Microsoft Intune Reviews

We use Intune for Windows computers, and we also have iOS phones.

Intune simplifies mobile application management. It is very good. Its console is perfect. I am satisfied with it.

Intune works well with Microsoft Defender. Intune brings all of our endpoint and security management tools into one place. It is very good. We can manage the firewall and other things. It is very good for the security of computers.

Intune provides full endpoint visibility and IT control across device platforms, but we need to have RBAC for the IT. We have to assign appropriate roles and manage the scope based on, for example, the country and division.

We can use Intune for computers on the cloud, and we can also use it for a hybrid setup with on-premises and cloud computers. We can use Microsoft Endpoint Configuration Manager to manage all the hybrid devices.

We have a lot of reports for data. There are reports related to Windows where we can see whether all the computers have required updates or not. We can also do an inventory of all applications on the computers. We can also do application installation across the company.

Intune works with Log Analytics for Azure. It is a tool for monitoring and analyzing log data.

We can configure Intune for compliance settings. It provides a method to know if a computer is compliant or not. We can use conditional access to allow or block connections. For example, we can set a condition where if a computer is not hybrid, we do not allow the connection to Azure or we block the Office access for that computer. We can configure a compliance setting to know if a computer is compliant or not. We can also block access if a computer, for example, is not encrypted. There are many settings that we can configure, and we can generate reports to see the compliance.

For application deployment, there are a lot of methods that we can use. We can do it from the company portal from Microsoft. It is very easy for IT to configure. We can package, for example, an SAP application in three seconds. We have the possibility to use the automatic detection rules and package our internal application. We have a lot of possibilities. We can use the applications from the store, or we can package our internal applications. I find it very rich.

It is easy to use Intune. We do not have to work with agents. We do not have issues related to agents. With SCCM, we had to use an agent, and there were certain requirements. For example, we had to use a local administrator account, whereas, with Intune, we do not need to do all this. It is all cloud. It is very simple and easy to use.

It is very easy to configure deployment policies. For example, we can deploy something just for Windows 11 and not for Windows 10. It is very rich when it comes to deployment and configuration profiles. Intune is now much better than before.

Configuration profiles, remediation, scripts, and auto-pilot features are very good.

The user experience of Intune is very good for me. The user interface and navigation are very simple and clear. It is very easy to use for managing Windows, iOS, and other environments. People at IT level one and level two will find its console very simple to use. It is very useful.

There can be more logs. I do not have any other requirements. I am very satisfied with it.

I have been using Intune for six years.

It is stable.

It is very scalable. I would rate it a ten out of ten for scalability. 

Our clients have a lot of users. We have 16 or 17 people working with this solution.

I opened a lot of tickets. Their team is responsive, and they respond quickly to help users. I would rate them a ten out of ten.

Positive

For remote access, we are not using Intune, but in my previous company, we used Intune for that. It worked very well. We did not have any problems with it. For managing remote devices, we are using Bomgar.

We have a lot of departments. We are using Intune only for the production computers. For others, we use SCCM. We have a hybrid environment.

It is a cloud solution. Its deployment took about 40 minutes.

It does require maintenance.

It is not expensive.

We trust Microsoft. They are a big and good company. Microsoft is working very hard on security. We do not have any problems with Microsoft.

I would recommend Intune for all companies. It is a very centralized and good solution.

I would rate Intune a ten out of ten.

We typically use Intune when we have workstations that we want to manage, but we do not want to connect to our legacy Active Directory. We use a combination of Intune and Azure Active Directory.

Intune is able to put together compliance and safety checks for our endpoint devices, but it is one of the protection or security solutions. We need to use other solutions as well to completely manage the security, such as Microsoft Defender or a third-party endpoint antivirus solution. Intune definitely helps with protection, but you need to make sure that you have your endpoint security software installed. Intune provides good visibility into which devices comply with your company standards and which ones do not.

Intune more or less provides full endpoint visibility and IT control across device platforms. It simplifies my work because it is easy to view which devices are compliant and which ones are not. All you have to do is establish or configure your company's device policies, and then from there, you make sure that you assign those policies to users. Intune is able to gather information about who is compliant and who is not. It saves time on security management and administration. The administrator does not have to go through all of the company devices deployed throughout the organization. It definitely saves time.

