Microsoft Intune Reviews

We use the solution for BYOD, MDM, and to access Microsoft applications like Teams. Microsoft Intune helps us access Microsoft applications on the road and mobile.

The solution’s most valuable feature is its ease of use.

I have been using Microsoft Intune for about three years.

Microsoft Intune is a very scalable solution. Around 4,000 users use the solution in our organization.

A third-party vendor helped us set up the solution in six months.

We have a large amount of our population using the applications on their phones. Microsoft Intune definitely helps with productivity and efficiency. The solution brings value to the money we pay for it.

Microsoft Intune has been incorporated into our Microsoft E5 licenses. The pricing is very good, as it is not an additional cost to what we already need for our organization as a whole.

Microsoft Intune brings all our endpoint and security management tools into one place for mobile. We work closely with security, which mostly implements the overall rules on what users should be able to do, how the new data is encrypted, and how secure data can't leave the Intune environment. It's easy to go into Intune and apply all of those policies and have them work for you.

I would assess Microsoft Intune very highly for securing hybrid work and protecting company data via BYOD devices. I think it's very secure. Everyone in IT has to be available during off hours to make sure that everyone can see what's going on if there's an emergency.

Since Microsoft Intune has been incorporated into our Microsoft E5 licenses, our organization has saved costs compared to using other EMM providers. Microsoft Intune is a comprehensive solution that has a lot of features and manages all your endpoints.

Overall, I rate the solution a nine out of ten.

We support other companies in managing their devices. Right now, we have multiple projects wherein we are only utilizing the Windows aspect of Intune, but for some of the other organizations, we are utilizing Android and iOS features. For most of the projects that I am working on, the use case is autopilot enrollment, and for iOS, it is through ABM.

One of the most common requests that we get is that most of the users are still on-prem. They need to be moved to the cloud, but they do not want to lose the data on-prem. The basic request that we get is to get co-management enabled for on-prem and the cloud for managing devices. The basic request from every organization I have worked with so far is to get a hybrid or the same management scenario. This is what we utilize Intune for.

All the device information is available in one place. We can see which profiles are being used and other things. If I want to get any information about a device, I just have to select it, and it shows me everything that I want about the device.

As an admin, we have different privileges to a user. In terms of user experience, it is quite easy. It is easy to understand. They have been making a lot of changes to the layout and the categorization. It is much easier and user-friendly. Overall, it has been a pleasant experience to use the portal. Everything is categorized in such a manner that it is easy to understand and navigate.

Advanced endpoint analytics are certainly used in almost all the projects that I have worked on because the security baseline is a very crucial part of configuring all those things in one single place. Apart from that, other profiles are also configured.

It is quite handy. For the general device configuration, we might have to create multiple profiles for different things. When it comes to the security baseline, multiple components are configured into a single policy. That makes configurations easier to handle and easier to change in the future if required. One thing about endpoint analysis that can be an issue is that there is an imprinting policy. Sometimes for some of the components, even if I change the policy, it would not make the change in the device. The policy gets tattooed on the device.

The Cloud PKI helps manage the complexity of certificate infrastructure. It makes work much simpler. The configuration that needs to be done is much simpler.

It makes application deployment and management easy on a device. It is easy to get them packaged and pushed out. Applications are available in the first sync itself. It is pretty easy to do that with Intune.

In terms of integration, so far, we have set up co-management features with SAPM, and it has been going well. The settings are pretty easily understandable. We can do them easily. The setup is smooth. In case of any issues, the logs and troubleshooting are very simplified. It gives pretty accurate information. The APM portal can also be very easily configured. The steps about what to do next are available in the Intune portal itself. It works well with other consoles.

I would assess Intune highly for securing hybrid work and protecting data on company and BYO devices. I would rate it a nine out of ten for this.

