Microsoft Intune Reviews

We use the solution for endpoint management for about 15,000 devices. It helps us ensure compliance and security for our devices according to standards. We also use it for application management, security and compliance, and centralized management from a single point. So, it covers endpoint management, app management, and compliance management and provides centralized control.

We were trying to solve many issues, mainly the lack of centralized management. Before Microsoft Intune, we had to manually support devices one by one, installing applications and configuring policies individually. When we implemented the tool, it became much easier to manage our devices. We enroll them in Microsoft Intune and can manage all devices with a few clicks. For application management, it's the same process. If we want to deploy applications to hundreds or thousands of devices, we can do it easily with just a few clicks. This also applies to policies. 

I have been using Microsoft Intune and another solution for endpoint management. What I like the most about IT is that it's a cloud-based solution. We don't need any on-premises infrastructure to manage it. It's easy to access the portal from anywhere securely. This setup reduces our workload because Microsoft handles everything related to the infrastructure, including notifications about any downtime. This way, we can inform our customers in advance.

We are currently using different solutions, but all from Microsoft. We use Microsoft Defender for Endpoint Security. it also includes Microsoft Defender. In the future, we might use these tools for security purposes.

The solution's user experience is very good. Compared with on-premises solutions, it deploys applications and policies faster, resolving user queries in less time. Configuring anything is easier; users only need to follow a few basic steps, such as installing the company portal app and logging in with their ID and password, to integrate their device. Unlike on-premises solutions, which can be confusing, the solution allows us to manage various devices, including Linux, mobile devices, and Windows. 

It functions similarly to on-premises but offers additional features. For example, we can maintain applications downloaded from the Microsoft Store and onboard them as a solution for user-based deployment. This reduces the need to create manual packages, as most applications are available on the Microsoft resource.

The solution needs to improve reporting. Sometimes, it shows double or triple entries of the same thing, which affects the count's accuracy. Also, some applications onboarded in Microsoft Intune do not get updated. When we look for solutions online, there is often no clear answer.

Microsoft Intune has no automatic cleanup option for devices that haven't been used for over 90 days. It would be beneficial for Microsoft to add such a feature.

I have been using the product for two years and six months. 

The solution is stable, but there was one incident where we faced an issue with a security patch. We didn't receive any notification about this problem, which caused significant issues in our infrastructure. Regarding SLA, we now receive multiple notifications from Microsoft about planned downtimes. 

The tool is used by users in our environment across various locations, including RU, APAC, China, India, Pakistan, and Germany. It is scalable. 

Microsoft support takes time to respond. 

Neutral

The installation and implementation were very easy compared to on-premises solutions. We just needed one Azure account to create a tenant and log in to endpoint management. The setup required only a full subscription. On-premises setups, by contrast, need multiple servers, VPNs, and IP configurations, which is much more complicated. Configuring the tool took around 10-20 minutes, and only one person was needed.

The solution has reduced manual labor by approximately 15%. Many business applications, such as Google Chrome and VLC Media Player, are available in the Microsoft Store. We still need to manually create packages for a few custom applications used by our organization that aren't available in the Microsoft Store. However, we can onboard the majority of applications without creating manual packages. Being a cloud-based solution, it eliminates the need for multiple on-premises servers and the associated infrastructure. We only need a cloud subscription to manage everything. We can save around 40 percent on costs with Microsoft Intune. It has also helped us save money, time, and resources by 50-60 percent. 

We use the workbook to describe data on device compliance. It helps us generate reports and analytics about how many devices are compliant and how many are below the patch compliance deadline for updates. We do use some of the reporting features. For endpoint security, we can check how many devices have been affected by malware and how many have an updated Defender platform.

Microsoft Intune is a cloud solution, so there's no need to maintain servers, patch networks, or configure network info. It provides EDR capabilities. The solution also allows for mobility management, meaning we can manage mobile devices. Additionally, it can manage Chrome OS and Linux devices, though we aren't currently using that feature. The tool offers a centralized solution for deploying policies, compliance policies, application management, and patching servers and workstations.

The product has reduced our costs and centralized management. We can manage all our devices from a single console, which is very effective for reporting.

