Microsoft Intune Reviews

The primary use case is to safeguard the company's data. My management wanted to categorize the applications and ensure privacy and security in terms of corporate applications versus personal applications on corporate devices. We began to prioritize B objectives in 2013 and 2014, which is why it is essential for the organization to prioritize its categorization. To accomplish all of these objectives, we embarked on a successful journey.

Since Microsoft Intune has provisioned data, application, and device security, it helped us significantly increase our security posture.

We restricted certain geographical locations with which we are not doing business, which minimized risk, and Microsoft Intune's conditional access feature helped secure our environment from a recent hacking attack originating from a specific country.

The conditional access feature in conjunction with Microsoft Endpoint Manager is a fantastic combination.

The device profiling which uses the official Outlook email enabled us to control the screenshot feature and prevent copying outside of the organization's application. This is really helpful in controlling data breaches.

Microsoft needs to enhance device-level security, as sometimes when using Microsoft Intune, the device's operating system becomes stuck and requires a full uninstall to remove the Intune bug.

The price of the solution has room for improvement.

I have been using the solution for almost ten years.

The solution is extremely stable.

The solution is scalable. We have 300 end users in our organization.

Prior to the COVID pandemic, the technical support was excellent, but since then there has been a marked decline in the quality of support.

Neutral

We previously used VMware Workspace ONE which is a very good solution and in some areas better than Intune, and Cisco Meraki Systems Manager. We switched to Microsoft Intune because of the better integration with Microsoft products.

The initial setup is a bit complex. Initially, we deployed for the executives of the organization. We deployed Microsoft Intune for one hundred users in the first year. After receiving positive feedback, we expanded our model and provided security for all the major executive users of our organization, protecting their data, devices, and applications. We had two administrators and six service desk screen engineers deploy the solution. In addition, our two administrators were verifying the policies and implemented the solutions on end users' devices.

The implementation was completed in-house.

Microsoft Intune is a very good solution and in time I am sure we will see a good return on investment.

Microsoft Intune is expensive.

I give the solution a seven out of ten.

There is no external maintenance, but at the device level, we must adhere to Microsoft's patches and policies and keep our devices up-to-date with the latest patches. The company portal may not allow for older versions, so we must ensure that the solution is kept up-to-date.

Microsoft Intune is a very good solution and when compared to VMware Workspace ONE, it is a strong competitor. I would not call it the topmost or leading product in this domain, however, with Microsoft's progress, I'm sure it will be a leader in a few years. On the Microsoft side, they may need to improve their support system and build releases of the solution.

The primary use case of Microsoft Intune is for patch management and app deployment.

Microsoft Intune is deployed in a hybrid environment and we use Atel cloud.

I can see that the patch management process is much improved with the bundled patch management option available in Microsoft Intune compared to the KPI deployment required by the other deployment solutions.

Deploying an app can be a complex process due to dependencies. For example, I have a package with three files that need to run, but one of them has a dependency on another one. This can be challenging to manage with the Intune app deployment and has room for improvement.

I have been using the solution for one month.

We have premium technical support from Microsoft.

We currently also use BigFix.

We have not yet implemented the solution but the app deployment is a bit complex.

When we add a device to the Azure domain, the activation process for Intune is simple and straightforward with no added complexity.

We partnered with Microsoft to help us implement the solution in our environment.

Intune is cost-effective as it is included in some of the Office 365 packages. GMF can be more expensive.

We evaluated Jamf Pro and will be rolling it out for Apple devices.

I give the solution a seven out of ten.

As of now, we deployed the solution onto 10,000 devices and when completed it will be 30,000 devices. The solution is used in multiple departments in multiple geographical locations.

Microsoft Intune is a Windows solution, and organizations can take advantage of its features. However, I would not recommend using iOS devices with Microsoft Intune as it is suited for Windows only.

Generally, the top three uses are operating system deployments, software updates and patching, and software deployments to endpoints.

If you're a small shop, a two-person organization, yet you have many endpoints, five to 10,000, you can easily manage them. You can manage the masses with one person part-time and it's a good automation tool that takes away the need for multiple folks to do a lot of things in the environment like software deployments or patch management. It's very good at automating those functions.

The reporting aspect is very nice. It's got about 450 canned reports in it. They're easily customizable. You can get really good granular reports for inventory, patch management, status, and everything. It's very good at reporting.

It's not hard to set up. It's easy to manage.

Third-party patching and other solutions integrate with Endpoint Manager. From that perspective, there's no deficiency. 

The UI is good. You can filter things out so that you'll only see things that are pertinent to your function. 