As an admin, Intune has made life much easier. Any information about a device is available in one console. We do not have to navigate to multiple portals to see what is going on. The console gives us the answer. Intune gives us information about the error and the possible reason for it to happen. We can see the device status and whether it is syncing. Everything is available in one single source. As an admin, it makes my life easier.

Intune has made the transition from on-prem to the cloud a smoother and simpler experience. We do not even have to make a complete transition. If we want to set up co-management where both of them are in the picture, Intune does a great job in helping out the admins to manage those devices.

In the recent upgrade, I feel the portal has become much more user-friendly. The navigation, the keys, and the settings are easy to find. It is easy to understand. As compared to the previous versions or SCCM, it is very handy. Apart from that, we have many configuration profiles. They have been introduced over the course of time. We had put in the request for them. Some aspects that were not available previously are available now. It keeps improving over time, which is beneficial.

Reporting needs to be better. Sometimes, it is way too slow, and it is not even accurate. Reporting is one aspect about which we have received a lot of complaints. As an admin, I cannot rely on its reporting.

Another feature that can be improved is audit logs. There should be more details in the audit logs.

We have been using it for almost four years.

I would rate it an eight out of ten for stability. I do not believe that any product is completely stable given the fact there is always something new that comes into the market, so it has to go through changes. You never know what those changes might be and whether a release is compatible with certain devices, etc.

We have more than 100 users. Our clients are large enterprises.

We have had a mixed experience. Sometimes we get an engineer who is extremely aware of what is going on and is very quick with the resolution. We get an answer quickly, and the ticket gets closed quickly. However, sometimes we get an engineer who prolongs the case to an unnecessary time frame. We might get an email in six to seven days. We need to keep chasing them about the update. Their support can be improved.

Neutral

I have worked with SCCM which is a Microsoft product. I have not worked on any other similar solution.

We have a combination of cloud and on-prem. We do have GPOs in the picture. We also have cloud users. We have Windows 365 devices. It is a combination of both so far.

Its deployment is pretty straightforward. They provide the details or info in the portal itself, so it is not very difficult. You do not have to go searching for the information.

The initial setup does not take time. Setting up an account for the organization rarely takes five minutes or so, but the time taken for doing the setup for the entire organization, which includes setting up policies and other things, would vary. It depends on the number of activities that need to be performed.

It does not require much maintenance from our side. Over time, they provide new releases that fix the issues that have been stated in our health control section.

Based on the features that it gives, it is cost-efficient. It is not necessarily on the expensive side of the scale. It provides a hefty number of features that any organization would want. It is in a good price range.

Intune does not necessarily bring all of the endpoint and security management tools into one place because there is a role of connectors in Intune that need to be enabled in order to get other accesses. Things like Defender, Compliance, and Purview need to be managed in the device in itself. I do not necessarily see it bringing everything into the same picture, but it does act like a mediator with those connector options.

With the projects in hand, we are mainly focusing on applications and Windows. I have not had an opportunity to explore it much when it comes to iOS and Linux. We are not using the Enterprise Application Management features of Intune Suite. We have done the configuration via Azure.

We are testing out Microsoft Copilot in Intune. We have not had many opportunities to use it.

To a colleague at another company who wants to know what I think about Microsoft Intune Suite, I would say to definitely go for it. I have seen multiple portals, and Intune goes way far. In terms of features and interface, Intune is much superior to any other console that I have seen so far. It is easy. It has many configurations. It is easily understandable. Everything is good about it, and it is growing with time. Within a span of a few months or weeks, you might see a new update, a new configuration profile, or a new system that could be managed. Some kind of new feature is always coming up.

I would recommend Intune to others. If anyone comes to me with any questions or concerns, the first thing I ask is how they are managing their devices. If they are using anything apart from Intune, my suggestion is to use Intune.

Overall, I would rate Intune a nine out of ten.

We use Microsoft Intune to manage our computers and users and enforce organizational policies on the computers. We wanted to remove our in-house service and move device management from on-premise to the tool. This helped us manage devices for staff who don't come to the office across locations. Before, when we had policy changes, they weren't always applied or enforced for remote staff in time. We needed a better solution, and Microsoft Intune worked well for our needs.

