to deploy new computers. I aimed to get a brand new laptop with the processing system entirely configured and ready to work with applications deployed.

I would say Autopilot is a feature I really like. It allows us to send a brand new computer directly to the user without needing to go through IT. This capability is powerful as it allows us to remove any compromised device remotely, whether it gets stolen or not. 

It's a great product to secure data, although it might be a bit more complicated with iOS devices when you're using your own device. It's nice for mobile devices, though smartphones might be less suitable compared to personal computers. This solution saves us a lot of time once it's implemented.

I would like to see better integration with Microsoft. There are a few things I can still do with Jamf that I am unable to do with Intune yet.

I have been using the solution for three years.

Stability issues almost never happen. The worst case I experienced was when Autopilot failed a couple of times, but that's the only issue I had.

I did not use any previous solutions except Jamf for Apple devices.

The initial setup was somewhat between easy and difficult. It took about a month to learn how to use it, initially in a small environment. During the first implementation in March, I did not like all the new features as they took time.

I used it twice. The first implementation took a long time, and there were two of us the second time.

I am sharing my experience between Intune and Jamf. Regarding the user experience, I'm not sure that users realize what Intune does for them. It automates tasks so that from their perspective, things happen automatically without understanding what is being done. 

I'm not sure about the name, but I had a personal plan because I started using it without training. It took a few weeks to learn how to use it properly. For application deployment, maintaining packages for updates is necessary. I advise using a testing environment and taking the time to understand how this will impact the infrastructure before putting Intune into production. 

Overall, I would rate this product seven out of ten.

Our primary use case is managing our devices and policies and having a consistent way to manage devices on the Windows side.

Implementing Microsoft Intune has provided a more streamlined and consistent method for device management across our multiple domains, effectively consolidating our administrative efforts.

The Microsoft Intune user experience is good. I would rate it eight out of ten.

Within Intune, managing policies and having a consistent way to manage devices is valuable.

Intune is a constantly evolving product, with Microsoft prioritizing its development over on-premise tools. While no specific feature requires immediate improvement, the ongoing expansion of reporting and inventory capabilities promises to enhance its utility.

I have been using Microsoft Intune for at least seven years.

The Microsoft Intune stability is getting better, and I would rate it eight out of ten. A couple of years ago, the performance was not as good as it is now, but there are noticeable backend improvements.

Microsoft Intune's scalability has improved over the years.

Positive

We used Configuration Manager and are continuing to use it. The addition of Intune was due to Microsoft's direction.

I would rate Microsoft Intune eight out of ten. Nothing is perfect, but it's good.

We began using Copilot, but it is currently restricted to a select few. Due to its potential for increased productivity and improved user experience, we are advocating for its wider adoption.

For the most part, we use it to manage mobile devices. Most of the time, they are Windows devices. We manage them by deploying policies so that we can control the antivirus on them and enable BitLocker to encrypt internal drives. We can also control and maybe lock down some Windows settings to ensure that people are locked down and they can only access certain applications.

By implementing Intune, the biggest problem that we wanted to solve was the protection of company data. We wanted to ensure that if a phone or a laptop gets stolen, the company data does not fall into the wrong hands. Secondly, we wanted protection against any rogue employees who might resign or send company data to any of the competitors. So, for the most part, it was device security and governance. They ensure the protection of company data. That is the biggest problem that gets solved with Intune.

Mobile application management has been the best for mobile devices. It is the most efficient and most sought-after feature compared to full mobile device management. When it comes to personal devices, most people feel that the features and the policies are too invasive, and you are interfering with personal data. This is why mobile application management has been the best feature for cell phones. This is the feature that has been deployed the most.

Intune has supported us in terms of efficiency. It makes work easier and reduces internal IT admins' workload. Instead of an admin having to manually install an application on a device, the auto-deployment feature for the application has tremendously reduced the time that an IT admin spends on end-user devices.

Intune along with Defender 365 brings all endpoint and security management tools in one place. It is not only Intune on its own. You do have the Defender 365 component as well. However, for device management, Intune does bring it all together, and you can do at least 80% to 90% of your management from Intune.

It affects our IT and security operations positively. It allows for increased security and most definitely assists with efficiency and time management. It has saved about 30% of the time overall.

Intune is very easy. As long as you have the knowledge, it is very easy to navigate, and they are always improving. It just gets easier and easier as the months and years go by.

With Intune, we have better security, improved device management, and ease of policy management. We spend less time trying to configure devices. There is better time management, ease of access, ease of deployment, ease of patch management, etc.

I use Intune's Endpoint Privilege Management feature. It works quite well, and I am quite satisfied with it.

Intune affects the users positively. It allows the end users to request access when needed. It also reduces the time spent by IT administrators. They do not have to contact users to initiate remote support calls whenever something has to be installed. It definitely increases security and enables less reliance on internal IT support.

It saves costs. There is probably 20% to 50% cost savings. It all depends on the size of the client or business, but there are definitely cost savings.

Intune has most definitely helped to consolidate vendors. This consolidation of vendors has affected our security posture most positively. There are some security vendors out there that are still slightly better with certain features that Intune does not have yet, but in terms of consolidation, it reduced costs, which is definitely a positive.

Intune integrates pretty well with other security solutions in the IT environments that we have. I would rate it a ten out of ten for that.

The security features are most definitely valuable. If I have to give an example, the lockdown features that prevent employees from configuring anything or downloading company data are valuable. We get high-quality device protection, malware protection, and information protection at the same time.

For autopilot, there should be more granularity on the settings that they offer at this stage.

The licensing model that they have for Intune add-on products should also be better. For enterprise app management, as well as endpoint privilege management, currently, there is an add-on license that the customers have to pay for. Microsoft needs to improve its costing model for that so customers would be more interested in utilizing those features. They should not have to pay additional costs for that.

In terms of securing hybrid configurations, they are not 100% there yet. There is definitely room for improvement. Overall, I am about 80% satisfied when it comes to that.

I have been using Intune for at least six years now.

It is pretty stable. I would rate it an eight out of ten.

I would rate it an eight out of ten for scalability.

Our clients are small, medium, and enterprise businesses.

I would rate them a five out of ten. They used to be great, especially when you purchased premium support. However, over the last year or two, their support has definitely deteriorated, but that definitely does not affect my recommendation to use Microsoft products. I would definitely still utilize them because the support is not always poor. There are times when you do get excellent support.

Neutral

I do have experience with other vendors. It depends on which product we are referring to, but in terms of ease of use, I would definitely put Microsoft high up on the list. In terms of consolidated management, you can do everything in one place, whereas in other products, you might need three or four different products to accomplish the same thing.

Its deployment model depends on the client. We have all kinds of deployment models.

Its deployment is average in terms of complexity. It is highly client-dependent. If it is a new client, the deployment is very easy. If it is an existing client, it can be moderate to very complex.

The deployment duration is also client-dependent. It can take a couple of days or a couple of weeks.

It requires maintenance. It is not maintenance in the sense that you must do something to improve it. As new features come out, they change the policies. You must deploy the new set of policies as Microsoft recommends it, but it is not high maintenance. It requires occasional maintenance.

It is average. Some of the costs are quite high depending on what the customer currently uses, but overall, it is not bad. I would not say that I would not recommend Intune based on the cost. I definitely would, but they can definitely improve on the cost. So overall, its cost is not bad.

I would definitely recommend Intune because of the improvement in efficiency and security posture and ease of management.

I would rate Intune an eight out of ten.