It's really matured and improved over the years by assimilating competing products. There are a lot of things that used to be better than Endpoint Manager or not available in Endpoint Manager that were absorbed or purchased and placed into this product. From a deficiency perspective, I can't recall coming across anything substantial. I'm trying to think of a weakness. I compared it to Ivanti. From a new user's perspective, it may be a little overwhelming because there are quite a few things to look at in the console, however, once you are sort of acclimated and are familiar with your core functions, it's fairly simple and straightforward.

You can modernize the UI a little bit, however, change for a sake of change isn't always a good thing.

I've been using the solution for 25 years. It used to be called SCCM.

The solution is very stable.

The scalability is great.

The largest user base I've ever supported, for example, was a headquarters and they had 220,000 endpoints. In contrast, small colleges and educations may only have 500 users, so they can get by with a single server hosting everything. SQL and everything can be one server.

For us, the solution is extensively used.

If you're looking forward to deficiency, I'd say that the Endpoint Manager support at the lower levels is poor. As you go higher and you get like a more engineering level, then you're fine, however, the early stages of support are not the best.

I've worked with Ivanti and LANdesk and other tools.

I've used Endpoint Manager every day. I'm currently using it. I've been using it for 25 years. However, there are other ones like BigFix, which I've rarely used. I've used LANdesk a few times. And people would try to use LANdesk to avoid the expensive Endpoint Manager, however, at the end of the day, it costs them more in time to use the LANdesk solution. Ivanti is a competitor, however, they're cobbled together with Shavlik, for patch management they've got Altiris. They bought Altiris and Altiris has been passed around like a cheap hoe from Symantec to Intel, to everybody.

Altiris was actually developed to support Endpoint Manager and provide asset management. At the time, Endpoint Manager didn't have good asset management, so they actually worked with Altiris, only to find out that Altiris was actively taking Microsoft customers. Microsoft booted them to the curb and they haven't done well since. That was back probably in the late nineties that they did that. Endpoint Manager has been around the longest, it's survived, it's matured and it's the top dog in general.

Complexity-wise, it's not hard to set up. It's just a lot of small steps, such as making sure the firewall ports are open and certain things are in place, and all the perquisites are taken care of, as the wizard, the installation wizard for Endpoint Manager, is pretty straightforward. As long as you have SQL and some other features turned on to support the different functions of Endpoint Manager, you're fine. You'll need WSS or you'll need WSS for patching and you'll need SQL reporting services for the reporting portion of it. All those small things. The more lights you turn on, the more configuration you have to do.

The deployment itself took me four hours end to end, to put all the prerequisites in, however, understanding, of course, may take a while for someone new. I've done this now for over 25 years. For me, it's pretty straightforward and I have, a lot of these things PowerShell scripted so it works very well. You can create a PowerShell script and set the whole thing up from Powershell, which is what I've done.

Maintenance requirements are low. Since it lives on SQL, if you put a SQL maintenance plan in place, it's pretty much, it's very healthy, it's very stable.

We've seen an ROI. It enables you to pair down the resources necessary for configuration management. You don't need a large shop to maintain your environment. If you want to develop it, if you want to create new images all the time and that sort of thing, then you're going to need to staff yourself accordingly, however, not necessarily to support Endpoint Manager, just to develop those and payloads that it delivers.

I'm a partner. I'm using the most up-to-date version of the solution.

While the solution was on-prem initially, now it's converted to more of a hybrid. They have co-management so you can manage on-prem and cloud together.

I'd rate the solution nine out of ten.

We are using it to protect our devices. We are using it for protecting our corporate data on the phone and for GDPR compliance. 

We are using its latest version.

It is helpful for protecting our corporate data on the phone. In the event a phone is stolen, we can remotely wipe the phone or destroy the data on it.

It also helps us with our GDPR compliance. We also have the GDPR module on the cloud that links to all the endpoints, laptops, mobile phones, and tablets. So, we can also remotely protect the data on the phones, wherever they are.

Intune makes it possible for us to reach all the endpoints and have them protected at all times. We have what is called Defender now, but it used to be called Advanced Threat Protection.

The ability to manage devices with different sets of policies is most valuable.

We haven't really gone through all the features of Intune. We are just discovering them. Every day, we see a new feature that we want to apply, but what will be great for Intune is to be able to deploy apps in a simple fashion. We should be able to easily install various apps on the Windows platform, iOS, and Android. Currently, we have to write some scripts. It's not as straightforward as we would like it to be. It should be simplified so that we can do it just with three clicks—next, next, finish—without needing to write a script.

I have been using this solution for about six years.

So far, it has been good because what we tend to do is get high-end phones with lots of processing power, RAM, and storage. That way, its capacity is never an issue.