Users have a better experience because they do not have to do anything on their end. Everything is pretty much handled at the back. When they sign in to their computers, Intune kicks in, and they do not have to do anything for software deployment. It just takes a few minutes for the software on their devices to download. All the software is deployed by Intune based on their profile. It takes a few minutes. The users are happy with it because they are able to proceed to work without having to call the IT help desk to get assistance. For security and management, such as updating machines, they have control over when they can do the restart. They appreciate that their machine is being updated and looked after by the IT group. They see that policies are made personal, and they are able to seamlessly download the updates on computers.

Users' access to the company data through personal devices became more secure. It helps to segregate data from their personal devices or applications.

Intune has improved productivity. It has probably reduced the risk of security breaches by 20%. It cannot completely mitigate possible breaches in the company, but it improves the security posture for the devices being used by the users. A significant percentage of breaches rely on the users and user behavior. 

It helps us save costs, but I do not have any data. Security breaches cost a lot, and if it is able to mitigate a security breach, we have saved the cost of that breach.

The policy and compliance monitoring of devices and the software deployment are most valuable.

We have a bird's eye view of what is happening on the endpoint.

They should improve its compatibility with other operating systems such as iOS and Linux. It supports Linux but they still need to work on the iOS part.

I have been using Intune since 2019.

I have not worked with any other solution recently. 

It is easy.

We have seen an ROI.

It is reasonable for the features it has.

If you are just running Windows, it is very good. It is tightly integrated with Windows. Microsoft gives Windows users quite an experience. If you decide to deploy it for Windows, it allows you to take away the old Active Directory, and just rely on Azure AD. All of the policies and other configurable items are in there to manage security on your local machines. Of course, there are some caveats between the two, but security-wise and endpoint management-wise, it takes care of Windows from authentication and onboarding to software deployment and updates. I have very good experience using Intune with my Windows machines, but for other OS, it still needs to be improved.

I would rate Intune an eight out of ten. It lacks features for managing operating systems other than Windows.

One plan that we are currently testing for the near future is related to our BYOD fleet. Instead of opting for MDM, we have decided to use Microsoft Intune to manage access to our company through BYOD. Moreover, we plan to use Microsoft Intune to perform autopilot PC deployments in the near future.

We had two distinct issues we needed to resolve with Microsoft Intune for two different use cases. Firstly, for the BYOD scenario, we needed Intune to ensure a sufficient level of security while enabling users to bring their personal mobile devices. Secondly, we aimed to automate PC deployment, even when users are not connected to the network, due to the COVID pandemic and the increase in remote work. Currently, to reimage a machine, users must be on the network. Our goal is to enable them to reimage their machines from home, using autopilot.

We found that Microsoft Intune met our expectations for the BYOD section, and we are optimistic about its potential for PC deployment through autopilot. The main advantage is that Intune performs its intended functions effectively.

As a Microsoft 365 user, we found Microsoft Intune to be a practical choice since it was already included in the bundle. The solution was effective, so we didn't need to look for other options or invest in additional tools. Intune performed the necessary tasks efficiently, making our decision straightforward.

The UI is not user-friendly and has room for improvement.

I have been using the solution for four years.

We have not had a single outage in the last four years. Microsoft Intune is extremely stable.

Microsoft Intune is auto-scalable in the cloud.

The initial setup was straightforward. The deployment required two people from the third party and two of our architects, one for security and one for the network.

We used a third party and our architect for implementation.

We have seen a return on investment because we were able to quickly deploy and start using Intune.

Intune is included in the Microsoft 365 licensing package that we have.

We assessed VMware and found its MDM to be promising. However, since we were already utilizing other Microsoft solutions, and Intune was capable of meeting our requirements, we did not require further evaluation of additional solutions.

I give the solution an eight out of ten.

We have around 10,000 people in over 20 different countries whose devices are managed by Microsoft Intune.

There is no maintenance required for the solution.

I highly recommend Microsoft Intune to others.

I primarily use Intune for troubleshooting user issues. For example, if a user raises a ticket stating that Teams is not working and they cannot connect to the corporate network, I check if they are in the appropriate group for certifications like Wi-Fi and PKI. If not, I add them to solve the issue. I am also involved in pushing apps like safety apps. My current project involves ensuring compliance with policies, BYOD, CYOD, Apple Business Manager, APNs, and Apple Push Notification certificates. Enrollment is another task I handle.

Having everything in one place is useful for our IT and security operations. We can remotely do anything in Intune. It protects data on managed devices. It is very effective.

