Microsoft Intune Reviews

I use Microsoft Intune for my Active Directory and my end-point and zero-day protection.

Microsoft Intune has allowed us to work from anywhere.

Autopilot is the most valuable feature of Microsoft Intune.

Integrating certain group policies can be challenging and may necessitate using on-premises systems to integrate them with Microsoft Intune.

I am encountering challenges integrating with multiple domains outside of my own due to unsupported Active Directory extensions.

I have been using Microsoft Intune for four years.

Microsoft Intune is stable.

Microsoft Intune is scaled to support more than 39,000 users without any issues. The initial setup process for the on-premises to Active Directory hybrid integration can be quite technical. We have 100 users.

Microsoft Intune's technical support is good.

Positive

The initial setup is straightforward. I am an architect and completed the deployment on my own within two months.

The implementation was completed in-house.

Using a hybrid setup instead of relying on a third-party product can provide a better return on investment with Microsoft Intune.

Microsoft Intune is included in our Office 365 suite license. The E5 license is expensive.

I give Microsoft Intune an eight out of ten.

Microsoft Intune doesn't require any maintenance from our end.

I recommend Microsoft Intune because it can be easily integrated with other Microsoft products into a single suite, making it a plug-and-play solution that can be set up with ease.

Hybrid Cloud

Microsoft Azure

We use Microsoft Intune to manage desktop, mobile, Apple, and Windows devices.

Before Microsoft Intune, we were unable to manage devices because everyone was working from home, even though they were still part of our group. This meant that we could not control the devices, such as installing software, deploying tools, or setting up laptops for remote users. After Microsoft Intune was implemented, we were able to manage devices remotely. We can now push policies and applications to devices from a central console. This has made it much easier to keep devices up-to-date and secure, even when employees are working from home.

Device management allows us to control devices remotely, push applications from the cloud, and use autopilot. Autopilot is the most valuable feature.

When somebody has a customized application or their own company's application, we cannot deploy that application. For that, Microsoft has to change some tools, such as the launch tools, so that we can deploy those applications as well.

I have been using Microsoft Intune for two years.

Microsoft Intune is stable.

Microsoft Intune is scalable. We have 300 end users.

The technical support is good.

Positive

We previously used TeamViewer Remote Management. However, we switched to Microsoft Intune because TeamViewer did not offer application deployment or vulnerability management. Microsoft Intune offers both of these features, as well as integration with Office 365 Defender.

Intune's initial setup is straightforward. Microsoft provided us with some documentation on how to implement the basic setup, and we went through that. There is also a lot of documentation available on the Microsoft portal. We can easily find whatever we are looking for by searching. The Microsoft support team is also very helpful.

The implementation was completed in-house.

We have seen a return on investment with Microsoft Intune.

Microsoft Intune is more expensive than other solutions, but it offers a wider range of features and control. It is definitely worth the cost for organizations that need a comprehensive mobile device management solution.

I give Microsoft Intune an eight out of ten. It solves all of the problems that we were previously logging into other products to handle. Now, we can do everything from a single console, including security, management, encryption, device vulnerability, and anything else we want to do with the device. We can even run any script.

There is no maintenance required from our end for Microsoft Intune.

To use Microsoft Intune, we must have an active domain. We can then purchase Intune directly from Microsoft or from a partner.

If I had the opportunity to choose a configuration management tool again, I would choose Microsoft Intune.

Public Cloud

Microsoft Azure

We use Intune to manage mobile devices and applications. I'm not solely using Intune for the agents installed on each machine. I use the Microsoft Endpoint Manager solution primarily for device configuration, device compliance, and mobile application management.

I have 80 different clients, and their environments vary. We have people that work in offices across multiple foreign countries and domestically. Most have a strictly cloud-based deployment, but a few have a private cloud that we host ourselves. Some have their own data centers. I've got a couple of clients with hybrid environments. None of them are entirely on-prem. Everybody is using a hybrid cloud or completely on the cloud.

Intune helps us from a compliance standpoint by making it easier for system admins to configure devices and ensure they conform to business policies. It gives us more visibility into where the devices are and their postures.

I try to use conditional access policies for every client I can. It's essential for a zero-trust security posture. Conditional access policies make it possible. This dramatically reduces the risk of unpatched devices connecting to our corporate network.

The conditional access policies, compliance, and updates affect employees positively. Once the value is explained to them, they don't complain much about MFA.

You can use Endpoint Manager to see whether or not a device is compliant and apply conditional access policies in Entra to only allow connections to your environment from compliant devices. That significantly reduces your risk from unpatched software because that device cannot connect to your machine or environment. Using those two features together definitely helps protect us.

It saves some time. Either way, you will have to manage an Active Directory environment, but Intune allows you to manage devices over the internet. You don't need to worry if the machines are connected to a VPN or on-site.