It simplifies deploying applications. We can push policies to ensure only certain users can access specific applications. Additionally, Intune allows us to create user and device groups.

Currently, we manage privileges through Azure AD. We have groups set up with specific group policies and restrictions. For example, we've assigned certain licenses, such as E5 and Office 365 Copilot licenses, to users through these groups, granting them the necessary privileges to access these features.

The solution supports logging, which helps us easily trace and identify issues. It also provides many reports on device compliance and configuration. This capability helps us reduce the time required to reach out to Azure. 

It centralizes the management of users, groups, and applications. In an on-premises setup, we would need multiple teams, such as an AD and application packaging team. With Microsoft Intune, we don't need to create packages for many applications, as they are already available in the line of business.

I would recommend it to other users because it's a cloud solution that centralizes the management of endpoint devices, security, and Azure products. However, I would mention that reporting is an area where the tool could improve, as it's crucial for some organizations. If reporting is a critical need, Microsoft Intune might not fully meet those requirements.

I rate it an eight out of ten. 

We use Intune for Windows computers, and we also have iOS phones.

Intune simplifies mobile application management. It is very good. Its console is perfect. I am satisfied with it.

Intune works well with Microsoft Defender. Intune brings all of our endpoint and security management tools into one place. It is very good. We can manage the firewall and other things. It is very good for the security of computers.

Intune provides full endpoint visibility and IT control across device platforms, but we need to have RBAC for the IT. We have to assign appropriate roles and manage the scope based on, for example, the country and division.

We can use Intune for computers on the cloud, and we can also use it for a hybrid setup with on-premises and cloud computers. We can use Microsoft Endpoint Configuration Manager to manage all the hybrid devices.

We have a lot of reports for data. There are reports related to Windows where we can see whether all the computers have required updates or not. We can also do an inventory of all applications on the computers. We can also do application installation across the company.

Intune works with Log Analytics for Azure. It is a tool for monitoring and analyzing log data.

We can configure Intune for compliance settings. It provides a method to know if a computer is compliant or not. We can use conditional access to allow or block connections. For example, we can set a condition where if a computer is not hybrid, we do not allow the connection to Azure or we block the Office access for that computer. We can configure a compliance setting to know if a computer is compliant or not. We can also block access if a computer, for example, is not encrypted. There are many settings that we can configure, and we can generate reports to see the compliance.

For application deployment, there are a lot of methods that we can use. We can do it from the company portal from Microsoft. It is very easy for IT to configure. We can package, for example, an SAP application in three seconds. We have the possibility to use the automatic detection rules and package our internal application. We have a lot of possibilities. We can use the applications from the store, or we can package our internal applications. I find it very rich.

It is easy to use Intune. We do not have to work with agents. We do not have issues related to agents. With SCCM, we had to use an agent, and there were certain requirements. For example, we had to use a local administrator account, whereas, with Intune, we do not need to do all this. It is all cloud. It is very simple and easy to use.

It is very easy to configure deployment policies. For example, we can deploy something just for Windows 11 and not for Windows 10. It is very rich when it comes to deployment and configuration profiles. Intune is now much better than before.

Configuration profiles, remediation, scripts, and auto-pilot features are very good.

The user experience of Intune is very good for me. The user interface and navigation are very simple and clear. It is very easy to use for managing Windows, iOS, and other environments. People at IT level one and level two will find its console very simple to use. It is very useful.

There can be more logs. I do not have any other requirements. I am very satisfied with it.

I have been using Intune for six years.

It is stable.

It is very scalable. I would rate it a ten out of ten for scalability. 

Our clients have a lot of users. We have 16 or 17 people working with this solution.

I opened a lot of tickets. Their team is responsive, and they respond quickly to help users. I would rate them a ten out of ten.

Positive

For remote access, we are not using Intune, but in my previous company, we used Intune for that. It worked very well. We did not have any problems with it. For managing remote devices, we are using Bomgar.

We have a lot of departments. We are using Intune only for the production computers. For others, we use SCCM. We have a hybrid environment.

It is a cloud solution. Its deployment took about 40 minutes.

It does require maintenance.

It is not expensive.

We trust Microsoft. They are a big and good company. Microsoft is working very hard on security. We do not have any problems with Microsoft.