What I like most about the tool is that it's now very easy to set up a device for someone to use. It also helps us tremendously in managing security.

Before, we used on-premise management with a domain controller. It was difficult to manage security comprehensively. For example, it was hard to know which computers were updated. We weren't able to do that easily with our previous solution.

Having all our endpoint and security management tools in one place with the product has made things very easy and efficient for us. Before, it was sometimes difficult to know what problems a device had. But now, we can see any issues or vulnerabilities on a device. We can also easily apply any needed updates.

I find the tool's user experience very good for the admin side. It's easy to use—you only need a browser and can work from anywhere. This makes it very convenient for us admins to provide support from any location.

It's now much easier for end users to provision a device. Wherever the person is, we can get them to sign in to their account for the first time. This is a big improvement because previously, the person would have had to be physically in the office to use the organization's domain for the first time. Now, it's become much simpler for them to get set up.

The main benefit of using Microsoft Intune is that we can now provide support from anywhere. One major problem we had before was when we needed to give someone an admin password. Now, we can give the password to the person and then change it immediately. This has been very helpful, especially since we have many people working remotely. 

We have situations where people have to use their devices to access organizational resources. One of our issues was when someone had to use a personal device to access organizational resources. How are we sure that the right person is using it? How can we control the resource? Now, if you want to use your device, we don't have any issues. We enroll it, and if we need to wipe our resources, we can do it. So it helps us in that area.

The solution's impact on productivity has been tremendous because now we can manage everything. Before, with the old solution, sometimes our server would give us problems. Now, Microsoft handles all that, so we don't have to spend time fixing server issues. This allows us to focus on specific issues for individual users.

Maintaining servers, backups, and related costs was a huge cost for a small organization. Now, with Microsoft Intune, you scale as needed. We don't need to spend too much on servers and their associated costs, which has been very good for us.

Applying security recommendations can be difficult in Microsoft Intune. Sometimes, they give you recommendations, but you need a different server to manage the pieces, or you have to go to each device individually. However, it has been improving. Before, there were certain policies you could not implement directly in Intune, but now I see progress. I would like to see more improvement in policy management, similar to how we used group policies on-premises.

I have been using the product for five to seven years. 

I rate the solution's stability an eight out of ten. 

The solution is used in two regions. In Ghana, we have about 100 users; in the second location, we have another 70. It is scalable. 

The solution's support is not straightforward. They do not provide the solutions that we expect them to provide. 

Neutral

Before using Microsoft Intune, we used Google for Business. We switched because Microsoft provided us with almost everything in one place, making it easier to manage everything centrally. Using Microsoft alone was more efficient than bringing in Microsoft at some points while using Google.

The tool's deployment is straightforward. We conducted a two-month pilot and then completed the device migration in two weeks with the help of three resources. 

One person came with the license, and two resources were in-house. 

The solution helps to save costs by 20 percent. Implementing Microsoft Intune has made us use less IT software for security. Before, we had to rely on expensive third-party security solutions that didn't consider our size. With the product, we can manage everything at a fraction of the cost, focusing on user licenses. We've seen a return on investment with it, especially during the COVID period, as we could get everything done without issues. Overall, Intune has saved us about 50% in time and resources.

The solution is cost-efficient. 

We're not using Microsoft Intune Suite's enterprise application management feature. We're using the business line version, which doesn't have all the features of the enterprise version. However, it provides us with updates on vulnerabilities and recommendations on the security side. 

For anyone considering the product, I would tell them to consider it if they want to have peace of mind and be able to give their best. Microsoft Copilot is on our roadmap for next year. 

Microsoft 365 and Microsoft security must be integrated for cloud and co-managed devices. This integration makes it easy to apply solutions from one point and have them work across the system. If we were using different systems, we would need to grant permission for them to communicate, which could cause issues. It helps to spend less time getting the work done. As for maintenance, I haven't noticed anything required on my part.