It is scalable. It is a multi-user license, and because there are templates for policies, it's easy to just assign what you have set up for executives, for ordinary users, for marketers, etc.

We have about 150 users who use this solution. I work with this on a daily basis.

I would rate them a 10 out of 10 because they knew what the problem was, and they walked us through resolving it. I am satisfied with their support.

Positive

The first one we used was VMware AirWatch. The reseller overestimated our requirements, and we got a very expensive package. It was about $57,000 every year, and eventually, we found out they had a package for $6,000 every year that did exactly what we wanted, so we had to drop it. We had spent two years on VMware AirWatch with the expensive module.

We switched to Intune because we were already on a Microsoft subscription for Office 365, and the add-on wasn't that expensive.

It was simple. I would rate it a four out of five in terms of the setup. It took about a week.

It is a cloud product. It doesn't require any maintenance from our side. We get an update every time they upgrade a feature.

We did it internally. We just went through the documentation.

It's affordable for the protection it gives. There are no additional costs.

I would advise getting a Microsoft partner to deploy it for you. It's a lot quicker. 

I would definitely recommend this product. I would rate it a 10 out of 10.

It is good data protection - protecting your endpoints, information on those endpoints, and information stored centrally in Office 365. It focuses on endpoint protection, configuration, and visibility. 

You need to know what you have and where it is before you can consider protection. As an MDM umbrella covering all mobile devices, we can instantly see across all of them and centrally manage policies.

The most obvious example of improvement is full hard drive encryption. You want all your endpoints encrypted, and if a device is lost or stolen, you want to be able to wipe it remotely or disable it remotely. MDM allows all of these features. 

We can ensure all devices are encrypted, check instantly and get reports, reset them, wipe them, or block them remotely at any time from anywhere in the world. These are powerful and crucial tools for incident management and data and information governance. You need to be able to protect what you need to protect.

It's very powerful for onboarding employees. It's also powerful for integrating other software applications or pushing out solutions. For example, we use Intune, or sometimes MDM, to ensure all our computers have CrowdStrike installed. MDM automates the installation process, and we get reports confirming its success.

We can also use it to push out other important security software and see any unauthorized software present on the machines. Although we primarily use CrowdStrike for that purpose. CrowdStrike can scan every computer, identify potential threats, and prevent the installation of unauthorized software in the first place. 

So, MDM is great for integration in terms of onboarding new staff remotely and securely. It confirms the computer matches all our policies and flags any non-compliance issues. Based on compliance, we can even stop non-compliant devices from connecting to our network through conditional access policies. It's all very automated within Office 365. It integrates everything together, by design.

It's excellent. Top-class product. 

Fundamentally, MDM is the ability to centrally manage all of our endpoints in terms of the policies applied to them, along with all the actions we can perform on the devices themselves. 

We need to harmonize policies across all machines, update them in real time, and get reports. So, all endpoints constantly communicate with Intune, allowing us to view, disable, restart, and push new policies at any moment. It's this centralized control over a distributed network of endpoints that's crucial.

Because our endpoints were remote-first, not centrally located, how else would you manage a large network of computers scattered across individual homes? An MDM solution is the only way. That's why it's so valuable. 

We can manage and standardize security across your environment, identify problems, receive alerts, and so on. That's its purpose, and that's also why it's so good.

The reporting is excellent. You can draw what information you want in the reports. So, that's also excellent. I would rate the rating capabilities a ten out of ten as well.

It's hard to point to an area of improvement because, like most Microsoft cloud services, they're constantly evolving and adapting. Keeping up with the changes can be more challenging than finding features that are missing.

The only thing to consider is complexity. Think about Excel. It can do everything imaginable, but it's not necessarily the easiest software to use. You need to know how to use it.

Similarly, while Intune might have all the functions you need, finding or configuring them can be difficult, especially for new users. The key is user experience, making essential features easier to find. It's easy to get lost in the complexity.

However, I've never found a crucial function missing in Intune. It just can be challenging to navigate sometimes. They're always working on making it more user-friendly, but it's a difficult task for something so complex. So, improving user experience would be my suggestion for improvement.

In future releases, I would like to see better integration with Apple products. While they integrate reasonably well already, it's never quite as seamless or up-to-date as it is with Windows. That would be helpful because many companies have a mix of devices. So, better integration with macOS.

 I have been working with this product since the beginning, forever.

When I joined the company, everything was already in Office 365. No physical network, and no domain controller. All devices are connected by the internet, not a physical office network.

I've never had any issues with stability. I'd rate it a nine out of ten because I rarely give anything a perfect ten. But it's very stable. I haven't experienced any stability issues.