I would recommend Intune for all companies. It is a very centralized and good solution.

I would rate Intune a ten out of ten.

Our primary use case is managing our devices and policies and having a consistent way to manage devices on the Windows side.

Implementing Microsoft Intune has provided a more streamlined and consistent method for device management across our multiple domains, effectively consolidating our administrative efforts.

The Microsoft Intune user experience is good. I would rate it eight out of ten.

Within Intune, managing policies and having a consistent way to manage devices is valuable.

Intune is a constantly evolving product, with Microsoft prioritizing its development over on-premise tools. While no specific feature requires immediate improvement, the ongoing expansion of reporting and inventory capabilities promises to enhance its utility.

I have been using Microsoft Intune for at least seven years.

The Microsoft Intune stability is getting better, and I would rate it eight out of ten. A couple of years ago, the performance was not as good as it is now, but there are noticeable backend improvements.

Microsoft Intune's scalability has improved over the years.

Positive

We used Configuration Manager and are continuing to use it. The addition of Intune was due to Microsoft's direction.

I would rate Microsoft Intune eight out of ten. Nothing is perfect, but it's good.

We began using Copilot, but it is currently restricted to a select few. Due to its potential for increased productivity and improved user experience, we are advocating for its wider adoption.

I use Microsoft Intune to enroll devices and monitor them. Sometimes, I need to wipe a device or reset it remotely. We use it in the retail industry for around a thousand enrolled devices.

Microsoft Intune has allowed us to have one point of visibility for all the devices and has made it easy to add and remove devices. It has helped with productivity by reducing the time needed to refresh a device, enabling us to do it remotely instead of sending it back for reimaging.

The most valuable features of Microsoft Intune include providing visibility into devices and the ability to manage them remotely. This capability is crucial, particularly for managing Bring Your Own Device (BYOD) settings by setting restrictions and policies. 

Intune has also improved our asset management from a security standpoint and has consolidated vendors, enhancing our security posture. 

Moreover, it has significantly reduced the time for device resetting by about ten to fifteen percent, translating into cost savings.

I don't have any recommendations for improvements right now. I'm happy with using it as it is for now. Possibly, in future releases, it could be more enhanced. Currently, I don't have any suggestions.

I have been using Microsoft Intune for about three years now.

Microsoft's service and technical support for Intune have been good. Although I don't use them often, the support has been satisfactory on the occasions I have.

Positive

We were using SOTI and switched to Intune for its integration with Azure.

The initial setup of Microsoft Intune was straightforward.

I'm not part of the deployment team, but from what I know, it was fairly quick.

The productivity gains from using Intune result in time savings, which translates as cost savings. Consolidating vendors has also impacted our security posture. Intune has reduced the device resetting time by about ten to fifteen percent.

The pricing is integrated with Entra, making it better than paying for a separate platform.

Overall, I would rate Microsoft Intune an eight out of ten.

I use it for deploying software and managing devices.

Microsoft Intune brings all of our endpoint and security management tools into one place. I can log into only one console and jump from one system to the other system seamlessly.

It is easy. When I hand out a new device to new users, I ask them to enter their email address and password. They just need to give the device 15 to 20 minutes, and it is done. Users can then start working on their devices.

It just works. I do not have to run after the software to see if it is the latest update. It just runs. It is setup-and-forget.

Microsoft Intune makes it easy to secure hybrid work and protect data on company and BYO devices. Once you have set up all the rules, it just works. You cannot mix personal data with company-related data. Also, no data can be extracted from the business aspect to the personal one.

Microsoft Intune's Endpoint Privilege Management feature enables us to enforce the least privileged access. For me, it is a big advantage to only have the rights I need and not the ones I do not need. For every specific case, I just request the required role for it, and afterward, I deactivate the role. From the security aspect, it is at a very high level.

It helps reduce data loss. It helps with data loss prevention. We also use multifactor authentication and block unknown devices and unknown users. Any external attacks are blocked via a lot of mechanisms. We can use our privileged roles only inside a closed network and with PKI-based authentication.

Microsoft Intune has affected the IT productivity in our organization in a positive way.

It is very important for us that its capabilities are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. This feature was one of the major things when we started digitalization.