I would recommend Intune, especially if you're not a large enterprise that can afford various tools from various vendors. Microsoft products make it very easy to run your business and have control and visibility. Sometimes, you don't know what's happening in your environment, and Microsoft Intune helps you understand what is happening. Overall, I would rate it a seven out of ten.

We use Microsoft Intune to manage desktop, mobile, Apple, and Windows devices.

Before Microsoft Intune, we were unable to manage devices because everyone was working from home, even though they were still part of our group. This meant that we could not control the devices, such as installing software, deploying tools, or setting up laptops for remote users. After Microsoft Intune was implemented, we were able to manage devices remotely. We can now push policies and applications to devices from a central console. This has made it much easier to keep devices up-to-date and secure, even when employees are working from home.

Device management allows us to control devices remotely, push applications from the cloud, and use autopilot. Autopilot is the most valuable feature.

When somebody has a customized application or their own company's application, we cannot deploy that application. For that, Microsoft has to change some tools, such as the launch tools, so that we can deploy those applications as well.

I have been using Microsoft Intune for two years.

Microsoft Intune is stable.

Microsoft Intune is scalable. We have 300 end users.

The technical support is good.

Positive

We previously used TeamViewer Remote Management. However, we switched to Microsoft Intune because TeamViewer did not offer application deployment or vulnerability management. Microsoft Intune offers both of these features, as well as integration with Office 365 Defender.

Intune's initial setup is straightforward. Microsoft provided us with some documentation on how to implement the basic setup, and we went through that. There is also a lot of documentation available on the Microsoft portal. We can easily find whatever we are looking for by searching. The Microsoft support team is also very helpful.

The implementation was completed in-house.

We have seen a return on investment with Microsoft Intune.

Microsoft Intune is more expensive than other solutions, but it offers a wider range of features and control. It is definitely worth the cost for organizations that need a comprehensive mobile device management solution.

I give Microsoft Intune an eight out of ten. It solves all of the problems that we were previously logging into other products to handle. Now, we can do everything from a single console, including security, management, encryption, device vulnerability, and anything else we want to do with the device. We can even run any script.

There is no maintenance required from our end for Microsoft Intune.

To use Microsoft Intune, we must have an active domain. We can then purchase Intune directly from Microsoft or from a partner.

If I had the opportunity to choose a configuration management tool again, I would choose Microsoft Intune.

We use Intune to manage mobile devices and applications. I'm not solely using Intune for the agents installed on each machine. I use the Microsoft Endpoint Manager solution primarily for device configuration, device compliance, and mobile application management.

I have 80 different clients, and their environments vary. We have people that work in offices across multiple foreign countries and domestically. Most have a strictly cloud-based deployment, but a few have a private cloud that we host ourselves. Some have their own data centers. I've got a couple of clients with hybrid environments. None of them are entirely on-prem. Everybody is using a hybrid cloud or completely on the cloud.

Intune helps us from a compliance standpoint by making it easier for system admins to configure devices and ensure they conform to business policies. It gives us more visibility into where the devices are and their postures.

I try to use conditional access policies for every client I can. It's essential for a zero-trust security posture. Conditional access policies make it possible. This dramatically reduces the risk of unpatched devices connecting to our corporate network.

The conditional access policies, compliance, and updates affect employees positively. Once the value is explained to them, they don't complain much about MFA.

You can use Endpoint Manager to see whether or not a device is compliant and apply conditional access policies in Entra to only allow connections to your environment from compliant devices. That significantly reduces your risk from unpatched software because that device cannot connect to your machine or environment. Using those two features together definitely helps protect us.

It saves some time. Either way, you will have to manage an Active Directory environment, but Intune allows you to manage devices over the internet. You don't need to worry if the machines are connected to a VPN or on-site.