Intune allows us to deploy managed apps directly from the Microsoft store by adding an additional layer of security, automatically reviewing apps before they are installed on end-user devices. For example, if a user needs an application and it is mandatory for them, it is silently and mandatorily downloaded from the company portal.

It is a cloud-based service. It is easy to use and offers privacy.

Intune helps the organization manage access to its internal apps, data, and resources. 

I am pretty new to this solution. At this time, I do not have any areas for improvement. I have heard about some downtime, but I am not in the local IT team.

I have one and a half months of experience in troubleshooting. Currently, I have two years of experience with Intune. I handle iOS and iPad tasks, including applications and small works.

I have not faced any issues. I have heard about downtime, but our local IT team manages downtime issues.

It is scalable and capable of growing with the business.

Microsoft has a portal with good resources. I have not interacted with their support.

Neutral

I have not used any other solution previously.

Its pricing seems reasonable.

I would rate Intune a nine out of ten.

We use Intune for endpoint management to ensure they are updated with the latest patches. We also leverage Intune to oversee our applications and keep them current. Lastly, we employ Intune's remote tools for endpoint administration.

We implemented Intune to ensure our endpoints were updated.

Intune brings all our endpoints and security management tools into one place.

Intune is integrated with Defender to manage our security policies.

The user experience is good. Intune is easy to use and deploy.

Intune has significantly improved our IT productivity by automating the updates for Windows and third-party applications. This automation reduces costs and improves efficiency, allowing us to adopt a set-and-forget approach to software maintenance.

The automatic patching is the most valuable feature of Intune.

Intune needs to incorporate more tools to reduce the number of third-party applications we rely on. For instance, I currently use PatchMyPC to package new applications for Intune and then deploy them to endpoints. If Intune offered this functionality natively, we wouldn't need to rely so heavily on third-party applications.

I have been using Microsoft Intune for almost four years.

The technical support by Microsoft is terrible. 

Negative

The initial deployment was complex, requiring an expert for setup. It took one week to complete and involved one system administrator and me.

The implementation was completed in-house.

We have seen a return on investment from Intune through time saved, which correlates to around $20,000 per year.

I would rate Microsoft Intune seven out of ten. Intune is a valuable tool, but following the screen prompts can sometimes be challenging.

Two of us are responsible for the maintenance of Intune.

I am an Operations and Infrastructure manager. I do not use it directly. My team is the implementer, and I oversee it. I know the product, and I know what I can do and what it can do. I just do not push the buttons.

We are still launching it. We have about 85% of our PCs in Intune. We have only got two or three conditional access policies and compliance policies in place.

We are using it for endpoint management for basically getting control. Our next step will be to launch Autopilot. We will use Intune Autopilot and then also security policy management and group policy management. We will also use it for updates and patching compliance.

At this stage, we have not fully utilized its capability for securing hybrid work and protecting data on company and BYO devices. We are still growing. We have been managing our security manually through the security portal and through Azure Security. Intune can provide an additional level of management capability by bringing all of the external services into one management console. It is going to make managing our security posture a little bit easier.

Intune has not yet affected IT productivity in our organization, but it will. Once we start bringing on the remote support capabilities and we are fully compliant in terms of touch management and minimum touch levels, it is going to ease up a lot more. There will be more time and resources for us to look at the other features and capabilities.

Intune has helped to reduce the risk of security breaches in our organization, and that is purely due to its patch management at this stage.

Intune has saved us costs. As it is bundled with our enterprise agreement or enterprise subscription, we have not had to look at additional products. I am still hoping to convince our business that maybe Absolute is not needed if we can manage things with Intune. As we are still relatively young and immature in that area, we might need to look at alternate products to bolt onto it, so we have not yet had any direct savings. We have possibly had indirect savings.

Based on the bit of work or research that I have done, it seems to fit our needs. When you are looking at some of its tracking and management capabilities versus Absolute, it just does not go that one step further where Absolute would go with the recovery service for Precision laptops. My users or asset management are asking for the recovery capability on laptops. If they were not asking for that, I would just settle for Intune and provide the lost location and submit those details to enforcement, but they want the recovery service.

Intune has not helped us consolidate vendors because we are pretty much a single vendor. We have only got the Microsoft ecosystem. We are busy decommissioning our on-prem System Center setup, and we are moving to Intune on the cloud. It is integrated fully with AAD. We do not want to run infrastructure in South Africa. Because of the load shedding and electricity problems that we have here, we would rather use the cloud.