The ability to work from all over the planet is valuable. You just need a functioning and working Internet connection. You can enroll devices by binding the hash values in Intune. You can enroll them from wherever the person is. It makes no difference if he is sitting at home or office or is on vacation.

They are always rolling out updates. You get more and more possibilities to enroll devices and configure their settings and security. I have confidence in the setup they have provided so far. I, as such, do not have any specific inputs or needs. However, there is always room for improvement when it comes to scalability.

I have been using Microsoft Intune for almost six years. I am always using the latest version. It is a cloud platform, and it is updated almost every month with new features.

I would rate it an eight out of ten for scalability. There is always room for improvement when it comes to scalability.

Their technical support is great. We always get an answer from Microsoft.

Positive

We were using Microsoft System Center Configuration Manager. We did not use any other vendor.

Using Microsoft Intune did not help us consolidate vendors. Our strategy is to not mix up too many different vendors and have just one. The best thing is that if you want to use Microsoft Azure and Intune, you can use the features out of the box. You do not need big modifications. You can take the default and build everything around your needs, and it will work.

This is the platform for every enterprise. It is easy to manage all devices such as Windows, iOS, and macOS in one place. You can also manage Android devices.

Overall, I would rate Microsoft Intune an eight out of ten because there is always room for more modifications and improvements.

We've experimented with and deployed Autopilot for building and deploying software through Intune, utilizing Intune policies to modify Azure AD joined systems, now referred to as Entra joined. This covers the entire scope of Intune that we've explored and implemented.

We are a consulting company with extensive experience in deploying Intune. We utilize Intune for hybrid join Entra machines. For clients who have the necessary licenses, while Intune is not a full-fledged Remote Monitoring and Management solution, it can serve as an effective replacement for RMM if you are a Managed Service Provider.

While more mature tools exist for securing hybrid work and protecting data on BYOD and company devices, Intune is a viable option for clients who want to leverage MDM with their Premium or E3 license, especially if cost is a major concern. Despite some challenges with Samsung Knox and iOS devices, Intune has shown improvement, and these issues are less frequent. As Microsoft doesn't have a native phone, limitations are inevitable.

The Mobile Device Management in Intune is a valuable feature.

Microsoft recently separated Defender into Security. Intune does not centralize all endpoint and security management tools into one place. It used to be more centralized.

The Microsoft support has been subpar for some time now. Troubleshooting issues often require us to involve a partner, which isn't an ideal or easily manageable solution given the challenges with Microsoft support. We need a reliable partner, but that partnership might still require Microsoft's assistance.

We've faced significant pushback with Copilot as our clients aren't seeing a favorable cost-benefit analysis. Many are opting for ChatGPT Enterprise instead of integrating Copilot into their workflows. We initially expected significant value from Copilot, but Microsoft's pricing is excessive, and the product itself is not exceptional. It remains quite rudimentary in its current state.

Microsoft should not rely on partners to fix issues. While users can open tickets with Microsoft, they often cannot resolve the problems themselves and must engage a partner. This is not an à la carte solution. Perhaps when Copilot eventually becomes available, it will address this. It's not Intune's fault, as it is used frequently.

I have been using Microsoft Intune for ten years.

The technical support is not good.

Negative

We tried numerous solutions prior to Intune, but Microsoft's inclusion of it within their licensing model incentivized us to adopt it. Since we were already paying for the license, it made sense to leverage its full potential and maximize our investment.

If you're subscribing to Premium or E3, there are no additional costs for Intune, it's included. However, with lower-tier plans, you don't get the full suite of security features. Depending on your specific licenses, you might have some level of Advanced Threat Protection, Endpoint Detection Response, or other Defender tools, but not the complete package. Generally, for around 300 users, you get decent protection with Defender for desktop and server – it's a good value. But with E5 licenses, you're at the enterprise level, and you get what you pay for, so expect add-ons. I don't think Microsoft would position Intune as a primary security product anymore, given their recent cloud changes and the focus on Defender. Intune is useful for patching, but it's not a comprehensive security solution in itself. That's why Microsoft has rebranded their security offerings under security.microsoft.com.

I rate Intune six out of ten.