The most valuable feature is probably mobile device management. Small businesses are coming under greater scrutiny and requirements for compliance as time goes on. We don't have to worry about a VPN because we can manage these devices, control company data, and lock users out. If needed, we can remotely wipe devices and switch them. 

It's a big deal to be able to assure an insurance company or auditor that our endpoint devices are effectively managed. Intune is a solid solution if you use Microsoft and Microsoft 365 products.

Intune's third-party patch management could be better. It should be easier for an average system admin to keep non-Microsoft applications updated. 

I have used Intune for about six years now.

Intune is highly stable. 

Intune is highly scalable. Thus far, I haven't had to expand it to a thousand users, but the scalability appears to be readily available.

I rate Microsoft support a nine out of ten. I enjoy working with them, and I'm often surprised at how good they are. 

Positive

I've used Rocky MDM and Google MDM. Microsoft is the primary platform on which we do business. Intune works better with the Windows operating system, desktop applications, and SharePoint. It also reduces vendor complexity. I don't require multiple vendors, which reduces my costs because many features are baked into it. 

I log into fewer systems daily. Microsoft's virtual monopoly on productivity applications in your average small business makes them the right choice in most situations.

Deploying Intune is pretty straightforward. It doesn't matter whether you use autopilot or manual deployment. Each machine is enrolled in Intune automatically if it's connected to Azure AD with the correct user licensing. It's a relatively painless enrollment process.

Intune involves some maintenance, like any solution. You must ensure it's still working correctly and helping you achieve your business goals for compliance and configuration of your endpoints.

Meraki and Google are relatively common in small businesses. Many small businesses use Meraki for wireless and networking solutions, so that is one MDM option. Also, small businesses often start with Google and transfer to Microsoft 365 once they mature. Google is already in the environment. I don't sell anything as an IT guy, so I don't care what solution my clients use. I choose what's best for them in that particular instance.

I have tried Okta, but I haven't used it seriously as an MDM solution. I've only used Okta as an SSO provider. I didn't realize they did MDM solutions. I don't understand the point of Okta. If you have Azure AD and Entra, I can't fathom why you would bother with Okta. It seems redundant to me.

I rate Microsoft Intune a nine out of ten. Don't underestimate the solution, and spend time learning about it. Intune has some powerful capabilities. Often, small businesses acquire systems but never fully utilize them because nobody has the time to dive deeply into them. It's a big solution with a lot of features. 

We use Intune for device management, including policy management, application deployment, and patching.

Intune helps us evaluate and manage devices remotely. The solution enabled us to increase the security posture on all devices using compliance policies and configuration profiles. It took us a while to roll these things out because users were uncomfortable with the changes, so many pushed back on any limits to their freedom of access. 

After a couple of months, everyone realized that we were trying to ensure all their devices were working as effectively and efficiently as possible. It took us about three to four months before we began realizing the full benefits of Intune. 

Intune's most valuable features are the device, compliance, and configuration policies.

One area for improvement is app deployment. Another is the Windows update rollout. If you're rolling out an object to a device that's offline, Intune stops trying to reach this device after it sits idle for a bit. We are forced to find a workaround that could help manage that.

We have used Intune for about two years now.

Intune is stable. 

Intune is scalable. 

I rate Intune support a 10 out of 10. They're responsive.

Positive

Setting up Intune wasn't straightforward. It took us about three or four months. We did a test phase and rollout then collected feedback. Based on that feedback, we did another test phase and rollout. Initially, we did it in-house, but we got stuck, so we reached out to Intune support. 

It would be easier with one person, but the person doing the deployment needs to work with various teams, like cybersecurity, infrastructure, and IT.

We have seen a return. Using Intune, we've effectively ensured all our devices are compliant based on our own redefined compliance policies. It is also highly efficient.

Intune is inexpensive. It also comes bundled in some Office 365 licenses, so you can choose to purchase it separately or as a package. 

