Microsoft Intune Reviews

Our main use cases with Microsoft Intune are about how we automate the deployment. Auto-pilot is a feature that we normally recommend. Another piece is about the package deployment, where we recommend, or have helped, customers in deploying and converting their Win32 application. These are the two main areas in terms of automating the enrollment and Win32. Another use case in terms of the Apple, which is being used more by the customers, is where we recommend them to go for the zero touch process by using the AD.

Intune's feature that I have found most valuable is its auto-pilot feature. The main thing is that it keeps building it. Also Intune's capability in terms of Mac, which is slowly increasing, although the customers are moving towards vMOX and leaving the Intune just because of its limited capability with Mac, though it has already been enhanced. More features include the conditional access and the app production policies with respect to BYOR devices. These have been increased a lot in terms of security.

In terms of what can be improved, I am looking for better enhancements regarding Apple management, not only on the mobile device, but also on the laptop.

Other than that, it already has good capability with Windows, and it is already very good for the mobile device. The only area that is missing is for the Mac products.

I am using Microsoft Intune for the last two, three years.

In terms of maintenance, since it is a cloud product, it automatically gets updated by Microsoft. So there is no maintenance required for the upgrade part. But definitely the maintenance part that we track is the software asset management - that the devices are there and that the patches are deployed on a timely basis. We also do maintenance on the dashboard reporting feature in terms of whether the devices are compliant or not compliant.

In terms of performance, devices will be automatically enrolled and all the applications will be deployed. So it will be ready to use once they log in with their Azure-ready credentials. That is zero touch for them. In terms of having integrations in place with other tools, any issues they face will have proactive or automated actions to resolve their issues, instead of raising them and going through the long process of raising a ticket and the resolution.

Scalability is good.

In my experience, the customers who are mostly going for the Intune are small, medium and large companies. We have seen a mix. These days we have seen a large base of customers having more than one device. So it could be suitable for any size company.

Not too much to say on support. It is pretty fast. But in some of the instances we did not get much or a proper resolution where we had to troubleshoot a lot. But in most of the cases, support was good.

Initial setup is a simple process. It is a cloud solution. It is easy to deploy and easy to integrate with other tools as well. If we have to integrate with on-prem or Azure-ready through an AD connector, it is easy. Also, it is capable of integrating with other tools.

In terms of deployment, having things in the VM or physical VM or physical system in place and the ports enabled, as the main infrastructure is all in the cloud, is only part of connecting with the Azure already and the AD connectors, and does not take much time. With full testing, it takes one day if all things are in place.

Their price is really good. That is the reason customers move here, because as part of the Office 365 package, they always get the E365 as well, which makes it easy for them to manage their devices without having additional licenses for Intune.

That is the best part.

The main differences between Intune and other products are, like I mentioned, in terms of the Mac. If the customers are majorly moving and adopting Mac laptops while they are using the Intune, they are leaving for other platforms, like Workspace ONE and vMOX. That is the reason for moving and the major difference I have seen these last couple of months. But at the same time, if there is not much dependency on Mac devices, they are moving from other platforms to Intune, also.

My advice to anyone considering Intune would be to definitely test it and have devices enrolled at least in a pilot phase. They will get feature compatibility, the policies, and the auto-pilot feature. So, I would recommend to do at least a POC, and then decide.

On a scale of one to ten, I can rate Intune an eight.

It helps me to safeguard my identities in terms of conditional access. If a person is using it from outside the office, there would be MFAs that are mandatory. However, the moment they're inside the office, they're probably not using it. There are MDM features, which are my corporate-owned devices. It can be used for MA features and for BYOD scenarios. I have tested it on VPN certification authentication and it works in those areas as well. 

The dashboard is good.

We find the solution to be mostly stable.

The scalability is good.

We've largely been happy with technical support.

This product works very well for companies already using the full Microsoft suite. 

There could be some more security without compromising productivity. They could provide some advisories that alert you as to whether the device is secure or not. They need to be able to show us if there is something malicious happening or not. It would be really nice to have something there that could protect us from malicious activities or ransomware. 

I'd like more reports and KPIs available. We'd like these to be visible so users can be assured their devices are secure. 

The initial setup is a little bit complex.

I've pretty much used the solution since its inception. I've used it from 2012 onwards. However, since 2015, it rapidly began changing the nature of its utilization. I've used it for the last five or six years under this new utilization.

There is always a noise when you are going to manage any endpoint devices, and noise is definitely there with this solution. However, I would estimate it is 70% to 80% is stable. You have to manage it, have to face daily operational issues, which we are doing.

If a company needs to scale the solution, it can do so. It's cloud-based, which makes it easy to expand as needed.