It's perfectly scalable. I'd rate the scalability a ten out of ten.

There are around 200 end users using it in my company. 

The customer service and support are excellent. 

Positive

We use a family of products. We don't want to put all our eggs in one basket. For example, we use software from other providers for security awareness training, phishing protection, and so on. 

However, as a Microsoft Gold Partner, we're heavily integrated with Office 365, Microsoft Defender for Security Center, and everything that goes along with Azure and Office. We essentially have a suite of different tools depending on the specific need.

For our Endpoint Detection and Response (EDR) or physical endpoint security on laptops, we also use CrowdStrike. Our approach involves leveraging different options depending on their strengths.

Some vendors like CrowdStrike claim they can do everything, but we prefer specialization. We want different providers to handle different aspects of our security.

We have Microsoft Defender, which provides access to threat intelligence and also offers endpoint protection. While Defender is a competitor to CrowdStrike, we avoid using its endpoint protection functionality to maintain our distributed security approach. However, we utilize Microsoft Intune for Mobile Device Management (MDM).

And through Intune, we can push out policies that enforce specific security standards on all our computers, such as encryption.

We leverage it for managing device security policies. Additionally, all our devices access Office 365.

We use Microsoft security features within Office 365, SharePoint, and OneDrive. 

As with everything in IT, once you reach a certain level of complexity, which Intune does, the rule is: everything is easy when you know how, and everything is difficult when you don't.

Especially with something as complex as MDM, if you don't know everything, it can be very difficult. But if you do, it can be easy. So, it depends. There are very few people who know absolutely everything.

So, there is a difficulty there, but once you know how to do it, it's easy. Like user experience is not necessarily intuitive.

The pricing is not cheap, especially with inflation. They've had to increase their prices. It's not excessive, but alright. So, it's reasonable, but it would be better if it were lower.

In my experience, it would be difficult to find a competitor. It's kind of the gold standard because it's Microsoft dealing with Windows. They have an inherent advantage.

If a third-party vendor tries to offer a competing MDM solution, they're always a bit behind the curve. They don't have first access to all updates or the roadmap for future developments. There's always an element of catching up. 

On the other hand, Microsoft can bake these changes into the product as they make them. So, on that basis, it's quite simply the best.

Overall, I would rate the solution a nine out of ten. 

I use Intune to control and protect my laptop. It keeps things secure, manages apps, and ensures everything follows the rules. Overall, I am quite satisfied with it.

Intune has positively impacted IT productivity in our organization. It centralizes device information and software installations, allowing us to quickly identify and address vulnerabilities. For example, we can easily find all vulnerable devices and take prompt actions to secure them by patching vulnerabilities in software.

Intune has contributed to reducing the risk of security breaches in our organization. When we identify vulnerabilities, Intune allows us to quickly quarantine and patch them, minimizing the potential for security threats.

The most valuable feature of Intune is the central dashboard for compliance and policy management. It is also handy for asset management and it covers all the basics we need right now.

There is room for improvement, particularly on the Apple side. Enhancements for managing MacOS more comprehensively would be beneficial. While it is good, there are still features missing compared to the management capabilities we have for other operating systems.

I have been using Microsoft Intune for three years.

Overall, the product has been stable.

I would rate the scalability of Intune as a nine out of ten. I'm sure that with better Mac OS support, it could be a perfect ten. In our company, three admins manage around 1,000 devices using Intune.

We don't rely on technical support extensively, but when needed, Microsoft provides satisfactory assistance. I would rate their support at an eight out of ten. Improvements could be made in response speed and overall competence, but as long as they maintain good technology support, it is sufficient for our needs.

Positive

We work with various Microsoft products, including Office 365 Enterprise licenses, Azure, and numerous other licenses and services. Our setup involves multiple tenants and subscriptions, covering a wide range of Microsoft offerings.

I was involved in some areas of the deployment, and it was quite straightforward, especially on the client side where we handled it internally. Rolling it out to nearly 1,0000 computers took some time, just under a year. We managed it with a team of three people.

The pricing for Intune is competitive.

Intune does a good job handling Microsoft tools, but not everything is in one place. We have used Microsoft products for ten years, and while Intune does its job well, it doesn't bring all our endpoint and security tools together. It is part of the picture, but not the whole thing.

Intune provides complete visibility and control across various device platforms, which is crucial for me, as it ensures effective IT management. Intune significantly helps our IT operations by giving a clear view of the overall status of the laptops and endpoints we currently use. The user experience of Intune is good.

Intune plays a role in securing hybrid work, but it is more about configuration. Microsoft Defender handles the security aspects, and while Intune shows the steps, it doesn't secure the environment on its own.