I have used Manage Engine, SolarWinds, and Desktop Central. We switched to Intune when we realized it was a full-fledged MDM that covers mobile devices, desktops, and other pieces. The other solutions had more RMM features for device management but fewer MDM features. Intune was a better fit for our requirements,

I rate Microsoft Intune a 10 out of 10. Intune is an excellent solution if you're a technical person. Be careful with macOS enrollment, which still needs a lot of improvement.

My last job was cyber defense for clients in European countries like France, Belgium, Sweden, etc. We use Intune to manage definitions for Microsoft Defender and classic corporate reasons, such as limiting the access of Active Directory users. 

My current company supports clients using Office 365. We're one of the biggest service providers in Bosnia Herzegovina. We use it to deploy enterprise applications to specific users. 

Intune is good for both the administrator and the client. You can deploy things like antivirus and applications while preventing or allowing users to do something on their PCs. 

It's possible to protect users' personal devices with access control list rules in Intune, DLP, etc. You can set different policies for personal and company devices, but it can be tricky to tell when the rule should be applied to a device.

The most valuable feature is Intune's ability to push out updates for the security and antivirus. I also like Intune's copilot and the ability to automate processes. For example, if you have 5,000 employees who are issued new PCs and you need to set them up with everything they need.  

Intune is on the cloud, so you can bring all your endpoint and security management tools together. Intune may not be the best tool in the world, but it's the most familiar. You have Microsoft, Fortinet, Cisco, etc., but I've worked with Microsoft my entire life, and it brings all the functions from SCCM to the cloud. Office 365 hase everything in one admin portal. With Cisco, everything is messy. If you are dealing with 10,000 to 50,000 employees, you must manage everything from one console.

The user experience is better from an administrative perspective. It has improved in each version, so things are easier to find. 

Setting up Intune Autopilot can be a little complicated. 

I have used Intune for six years, primarily in a lab environment. 

We were interrupted by a bug and a policy that wasn't configured correctly. In this instance, it was our mistake because we created rules that prevented Intune from pushing applications out. 

We have an SLA with Microsoft support that covers all of our products, including Office 365, Azure, Exchange, etc. If we have a problem, we contact Microsoft Global Support in India. We can call them at any time, day or night, to solve our issues.  

Positive

 I previously worked with SCCM on-prem. Intune has the same features, but it's entirely cloud-based. Everything is the same except for the console. 

The price of Intune is too high for a small company or environment like ours. 

I rate Microsoft Intune eight out of 10.

We've experimented with and deployed Autopilot for building and deploying software through Intune, utilizing Intune policies to modify Azure AD joined systems, now referred to as Entra joined. This covers the entire scope of Intune that we've explored and implemented.

We are a consulting company with extensive experience in deploying Intune. We utilize Intune for hybrid join Entra machines. For clients who have the necessary licenses, while Intune is not a full-fledged Remote Monitoring and Management solution, it can serve as an effective replacement for RMM if you are a Managed Service Provider.

While more mature tools exist for securing hybrid work and protecting data on BYOD and company devices, Intune is a viable option for clients who want to leverage MDM with their Premium or E3 license, especially if cost is a major concern. Despite some challenges with Samsung Knox and iOS devices, Intune has shown improvement, and these issues are less frequent. As Microsoft doesn't have a native phone, limitations are inevitable.

The Mobile Device Management in Intune is a valuable feature.

Microsoft recently separated Defender into Security. Intune does not centralize all endpoint and security management tools into one place. It used to be more centralized.

The Microsoft support has been subpar for some time now. Troubleshooting issues often require us to involve a partner, which isn't an ideal or easily manageable solution given the challenges with Microsoft support. We need a reliable partner, but that partnership might still require Microsoft's assistance.

We've faced significant pushback with Copilot as our clients aren't seeing a favorable cost-benefit analysis. Many are opting for ChatGPT Enterprise instead of integrating Copilot into their workflows. We initially expected significant value from Copilot, but Microsoft's pricing is excessive, and the product itself is not exceptional. It remains quite rudimentary in its current state.