We've used technical support in the past. We have given them feedback. They are good. They keep improving and adding. They keep giving more insights around it. I really like the approach overall that they have.

I am familiar with a similar IBM-based product. If you have a Microsoft-based suite, InTune makes more sense, however, if a company uses something else - such as Google - IBM may be more suited. 

At an enterprise level, it is always a complex initial setup. However, with the cloud, if you use that and you start from scratch, it would be pretty simple plug-and-play. That said, the moment the data comes in from the enterprise, there are complexities as there's only one system you are going to have to handle multiple devices and users from 300 to 30,000 to 300,000. It depends on how you are going to handle it.

For per device, it is not much work to set up the solution as there are only one or two apps that need to be installed. For policy conservation and many other things, you require some time to think about what needs to be done. You usually, for example, create the profile, which takes a month's time - or a month and a half.

You do not need much of a team technical team for the deployment. You just require a couple of experts - at least one or two - who have a good understanding.  We have around ten people involved in active management of it, and that includes a 24/7 support team to help manage different devices.

We are able to implement the solution for our clients. 

There is a per-user-based license and that is a licensing mechanism. You can pay yearly or monthly.

I'm a user and a consultant. I deploy this solution for clients and migrate to it.

If a client is using a lot of Microsoft, it's a great product to have. It integrates really, really well with everything. However, if a company has a non-Microsoft suite, I wouldn't suggest this as an option. Google and IBM also have suites that might have better solutions that would work for non-Microsoft users.

I'd rate the solution at an eight out of ten overall. 

I use it for deploying software and managing devices.

Microsoft Intune brings all of our endpoint and security management tools into one place. I can log into only one console and jump from one system to the other system seamlessly.

It is easy. When I hand out a new device to new users, I ask them to enter their email address and password. They just need to give the device 15 to 20 minutes, and it is done. Users can then start working on their devices.

It just works. I do not have to run after the software to see if it is the latest update. It just runs. It is setup-and-forget.

Microsoft Intune makes it easy to secure hybrid work and protect data on company and BYO devices. Once you have set up all the rules, it just works. You cannot mix personal data with company-related data. Also, no data can be extracted from the business aspect to the personal one.

Microsoft Intune's Endpoint Privilege Management feature enables us to enforce the least privileged access. For me, it is a big advantage to only have the rights I need and not the ones I do not need. For every specific case, I just request the required role for it, and afterward, I deactivate the role. From the security aspect, it is at a very high level.

It helps reduce data loss. It helps with data loss prevention. We also use multifactor authentication and block unknown devices and unknown users. Any external attacks are blocked via a lot of mechanisms. We can use our privileged roles only inside a closed network and with PKI-based authentication.

Microsoft Intune has affected the IT productivity in our organization in a positive way.

It is very important for us that its capabilities are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. This feature was one of the major things when we started digitalization.

The ability to work from all over the planet is valuable. You just need a functioning and working Internet connection. You can enroll devices by binding the hash values in Intune. You can enroll them from wherever the person is. It makes no difference if he is sitting at home or office or is on vacation.

They are always rolling out updates. You get more and more possibilities to enroll devices and configure their settings and security. I have confidence in the setup they have provided so far. I, as such, do not have any specific inputs or needs. However, there is always room for improvement when it comes to scalability.

I have been using Microsoft Intune for almost six years. I am always using the latest version. It is a cloud platform, and it is updated almost every month with new features.

I would rate it an eight out of ten for scalability. There is always room for improvement when it comes to scalability.

Their technical support is great. We always get an answer from Microsoft.

Positive

We were using Microsoft System Center Configuration Manager. We did not use any other vendor.

Using Microsoft Intune did not help us consolidate vendors. Our strategy is to not mix up too many different vendors and have just one. The best thing is that if you want to use Microsoft Azure and Intune, you can use the features out of the box. You do not need big modifications. You can take the default and build everything around your needs, and it will work.

This is the platform for every enterprise. It is easy to manage all devices such as Windows, iOS, and macOS in one place. You can also manage Android devices.

Overall, I would rate Microsoft Intune an eight out of ten because there is always room for more modifications and improvements.

We use Microsoft Intune to deploy devices with Autopilot, manage apps, autopatch, device and application management, and enroll security policies.

The solution is fully integrated with the Microsoft platform and the Autopilot feature, which is a unique feature.

The user experience with Microsoft Intune is not so good. Sometimes, you see an error saying policies or configurations are not applied, but you don't get enough insights to know why.

The solution's app deployment needs to be improved. It now has advanced app management as a feature, and you have an app marketplace.

I have been using Microsoft Intune for two years.

Microsoft Intune is a stable solution.

Microsoft Intune is a scalable solution.

My experience with the solution's technical support has been mostly bad. We have a high skill set, and we test most things. When we call support, we normally need second-level or third-level support, and the first level is not very useful.