The most valuable feature is probably mobile device management. Small businesses are coming under greater scrutiny and requirements for compliance as time goes on. We don't have to worry about a VPN because we can manage these devices, control company data, and lock users out. If needed, we can remotely wipe devices and switch them. 

It's a big deal to be able to assure an insurance company or auditor that our endpoint devices are effectively managed. Intune is a solid solution if you use Microsoft and Microsoft 365 products.

Intune's third-party patch management could be better. It should be easier for an average system admin to keep non-Microsoft applications updated. 

I have used Intune for about six years now.

Intune is highly stable. 

Intune is highly scalable. Thus far, I haven't had to expand it to a thousand users, but the scalability appears to be readily available.

I rate Microsoft support a nine out of ten. I enjoy working with them, and I'm often surprised at how good they are. 

Positive

I've used Rocky MDM and Google MDM. Microsoft is the primary platform on which we do business. Intune works better with the Windows operating system, desktop applications, and SharePoint. It also reduces vendor complexity. I don't require multiple vendors, which reduces my costs because many features are baked into it. 

I log into fewer systems daily. Microsoft's virtual monopoly on productivity applications in your average small business makes them the right choice in most situations.

Deploying Intune is pretty straightforward. It doesn't matter whether you use autopilot or manual deployment. Each machine is enrolled in Intune automatically if it's connected to Azure AD with the correct user licensing. It's a relatively painless enrollment process.

Intune involves some maintenance, like any solution. You must ensure it's still working correctly and helping you achieve your business goals for compliance and configuration of your endpoints.

Meraki and Google are relatively common in small businesses. Many small businesses use Meraki for wireless and networking solutions, so that is one MDM option. Also, small businesses often start with Google and transfer to Microsoft 365 once they mature. Google is already in the environment. I don't sell anything as an IT guy, so I don't care what solution my clients use. I choose what's best for them in that particular instance.

I have tried Okta, but I haven't used it seriously as an MDM solution. I've only used Okta as an SSO provider. I didn't realize they did MDM solutions. I don't understand the point of Okta. If you have Azure AD and Entra, I can't fathom why you would bother with Okta. It seems redundant to me.

I rate Microsoft Intune a nine out of ten. Don't underestimate the solution, and spend time learning about it. Intune has some powerful capabilities. Often, small businesses acquire systems but never fully utilize them because nobody has the time to dive deeply into them. It's a big solution with a lot of features. 

Hybrid Cloud

We use Intune for device management, including policy management, application deployment, and patching.

Intune helps us evaluate and manage devices remotely. The solution enabled us to increase the security posture on all devices using compliance policies and configuration profiles. It took us a while to roll these things out because users were uncomfortable with the changes, so many pushed back on any limits to their freedom of access. 

After a couple of months, everyone realized that we were trying to ensure all their devices were working as effectively and efficiently as possible. It took us about three to four months before we began realizing the full benefits of Intune. 

Intune's most valuable features are the device, compliance, and configuration policies.

One area for improvement is app deployment. Another is the Windows update rollout. If you're rolling out an object to a device that's offline, Intune stops trying to reach this device after it sits idle for a bit. We are forced to find a workaround that could help manage that.

We have used Intune for about two years now.

Intune is stable. 

Intune is scalable. 

I rate Intune support a 10 out of 10. They're responsive.

Positive

Setting up Intune wasn't straightforward. It took us about three or four months. We did a test phase and rollout then collected feedback. Based on that feedback, we did another test phase and rollout. Initially, we did it in-house, but we got stuck, so we reached out to Intune support. 

It would be easier with one person, but the person doing the deployment needs to work with various teams, like cybersecurity, infrastructure, and IT.

We have seen a return. Using Intune, we've effectively ensured all our devices are compliant based on our own redefined compliance policies. It is also highly efficient.

Intune is inexpensive. It also comes bundled in some Office 365 licenses, so you can choose to purchase it separately or as a package. 

I have used Manage Engine, SolarWinds, and Desktop Central. We switched to Intune when we realized it was a full-fledged MDM that covers mobile devices, desktops, and other pieces. The other solutions had more RMM features for device management but fewer MDM features. Intune was a better fit for our requirements,

I rate Microsoft Intune a 10 out of 10. Intune is an excellent solution if you're a technical person. Be careful with macOS enrollment, which still needs a lot of improvement.

Public Cloud

Microsoft Azure

The primary use cases for Microsoft Intune are patching and mobile control.

The ability to deploy patches and automate software deployments to end-user devices is very useful. Managing the applications and compliance has been easier with over two thousand devices. The solution is easy to use and deploy, particularly for Microsoft-based devices.