Many of our clients with premium or E3 or above licenses use Intune because it's included in their Microsoft solution. They prefer to leverage a Microsoft product over a third-party alternative. Additionally, Intune allows us to maximize the value of our clients' existing licenses. Therefore, if a client has a premium license, has under 300 users, or is on E3 or above, there's no reason to use another solution when Intune is readily available.

Microsoft recently transitioned from Intune to Endpoint, then back to Intune. Additionally, they moved certain security aspects of Purview into a separate deployment, as is the case with their ATP Defender Suite. This shift signifies a move away from a single, unified management interface to a more distributed model.

We use the enterprise application management feature to roll out apps. While there are better tools available for app discovery, deployment, and automatic updating, Intune's inclusion in the Microsoft bundle keeps costs down. Although Intune may not be the ideal solution for automated application deployment or MDM, its integration with Microsoft licenses makes it a worthwhile option, especially with the expectation of future improvements from Microsoft.

We use the Advanced Endpoint Analytics but it is no longer in Intune. It's been moved over to the security portal for Defender.

The endpoint analytics feature, which helps proactively detect and remediate anomalies and endpoints, is now part of Microsoft Defender formerly known as Advanced Threat Protection. Gartner rates it very highly. To perform threat hunting, we need the appropriate licensing, such as a P2 Defender license. This functionality is not available within Intune. We are transitioning from the older Advanced Threat Protection to the newer Microsoft Defender platform. Previously, configuration was done through Intune, but now we manage it through the Microsoft security site.

My advice for any organization that is already paying for a Premium or above Microsoft license is to deploy Intune because it makes financial sense. Intune is not a bad tool but if they run into any issues, the Microsoft support is no good so they need to rely on a good partner to help resolve the issue.

Microsoft cannot fully replicate the functionality of a Remote Monitoring and Management tool. However, it could incorporate certain RMM features into its existing products or develop new tools that complement RMM solutions.

By implementing Intune, we are exposing aspects of our infrastructure to the cloud that traditionally would remain on-premises. This means relying heavily on Microsoft's infrastructure and security. As we saw a few years ago with the Department of Justice's issues, which were clearly Microsoft-related, placing all our trust in one provider can lead to potential problems. However, despite these concerns, we have not encountered any security issues with Intune to date. But at the end of the day, we are maximizing our license.

Intune deployment is straightforward if you're well-prepared, whether for a hybrid setup or a purely Azure-based one. Packaging new apps is generally well-documented, but troubleshooting can be trickier. There are helpful PowerShell scripts available, though they might not be easy to find.

For the most part, we use it to manage mobile devices. Most of the time, they are Windows devices. We manage them by deploying policies so that we can control the antivirus on them and enable BitLocker to encrypt internal drives. We can also control and maybe lock down some Windows settings to ensure that people are locked down and they can only access certain applications.

By implementing Intune, the biggest problem that we wanted to solve was the protection of company data. We wanted to ensure that if a phone or a laptop gets stolen, the company data does not fall into the wrong hands. Secondly, we wanted protection against any rogue employees who might resign or send company data to any of the competitors. So, for the most part, it was device security and governance. They ensure the protection of company data. That is the biggest problem that gets solved with Intune.

Mobile application management has been the best for mobile devices. It is the most efficient and most sought-after feature compared to full mobile device management. When it comes to personal devices, most people feel that the features and the policies are too invasive, and you are interfering with personal data. This is why mobile application management has been the best feature for cell phones. This is the feature that has been deployed the most.

Intune has supported us in terms of efficiency. It makes work easier and reduces internal IT admins' workload. Instead of an admin having to manually install an application on a device, the auto-deployment feature for the application has tremendously reduced the time that an IT admin spends on end-user devices.

Intune along with Defender 365 brings all endpoint and security management tools in one place. It is not only Intune on its own. You do have the Defender 365 component as well. However, for device management, Intune does bring it all together, and you can do at least 80% to 90% of your management from Intune.

It affects our IT and security operations positively. It allows for increased security and most definitely assists with efficiency and time management. It has saved about 30% of the time overall.

Intune is very easy. As long as you have the knowledge, it is very easy to navigate, and they are always improving. It just gets easier and easier as the months and years go by.