I rate the solution’s technical support a five or six out of ten.

Neutral

I have also worked with other tools like MobileIron. Compared to its competitors, Microsoft Intune is fully integrated with Microsoft.

Although the onboarding for hybrid devices can sometimes be a bit complex, most setup tasks are very easy.

Microsoft Intune is not cost-effective as a standalone product. It provides good value in an integrated Microsoft solution.

We implemented the solution because we wanted to have a zero-touch deployment. Microsoft Intune brings all our endpoint and security management tools in one place. Microsoft Intune is the base for everything because we use Zero Trust. You don't have Zero Trust if you cannot manage the device.

The solution's app discovery and app automatic updating features are very important. The App Catalog is not currently implemented, but I hope it will be on the roadmap. The solution's advanced endpoint analytics help a lot to proactively detect and remediate anomalies in endpoints. When you have issues with boot time or login time, you can see what the processes are.

I would recommend the solution to other users. In my opinion, Microsoft Intune has a good feature set and good value, but the price for the stand-alone solution is very high. I recommend including it in other license bundles, not as a stand-alone product.

We had Copilot for a testing period, and we used it to better understand or gain insights into problems and to get recommendations. We use Copilot very intensively, and it has been of help to us. However, we don't use Copilot for security in Microsoft Intune because the costs are too high.

I am satisfied with Microsoft Intune's ability to secure hybrid work and protect data on the company (BYOD) bring-your-own devices. The endpoint privilege management feature in Microsoft Intune has some limitations, but in general, it provides better security. Microsoft Intune has impacted our organization's attack surface. There is no need to have local admins.

Microsoft Intune affects our organization's productivity. It is not difficult to maintain the solution. I work with the cloud version of Microsoft Intune.

Overall, I rate the solution a nine out of ten.

Our organization utilizes Microsoft Intune to safeguard company data on employee laptops and cell phones that might be used for remote work.

We use Microsoft Intune to ensure compliance on devices, both on and off-site. Intune enforces settings like requiring a screen lock and allows us to remotely wipe lost devices to protect sensitive company information.

Microsoft Defender offers a built-in Intune dashboard that simplifies our workflow. While reviewing security information in Defender, we can easily see non-compliant devices flagged by Intune, eliminating the need to switch between applications.

The Intune user experience has become significantly easier. While in the past we required detailed instructions for app installation, recent versions of the Intune app guide users through the process, eliminating the prior challenge of users struggling with installation.

Intune's biggest benefit is its seamless integration with existing Microsoft products in our organization. Since we're already a Microsoft shop, Intune leverages our familiar environment for a straightforward implementation, offering centralized control for our SOC clients. We likely saw the advantages quickly, as with other Microsoft products.

Microsoft Intune effectively secures our BYOD program. If we have employees who need to work from home for some time, we make sure to install Intune on their laptops first.

Microsoft Intune has improved our IT team's efficiency by allowing a Bring-Your-Own-Device policy and facilitating work-from-home options.

The most valuable feature of Intune is the ability to reset a lost device and remove all the data.

I have been using Microsoft Intune for almost four years.

The technical support gets the job done.

Neutral

I would rate Microsoft Intune seven out of ten.

A selling point for us was that Intune reports back to the Microsoft dashboards that we already use.

We are rolling out the product to manage cloud-based devices. We heavily use it for iOS and Windows devices.

Microsoft Intune improves our organization’s response time. We are supporting an older population of users. It is a key advantage to be able to support users who lock devices quite frequently.

The product’s biggest advantage is its ability to unlock a large number of devices remotely. It supports end-users who tend to lock their devices quite frequently. Its conditional access policy helps us keep the users logged in to their devices.

Microsoft Intune fails a lot when it comes to device compliance. The devices fall out of compliance a little too easily. If the users don't check in within a certain amount of time, they become non-compliant, even after having up-to-date standard settings.

I have been using Microsoft Intune for three years, personally. Our organization was using it for one or two years before I joined.

I haven’t encountered any stability issues for the product.

Microsoft Intune supports over 10,000 devices for our customers, primarily using iOS and Windows. We have a large number of managed apps in the aerospace industry. We were able to transfer apps to our devices managing app licensing through Intune.  I rate the product’s scalability a nine out of ten.

The technical support services are pretty decent.

Positive

I can see a good return on investment in terms of the areas it can automate to summarize day-to-day tasks, making them less time-intensive.

Intune has helped us greatly by rolling out conditional access policies with the RBAC settings. It helps us create a security posture for devices.

The product is critical for our organization to keep devices safe. We have a large number of around 300-400 IT executives. It is crucial to be able to limit any one user or group of users within the IT field from a zero-trust standpoint.