The asset management component is not very granular. If it could provide information on devices, their composition, specifications, licensing, hardware expiry dates, software expiry, and inventory, it would be more robust. There is a need for better support for non-Microsoft assets, devices, and software applications, and integration with other tools, like Linux, is needed.

I have been working with Microsoft Intune for about six months.

I was not part of the initial deployment, but I have been involved in deploying Microsoft Intune to end-user devices, and it is very good. The deployment took about an hour.

The technical support by Microsoft is not so good. We have to manage many things by ourselves and do not receive responses in a timely manner.

Negative

We're using both Microsoft Intune and ManageEngine as a result of a merger. One company was using Microsoft Intune, and the other was using ManageEngine. We are deciding which one to focus on.

I rate Microsoft Intune overall as seven out of ten.

Public Cloud

Microsoft Azure

My last job was cyber defense for clients in European countries like France, Belgium, Sweden, etc. We use Intune to manage definitions for Microsoft Defender and classic corporate reasons, such as limiting the access of Active Directory users. 

My current company supports clients using Office 365. We're one of the biggest service providers in Bosnia Herzegovina. We use it to deploy enterprise applications to specific users. 

Intune is good for both the administrator and the client. You can deploy things like antivirus and applications while preventing or allowing users to do something on their PCs. 

It's possible to protect users' personal devices with access control list rules in Intune, DLP, etc. You can set different policies for personal and company devices, but it can be tricky to tell when the rule should be applied to a device.

The most valuable feature is Intune's ability to push out updates for the security and antivirus. I also like Intune's copilot and the ability to automate processes. For example, if you have 5,000 employees who are issued new PCs and you need to set them up with everything they need.  

Intune is on the cloud, so you can bring all your endpoint and security management tools together. Intune may not be the best tool in the world, but it's the most familiar. You have Microsoft, Fortinet, Cisco, etc., but I've worked with Microsoft my entire life, and it brings all the functions from SCCM to the cloud. Office 365 hase everything in one admin portal. With Cisco, everything is messy. If you are dealing with 10,000 to 50,000 employees, you must manage everything from one console.

The user experience is better from an administrative perspective. It has improved in each version, so things are easier to find. 

Setting up Intune Autopilot can be a little complicated. 

I have used Intune for six years, primarily in a lab environment. 

We were interrupted by a bug and a policy that wasn't configured correctly. In this instance, it was our mistake because we created rules that prevented Intune from pushing applications out. 

We have an SLA with Microsoft support that covers all of our products, including Office 365, Azure, Exchange, etc. If we have a problem, we contact Microsoft Global Support in India. We can call them at any time, day or night, to solve our issues.  

Positive

 I previously worked with SCCM on-prem. Intune has the same features, but it's entirely cloud-based. Everything is the same except for the console. 

The price of Intune is too high for a small company or environment like ours. 

I rate Microsoft Intune eight out of 10.

We've experimented with and deployed Autopilot for building and deploying software through Intune, utilizing Intune policies to modify Azure AD joined systems, now referred to as Entra joined. This covers the entire scope of Intune that we've explored and implemented.

We are a consulting company with extensive experience in deploying Intune. We utilize Intune for hybrid join Entra machines. For clients who have the necessary licenses, while Intune is not a full-fledged Remote Monitoring and Management solution, it can serve as an effective replacement for RMM if you are a Managed Service Provider.

While more mature tools exist for securing hybrid work and protecting data on BYOD and company devices, Intune is a viable option for clients who want to leverage MDM with their Premium or E3 license, especially if cost is a major concern. Despite some challenges with Samsung Knox and iOS devices, Intune has shown improvement, and these issues are less frequent. As Microsoft doesn't have a native phone, limitations are inevitable.

The Mobile Device Management in Intune is a valuable feature.

Microsoft recently separated Defender into Security. Intune does not centralize all endpoint and security management tools into one place. It used to be more centralized.

The Microsoft support has been subpar for some time now. Troubleshooting issues often require us to involve a partner, which isn't an ideal or easily manageable solution given the challenges with Microsoft support. We need a reliable partner, but that partnership might still require Microsoft's assistance.

We've faced significant pushback with Copilot as our clients aren't seeing a favorable cost-benefit analysis. Many are opting for ChatGPT Enterprise instead of integrating Copilot into their workflows. We initially expected significant value from Copilot, but Microsoft's pricing is excessive, and the product itself is not exceptional. It remains quite rudimentary in its current state.

Microsoft should not rely on partners to fix issues. While users can open tickets with Microsoft, they often cannot resolve the problems themselves and must engage a partner. This is not an à la carte solution. Perhaps when Copilot eventually becomes available, it will address this. It's not Intune's fault, as it is used frequently.

I have been using Microsoft Intune for ten years.