With Intune, we have better security, improved device management, and ease of policy management. We spend less time trying to configure devices. There is better time management, ease of access, ease of deployment, ease of patch management, etc.

I use Intune's Endpoint Privilege Management feature. It works quite well, and I am quite satisfied with it.

Intune affects the users positively. It allows the end users to request access when needed. It also reduces the time spent by IT administrators. They do not have to contact users to initiate remote support calls whenever something has to be installed. It definitely increases security and enables less reliance on internal IT support.

It saves costs. There is probably 20% to 50% cost savings. It all depends on the size of the client or business, but there are definitely cost savings.

Intune has most definitely helped to consolidate vendors. This consolidation of vendors has affected our security posture most positively. There are some security vendors out there that are still slightly better with certain features that Intune does not have yet, but in terms of consolidation, it reduced costs, which is definitely a positive.

Intune integrates pretty well with other security solutions in the IT environments that we have. I would rate it a ten out of ten for that.

The security features are most definitely valuable. If I have to give an example, the lockdown features that prevent employees from configuring anything or downloading company data are valuable. We get high-quality device protection, malware protection, and information protection at the same time.

For autopilot, there should be more granularity on the settings that they offer at this stage.

The licensing model that they have for Intune add-on products should also be better. For enterprise app management, as well as endpoint privilege management, currently, there is an add-on license that the customers have to pay for. Microsoft needs to improve its costing model for that so customers would be more interested in utilizing those features. They should not have to pay additional costs for that.

In terms of securing hybrid configurations, they are not 100% there yet. There is definitely room for improvement. Overall, I am about 80% satisfied when it comes to that.

I have been using Intune for at least six years now.

It is pretty stable. I would rate it an eight out of ten.

I would rate it an eight out of ten for scalability.

Our clients are small, medium, and enterprise businesses.

I would rate them a five out of ten. They used to be great, especially when you purchased premium support. However, over the last year or two, their support has definitely deteriorated, but that definitely does not affect my recommendation to use Microsoft products. I would definitely still utilize them because the support is not always poor. There are times when you do get excellent support.

Neutral

I do have experience with other vendors. It depends on which product we are referring to, but in terms of ease of use, I would definitely put Microsoft high up on the list. In terms of consolidated management, you can do everything in one place, whereas in other products, you might need three or four different products to accomplish the same thing.

Its deployment model depends on the client. We have all kinds of deployment models.

Its deployment is average in terms of complexity. It is highly client-dependent. If it is a new client, the deployment is very easy. If it is an existing client, it can be moderate to very complex.

The deployment duration is also client-dependent. It can take a couple of days or a couple of weeks.

It requires maintenance. It is not maintenance in the sense that you must do something to improve it. As new features come out, they change the policies. You must deploy the new set of policies as Microsoft recommends it, but it is not high maintenance. It requires occasional maintenance.

It is average. Some of the costs are quite high depending on what the customer currently uses, but overall, it is not bad. I would not say that I would not recommend Intune based on the cost. I definitely would, but they can definitely improve on the cost. So overall, its cost is not bad.

I would definitely recommend Intune because of the improvement in efficiency and security posture and ease of management.

I would rate Intune an eight out of ten.

Nowadays, we've seen more evolution towards Autopilot for Windows 10 and then in a hybrid or cloud-only setup. After the Windows devices, we use it with Android, the most frequent mobile, and then iOS. I have five or six projects regarding Microsoft.

It helps deal with conflicting policies. We do a lot of graph API calls toward Microsoft for reporting, et cetera. 

It simplifies the work of the IT admins in a company if you set it up right. The setup will take some time, obviously. However, if you set it up right, it will simplify the management of your endpoints. The enterprise app management is great. With Intune, you can shorten the time needed for handling the necessary updates so that there are no vulnerabilities on the applications or on the operating system side of things.

The Intune suite offers a lot of features. 

The AutoPilot feature is helpful.

Endpoint privilege management is very good. You can bring your own device setup. You can use it in combination with conditional access policies for encryption.

Migration from on-prem to cloud is good.

The settings catalog and configuration profiles are also very, very useful.

Intunes brings all of our endpoint and security management tools into one place. This is a good thing. We now have one portal to check instead of dozens. I'm really happy with that.