In the time aspect, the product helps users get the right tools whenever required. It saves a couple of work hours per month by letting the right IT executives know how to access the devices.

We heavily use iOS space with iPads. I advise others to decide to buy the product depending on the operating systems their environment supports. They should make sure it is the right product for their devices. 

I rate Microsoft Intune an eight out of ten.

We use the solution for auto-enrollment with app EPP and application deployment with EPP.

We're currently testing the possibility of using the solution as a new MDM tool for mobile applications.

All regions and departments operate on the same model; we turn on the device, select if it's personal or corporate, and all the products and profiles are loaded onto it.

The solution hasn't improved our organization yet, as we're still in the testing phase and have yet to go into full production.

The ability to switch between Affinity and non-Affinity enrollment is great. 

The wiping features are very good. 

The capacity to create more profiles and switch between corporate and personal devices are beneficial features.

One of the main advantages of Intune is that it's a Microsoft product, so it integrates with the other MS products we use.

The solution needs to be better for managing laptops; many functions are still unavailable in this regard.

The scalability could be improved, and like most other MDM products, Intune is good but not 100% there yet.

We've been using the solution for a couple of years. 

The stability is good, and there has been a lot of progress since I last used the solution.

The solution is working well for the most part, but some improvements could be made to the scalability. 

I never had to contact technical support. 

I previously used MobileIron UEM and VMware Workspace ONE.

I wasn't involved in the initial deployment. Now that it's set up, deployment to devices requires turning the phone on, and the device will automatically pull up the profile if the client is linked to our Apple Business Manager tool. We currently have one staff member involved with the maintenance, but we're looking into distributing it to others on the same team.  

The pricing for Intune and the competitor products are all within the same range, there is no true advantage when it comes to cost. 

I evaluated MobileIron and VMware. 

I rate the solution seven out of ten. 

We have yet to reach a level where we can notice flaws or identify areas for improvement since we're still checking and have yet to run the solution through a capability list.

My advice to others evaluating Intune is that it's the best solution for mobile devices like Androids and iPhones. However, if you're rolling out physical laptops, I recommend using a second tool, as there are still many unavailable options on the Intune app for laptops.  

We use it for the rollout of Windows and Apple devices to our users.

Its direct integration with all the other products that we have from Microsoft is valuable. We're using the E5 license, and we have a whole wealth of different products available. It just makes it easier to have everything from one provider. 

One big problem with Microsoft is that they're changing the names of the products quite often, or they're quite consistently doing so. Intune is now Endpoint administration. Constantly switching the user interface or the administrative interface makes it quite hard to keep pace. If you are on a two-week holiday and you come back and look at the same screen you have looked at for the last couple of months, it looks different, which is annoying. Changing things around all the time doesn't make it easy.

There are some elements where the integration isn't finalized. So, for some of the things, you use the user interface, meaning the administrative website, and for some of the things, you have to use PowerShell to make changes, and it's not quite clear why you have to do things at one point this way and at the other point that way. If they could improve that a little bit more, it would be a good thing.

Other than that, functionality-wise, it, more or less, serves our purpose. I'm not really sure what I would wish more at the moment.

I have been using this solution for over a year.

It is stable 99% of the time. There are some problems with Microsoft in terms of outages, but overall, the solution is very stable.

It is very easy to scale. It is basically adding additional licenses. It requires adding additional domain names and things like that and maybe adjusting a couple of security groups, but other than that, it's really easy to scale up or down.

We have only 120 users in 44 companies. A few of them have financial, accounting, or legal backgrounds. We are not an engineering company; we are a service company. We are a shared service center catering to the needs of more than 44 other companies. That's our business. We are a managed service provider to all these companies.

Its documentation is quite okay, and if not, if you Google things, you would find almost everything. 

We had four, five issues over the last year, and we had to contact them. They were actually quite swift at solving problems. So, overall, we are happy.

It was easier than expected. We did the full deployment for 44 companies and about 120 users in about three months.

ROI is very high at the end. We were using a full data center before with three racks built up with about 30 host systems and 220 virtual servers that we operate in, and by just switching to Microsoft 365, we could get rid of all of them. It made our life easier in terms of support and maintenance. We have saved the costs for all the hardware that we had and all the hassle that we had when parts were broken.

If you ask the accountant or the finance department, they'll tell you that it is way too expensive, but when I look at the cost and compare it with the value you actually get, it's more than fair.

We looked at the Sophos solution as well. We are a Sophos partner, but it was easier to deal directly with the Microsoft solution primarily because of the rules management and the Microsoft groups and the security groups that we use. We use rule-based access, and we have access packages so that users can elevate their rights with an approval process in the back.

I would rate it an eight out of 10.