Microsoft should not rely on partners to fix issues. While users can open tickets with Microsoft, they often cannot resolve the problems themselves and must engage a partner. This is not an à la carte solution. Perhaps when Copilot eventually becomes available, it will address this. It's not Intune's fault, as it is used frequently.

I have been using Microsoft Intune for ten years.

The technical support is not good.

Negative

We tried numerous solutions prior to Intune, but Microsoft's inclusion of it within their licensing model incentivized us to adopt it. Since we were already paying for the license, it made sense to leverage its full potential and maximize our investment.

If you're subscribing to Premium or E3, there are no additional costs for Intune, it's included. However, with lower-tier plans, you don't get the full suite of security features. Depending on your specific licenses, you might have some level of Advanced Threat Protection, Endpoint Detection Response, or other Defender tools, but not the complete package. Generally, for around 300 users, you get decent protection with Defender for desktop and server – it's a good value. But with E5 licenses, you're at the enterprise level, and you get what you pay for, so expect add-ons. I don't think Microsoft would position Intune as a primary security product anymore, given their recent cloud changes and the focus on Defender. Intune is useful for patching, but it's not a comprehensive security solution in itself. That's why Microsoft has rebranded their security offerings under security.microsoft.com.

I rate Intune six out of ten.

Many of our clients with premium or E3 or above licenses use Intune because it's included in their Microsoft solution. They prefer to leverage a Microsoft product over a third-party alternative. Additionally, Intune allows us to maximize the value of our clients' existing licenses. Therefore, if a client has a premium license, has under 300 users, or is on E3 or above, there's no reason to use another solution when Intune is readily available.

Microsoft recently transitioned from Intune to Endpoint, then back to Intune. Additionally, they moved certain security aspects of Purview into a separate deployment, as is the case with their ATP Defender Suite. This shift signifies a move away from a single, unified management interface to a more distributed model.

We use the enterprise application management feature to roll out apps. While there are better tools available for app discovery, deployment, and automatic updating, Intune's inclusion in the Microsoft bundle keeps costs down. Although Intune may not be the ideal solution for automated application deployment or MDM, its integration with Microsoft licenses makes it a worthwhile option, especially with the expectation of future improvements from Microsoft.

We use the Advanced Endpoint Analytics but it is no longer in Intune. It's been moved over to the security portal for Defender.

The endpoint analytics feature, which helps proactively detect and remediate anomalies and endpoints, is now part of Microsoft Defender formerly known as Advanced Threat Protection. Gartner rates it very highly. To perform threat hunting, we need the appropriate licensing, such as a P2 Defender license. This functionality is not available within Intune. We are transitioning from the older Advanced Threat Protection to the newer Microsoft Defender platform. Previously, configuration was done through Intune, but now we manage it through the Microsoft security site.

My advice for any organization that is already paying for a Premium or above Microsoft license is to deploy Intune because it makes financial sense. Intune is not a bad tool but if they run into any issues, the Microsoft support is no good so they need to rely on a good partner to help resolve the issue.

Microsoft cannot fully replicate the functionality of a Remote Monitoring and Management tool. However, it could incorporate certain RMM features into its existing products or develop new tools that complement RMM solutions.

By implementing Intune, we are exposing aspects of our infrastructure to the cloud that traditionally would remain on-premises. This means relying heavily on Microsoft's infrastructure and security. As we saw a few years ago with the Department of Justice's issues, which were clearly Microsoft-related, placing all our trust in one provider can lead to potential problems. However, despite these concerns, we have not encountered any security issues with Intune to date. But at the end of the day, we are maximizing our license.

Intune deployment is straightforward if you're well-prepared, whether for a hybrid setup or a purely Azure-based one. Packaging new apps is generally well-documented, but troubleshooting can be trickier. There are helpful PowerShell scripts available, though they might not be easy to find.