The overall user experience is quite nice. I have no complaints from end users regarding their devices enrolled in Intune.

We've used Copilot. We have nothing to complain about, however, it is very expensive. With Copilot, we summarized a few of our policies and devices, which were great. We check the properties of the devices, hardware, of the devices, and so on. Mostly, we played around with the summaries of the policies, however, we switched it off since it was running for a couple of days, and it was a few hundred euros for those few days. 

Witnessing the benefits of Intune happen quickly. Clients usually begin to see benefits after the kickoff meeting. Intune is an ongoing development product. It helps both greenfield and existing setups. It's not static. We'll work with policies and versioning, and after every quarter, we'll review our policies and update where necessary. If clients used Intune managed services, they get policy updates included in the managed service. 

Intune is good for securing hybrid work and protecting data of the company while bringing our own devices. We use device framework policies from Microsoft themselves with some minor adjustments. They have level one, level two, and level three policies. You can just fix the settings of their site, and that's also what we use. Then we just tweak and bring in our own experiences. 

The endpoint privileged management enables users to enforce privileged access and can positively affect user productivity. In in small environments, the end users are, in 99% of the cases, also local admins on their devices, which is obviously not good. In bigger environments, we get into that less often as it's more of an organized thing. That said, in small environments, everybody is a local admin and that brings certain risks with it. So users can install and download everything they want. With endpoint privilege management, we can set rules for specific applications, and then, a user can ask for approval to run a certain application, which is very good. 

Intune positively affects overall IT productivity in organizations. If users need to install it on a device that they need in their workday or day-to-day business, they can just grab it themselves from the company portal app. They do not have to wait. They do not have to enter a support ticket that goes to the help desk to request a certain type of software. They can do it themselves, so they save a lot of time.

Intune, when applied on the cloud, can save on costs. With the cloud, there's no on-prem infrastructure that needs service, electricity, space, or cooling, for example. 

There are a lot of features that need to be released. There is no copy-paste or fie transfer. There's more work to do. They don't live up to my expectations anymore. Microsoft has a history of releasing features that are not completely finished. 

Remote help needs to be better.

Reporting needs improvement. It's still lacking. The built-in reporting is pretty basic. In managed services, we have a lot more reporting. However, we had to develop it ourselves.

I've used the solution since the product launched, about 15 years ago. 

The solution is fairly stable. I cannot recall the last time that there was a health issue reported on the Microsoft side regarding Intune.

The scalability is perfect. I've had no issues with scaling. 

The communication between us and Microsft is good. They do come back with insights on what's to come. When it coms to support, if you are lucky, you will get a good tech that can help. The knowledge of some techs are insufficient. They may ask basic questions that are not relevant to the issue. You spend a lot of time re-answering questions you may have already addressed in the original ticket.

Neutral

I did not use a different solution previously. 

I've been in touch with MobileIron and AirWatch, however, that's very, very basic.

I work with both on-cloud and on-prem versions of the solution. 

The initial deployment is very simple and straightforward. I've been doing it for 15 years, so I understand the process. When people are new to Intune, there may be some complexity. There are many things that need to be considered. The learning curve can be steep. 

There is support from Intune for maintenance, like when an application fails to install. 

I tend to implement the solution myself. 

Some people have Microsoft 365 with a security add-on, and Intune is integrated. 

Copilot is expensive as an add-on.

It's a rather expensive solution, especially if you want to use all the bells and whistles. 

I've been involved with the solution as a customer, integrator, reseller and consultant. I'm a freelancer as well and use it myself. I'm selling licenses and doing greenfield setups for different customers. 

We've not yet used all aspects of Intune suite, which is a new collection of advanced endpoint management and security tools. We have demoed it, and we are showing it in workshops. However, we do not have it in a live environment. A lot of customers are hesitating to buy the Intune suite due to the price. Some users may be paying fifty euros per user per month and then would need to add another 10 euros for the Intune suite, and that's a big step since that would be a fifth of the license that they're already paying. 

It's helpful that Intune is integrated with 365. It's important that everything is integrated together so that the Microsoft ecosystem becomes seamless. 

I'd rate the solution 8 out of 10 overall. 

It's a fund product. The possibilities are almost endless. It will make your life easier.