In the context of our journey to the cloud, it is important for us that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. It would not have been attractive if it was not.

It is quite easy to manage. From what I have seen, it is very easy to check through. It is very basic. I do not need to be a rocket scientist to manage it. It takes a little bit of experience to set it up if you have never done it before. From a manageability point of view and ease of use, I would give it an eight out of ten rating.

It is quite policy-enabled, so you can build pretty much any policy to manage remote endpoints.

There could be more wizard-driven policy development or creation. Some of the policies can get quite complex. If they have a wizard that assists the administrators in creating the policy, that will be a great job.

Microsoft South Africa should improve their support for Intune in terms of turnaround time.

We started using it in about October 2022. It has been about a year and four months.

Microsoft South Africa could certainly improve on their support of it in terms of the implementation experience and completion of the project. This project has been going on for a year and four months already, but it should have been completed in six months. There are just too many clients looking at it, and there are not enough Microsoft support engineers for Intune.

We have one assigned Microsoft resource. We have got a unified support contract. They have only one support person to deal with multiple clients within our area, and if he is not available, we just wait.

If we had confident and good support from Microsoft, we probably could have cut the project time by 50%. We probably would already be finished and have 100% PCs fully compliant with Intune. 

I would rate their support a four out of ten.

Neutral

We are busy migrating from Microsoft System Center Configuration Manager and Endpoint Manager because of the infrastructure requirements. We want to be on the cloud.

We are a key government department that looks after and advises 13 other departments. They are rolling up Intune to those 13 departments.

It comes as a bundle, so you do not really know what the prices are. Microsoft does not break it down to the user cost for us. It is just bundled with our E5 license.

We did not evaluate other solutions because Intune was a part of our subscription.

My advice would be to make certain that you have the relevant in-house capability so that if you are working with Microsoft, you are able to cross-skill with Microsoft. If you do not have that and you are going to fully rely on Microsoft to assist you with deploying it, then make certain that you go into your project with your eyes wide open in terms of timing. The product is good. The scoping of the project is good, but the turnaround time is an issue. There is a lot of improvement required at Microsoft's end. The easier they make the policy creation within Intune with the wizard-driven process, the easier it will be for the internal administrators to implement it. If you remove your reliance on Microsoft, you can run a good product.

We do not use the feature called Tunnel for MAM to provide remote access to corporate resources on mobile devices. We do use Teams as a support or email support tool. We have a very small department, so that is sufficient. We would not migrate it to Intune.

We are not using Intune's Endpoint Privilege Management feature. At this stage, we are using Azure privileged management as the primary means of control. If it makes sense, we will get to it. It is not the first one on the list of things that we have got to do at the moment. We are on a zero-trust journey. If it is going to be one of the tick boxes, we will get to that.

Based on what I have seen of the product and its capabilities, I would rate Intune a seven out of ten. There are some issues that need to be dealt with, especially with the integration with Microsoft Defender Endpoint. Most definitely, the level of support and Microsoft resource capability is where I would mark it down.

Microsoft Intune serves as a crucial tool to safeguard against unauthorized access and protect sensitive data. By implementing Intune, we can control and monitor device usage, acting as a gateway to enterprise services. Access to corporate resources, including email and sensitive information, is restricted to devices enrolled in Intune. It is a comprehensive security solution that not only controls access to enterprise resources but also tracks and prevents unauthorized access, ensuring the protection of sensitive data and preventing potential data loss scenarios.

It acts as a central integration point for endpoint and security management tools, simplifying the connection process. However, considerations such as privacy laws may impact the integration of certain devices, like partner devices, emphasizing the flexibility of Intune in adapting to various organizational needs. Given that Microsoft Intune operates on a policy-driven model, connecting all staff devices becomes a matter of duty. This is because the platform excels in efficiently managing endpoints by enforcing policies that govern device security, access, and compliance.

When it comes to the user experience, integrating and onboarding with Microsoft Intune is a seamless process for the majority of devices, such as those from well-known brands like Android and iOS, where compatibility stands at a high success rate of around ninety-four percent. However, it's important to acknowledge that there might be challenges with certain lesser-known or non-mainstream brands, where compatibility may not reach a hundred percent.

The implementation of Intune hasn't significantly impacted IT productivity within our organization. Instead, its primary function is to enhance security for remote connections.