The technical support is not good.

Negative

We tried numerous solutions prior to Intune, but Microsoft's inclusion of it within their licensing model incentivized us to adopt it. Since we were already paying for the license, it made sense to leverage its full potential and maximize our investment.

If you're subscribing to Premium or E3, there are no additional costs for Intune, it's included. However, with lower-tier plans, you don't get the full suite of security features. Depending on your specific licenses, you might have some level of Advanced Threat Protection, Endpoint Detection Response, or other Defender tools, but not the complete package. Generally, for around 300 users, you get decent protection with Defender for desktop and server – it's a good value. But with E5 licenses, you're at the enterprise level, and you get what you pay for, so expect add-ons. I don't think Microsoft would position Intune as a primary security product anymore, given their recent cloud changes and the focus on Defender. Intune is useful for patching, but it's not a comprehensive security solution in itself. That's why Microsoft has rebranded their security offerings under security.microsoft.com.

I rate Intune six out of ten.

Many of our clients with premium or E3 or above licenses use Intune because it's included in their Microsoft solution. They prefer to leverage a Microsoft product over a third-party alternative. Additionally, Intune allows us to maximize the value of our clients' existing licenses. Therefore, if a client has a premium license, has under 300 users, or is on E3 or above, there's no reason to use another solution when Intune is readily available.

Microsoft recently transitioned from Intune to Endpoint, then back to Intune. Additionally, they moved certain security aspects of Purview into a separate deployment, as is the case with their ATP Defender Suite. This shift signifies a move away from a single, unified management interface to a more distributed model.

We use the enterprise application management feature to roll out apps. While there are better tools available for app discovery, deployment, and automatic updating, Intune's inclusion in the Microsoft bundle keeps costs down. Although Intune may not be the ideal solution for automated application deployment or MDM, its integration with Microsoft licenses makes it a worthwhile option, especially with the expectation of future improvements from Microsoft.

We use the Advanced Endpoint Analytics but it is no longer in Intune. It's been moved over to the security portal for Defender.

The endpoint analytics feature, which helps proactively detect and remediate anomalies and endpoints, is now part of Microsoft Defender formerly known as Advanced Threat Protection. Gartner rates it very highly. To perform threat hunting, we need the appropriate licensing, such as a P2 Defender license. This functionality is not available within Intune. We are transitioning from the older Advanced Threat Protection to the newer Microsoft Defender platform. Previously, configuration was done through Intune, but now we manage it through the Microsoft security site.

My advice for any organization that is already paying for a Premium or above Microsoft license is to deploy Intune because it makes financial sense. Intune is not a bad tool but if they run into any issues, the Microsoft support is no good so they need to rely on a good partner to help resolve the issue.

Microsoft cannot fully replicate the functionality of a Remote Monitoring and Management tool. However, it could incorporate certain RMM features into its existing products or develop new tools that complement RMM solutions.

By implementing Intune, we are exposing aspects of our infrastructure to the cloud that traditionally would remain on-premises. This means relying heavily on Microsoft's infrastructure and security. As we saw a few years ago with the Department of Justice's issues, which were clearly Microsoft-related, placing all our trust in one provider can lead to potential problems. However, despite these concerns, we have not encountered any security issues with Intune to date. But at the end of the day, we are maximizing our license.

Intune deployment is straightforward if you're well-prepared, whether for a hybrid setup or a purely Azure-based one. Packaging new apps is generally well-documented, but troubleshooting can be trickier. There are helpful PowerShell scripts available, though they might not be easy to find.

We are using it for software deployment. I am able to push any software within minutes. For example, if I want to install Google Chrome for all the users, I can push Google Chrome through Microsoft Intune. Within five to ten minutes, all the users will have Google Chrome. 

We also use it for device management. We can easily register a device. It is very easy. It is helpful for BYOD.

I am happy with Microsoft Intune because Windows updates are easy. There is no need for SCCM. You can push an update, and wherever a system is available, it gets updated. Windows updates are very easy with Microsoft Intune. For Windows systems, endpoint management is very easy with Microsoft Intune as compared to other technologies.

It is user-friendly, and the performance is also good. It is a convenient product.

Sometimes, updating a client policy is very difficult. This needs to be improved.

Their support also needs improvement.

I have been using Microsoft Intune for about three years.

It is very difficult to get support from Microsoft. They are not able to troubleshoot some of the issues. They have support, but it is very difficult to get support.

We were using the SCCM server. It is a Microsoft product.

It is easy. It is not difficult.

It is cheap, but as compared to Google, it is costly. Google is cheaper, but quality-wise, Microsoft Intune is better.

I would recommend Microsoft Intune. It is a good product. 

I would rate Microsoft Intune a seven out of ten.

Public Cloud

Microsoft Azure