The cost savings from Intune in our organization are significant, potentially in the tens of thousands, depending on the severity of security incidents.

Using Intune has allowed us to consolidate vendors as we no longer require third-party MDM software, enabling us to stick with the same vendor.

The consolidation of vendors, primarily through using Intune, has positively impacted our security posture. It allows us to view the overall status in one centralized place. The consolidation didn't affect licensing costs; there was no change.

Intune has become increasingly important in our cloud journey. Integrating Intune capabilities with Microsoft 365 for both cloud and on-premises-managed devices is valuable. We use it regularly, and while it is hard to quantify its exact impact, it plays a significant role in our operations.

Overall, I would rate Microsoft Intune as a nine out of ten.

We use the solution for information and protection. The solution identifies anything that can be exploited.

Microsoft Intune allows us to ensure that all devices are authenticated and that they use policies to prevent people from logging in and accessing unauthorized resources.

Autopilot is the most valuable feature.

Unlike VMware Workspace ONE, which provides system configuration and endpoint management, Microsoft Intune is not a standalone application. This is a limitation of Microsoft Intune because it does not provide all the information we need or the application details of the devices connected.

Microsoft Intune's support for Mac devices is lacking and could be improved.

I have been using Microsoft Intune for seven years.

With our number of users, Microsoft Intune is stable.

Microsoft Intune is currently able to meet our requirements, but as we expand in the future, we may need to consider other options. 20 percent of our employees are using Microsoft Intune.

The technical support is slow at responding.

Neutral

The initial setup was somewhat complex. We encountered some issues with the security group, which prevented us from enrolling some of the devices. Our strategy was to onboard all the new users first. The deployment involved around eight people.

The implementation was completed in-house.

Microsoft Intune is included in the E5 license at no additional cost.

We evaluated VMware Workspace ONE but ultimately decided to use Microsoft Intune because we already had a Microsoft E5 license.

I give Microsoft Intune a seven out of ten.

We have not required any maintenance as of now.

I recommend Microsoft Intune.

We primarily use Intune for compliance monitoring and managing mobile devices. Once we fully integrate the entire Asian region, the solution will cover between 500 and 800 users in our company. 

Intune provides full visibility into all active mobile device users. If their devices are noncompliant with our security policies, I have the flexibility to update them remotely. 

The most valuable feature is Intune's ability to lock and remotely wipe devices when a user loses them. We can prevent any unauthorized access.

It would help if administrators could pinpoint the exact location of a stolen device to help law enforcement retrieve it and apprehend the suspect.

We haven't started using Intune yet, but I've been evaluating the solution for the last three months. We're still waiting for our primary tenant to be provisioned.

I rate Microsoft Intune's stability a nine out of ten. The Microsoft platform has been mostly stable aside from a global Outlook outage during our test period. 

I rate Microsoft Intune's scalability a ten out of ten.

We used the MDM included with Google Workspace, but we transitioned to Microsoft because we were unhappy with the platform. Managing files and data wasn't intuitive, so it didn't meet the needs of our growing company. Most of my users complained about losing data while using Google Workspace. Unlike SharePoint, Google Workspace doesn't sync automatically so that you can work remotely offline.

SharePoint saves all your work locally and updates it when you connect. It's easier to use and a better platform overall. Google Workspace is a good platform, but it can't keep up with our growth.

I rate Intune a nine out of ten for ease of setup. I have a lot of experience with Microsoft, so it was straightforward. We have a hybrid environment with an on-prem 2019 Windows Server and Google Workspace. We're slowly transitioning from Google Workspace to Microsoft 365 and shifting from an on-prem Windows Server to a hybrid environment on Azure.

Our deployment is still in progress, but it's expected to take six months. The deployment includes not only our Philippines office but also branch locations throughout Asia. 

We started by evaluating the solution to see how user-friendly and compatible it was with our organization. Next, we created a training program with the help of the partner and vendor to introduce our users to the Microsoft platform. From there, we are face-to-face training in each country. The deployment team consists of eight people from our company and three from the vendor. 

I rate Intune an eight out of ten for affordability. It's bundled with the 365 licensing, which is competitive overall. 

I rate Microsoft Intune a nine out of ten. I give high marks to Intune for scalability, ease of use, and simplicity of management. The transition from Google to Microsoft has been seamless. There is room for improvement. For example, I would like it to be more adaptable to non-Microsoft operating systems, such as Android and iOS. I would give it a 10 out of 10 if it offered the same functionality on iOS and Android that Windows users have. 

My advice to potential users is to evaluate the platform while trying to understand your company's needs and how it fits into the larger picture.