Intune has played a vital role in minimizing the risk of security breaches. Its effectiveness lies in restricting unauthorized access, particularly in scenarios such as conferences where secure connectivity is crucial. This reinforces the overall security posture, especially concerning mobile devices.

Implementing this product has resulted in cost savings for our organization. In the event of data loss, the expenses associated with investigations and remediation are significantly reduced. The product adds value by mitigating the financial impacts related to security incidents.

Intune plays a crucial role in ensuring the security of hybrid work environments and safeguarding data on both company-owned and BYO devices. While it functions seamlessly for mainstream devices, including Dimensional and others, there might be some challenges with certain brands of personal devices. However, overall, Intune provides a comprehensive platform where both corporate and partner devices can coexist securely.

The utilization of Microsoft security signals, coupled with the impact of Intune on our organization's security, is a pivotal aspect of our strategy. While there may be some limitations in the user interface when dealing with BYOD scenarios, the synergy with Microsoft Defender solutions is noteworthy. The seamless integration within the Microsoft suite ensures a cohesive security approach. Additionally, the incorporation of phishing information and tracking numbers further enhances our security posture, especially when dealing with partner devices atop the Microsoft Defender platform.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security for both cloud and on-premises managed devices is highly valuable. The suitability depends on the specific requirements and the number of users in a given scenario.

There is room for improvement, particularly in terms of compatibility, extending beyond the well-known major brands.

I have been working with it for approximately a year.

It provides good stability.

We never faced any issue with scalability.

Thus far, we have not encountered any issues with the support provided, and their responsiveness has been satisfactory.

The deployment process is straightforward; we simply configure the necessary settings within the server, initiate the enrollment, and push it out. This streamlined approach facilitates staff onboarding efficiently.

When it comes to licensing, the decision to include Intune may vary based on the volume of users and the specific modules needed.

Overall, I would rate it eight out of ten.

I'm using all the services that Intune provides, including managing Windows 10 devices and mobile devices, with both the mobile application management and without enrolling the devices. I use it for deploying configuration profiles, compliance and app protection policies, as well as onboarding Windows 10 devices to the Defender portal.

I haven't used other mobile device management solutions, but compared to SCCM, we eliminate a lot of on-premises infrastructure and maintenance by using Intune.

For mobile device management, especially for the Windows operating system, it's quite impressive. But it would really be helpful to have the option to manage server operating systems as well, like Windows Server, at least. That way, we could scrap the use of SCCM, which requires a lot of on-premises infrastructure.

Another area for improvement is the reporting structure. For example, currently, when deploying Windows 10 or Windows 11 updates, I don't get any detail or structured reports showing which updates are installed on the devices. It only gives me information on whether the update policy has been successfully deployed on the device or not. That type of installed-updates detail would be helpful.

I've been working with Intune for more than four years. I'm part of a support operations team managing clients' infrastructures on Intune.

The product is very stable. If you have to think about managing devices securely, go with Intune. Although I have not used any other mobile device management solutions, Intune is very reliable and it's hardly out of service at all.

From the start of my career, I have been managing clients in Europe but Microsoft has no boundaries when it comes to using Intune. There are certain services that are restricted to specific regions, but that is not the case with Intune. It can be used in any region and with any number of users. I have managed environments with 5,000 to 10,000 devices enrolled in Intune.

If there is a service outage, that is made very clear on Microsoft's service portal in the admin center. But if an issue comes up where, for example, a policy deployed from Intune has not been received on a device, it is very difficult to evaluate whether the issue is with Intune or the device. In that scenario, Microsoft itself is confused about whether the situation has to be escalated to the desktop support team or the Intune team.

Other than that, everything is good.

Neutral

The initial deployment process is very straightforward. It's software as a service. You just buy the subscription and start using it. It's not the case that there are very complex configurations or prerequisites to start off.

It does not require any maintenance on the customer's side. Microsoft takes care of all the maintenance.

Having devices managed at scale and maintaining security posture are, of course, value-adds, in comparison with the cost our clients pay to purchase the service. It is worth it.

Microsoft offers different licensing structures. It offers standalone licensing for Intune, but Intune is also included in other licenses, such as for Microsoft 365, E3, and E5, Business Premium, and Business Standard.

There are other MDM solutions, like Workspace One from VMware, which has support for server operating systems as well. I've never used it but I did a quick comparison of the supported operating systems.