Microsoft Intune Reviews

We primarily use the solution for remote workforce systems that are not connected to the VPN, to flexibility deploy software, and operate system upgrades and policies, as well as pushing scripts to the devices. Pretty much just about anything that we can do in Intune, we're going to be doing. If we're not doing it already, we will be doing it.

Right now, pushing out software and policies is the solution's most valuable aspect.

The pricing and support are great. 

The dashboards, the security, and the customization capabilities work very well for us.

Everything is so tightly integrated with the on-premise solution. 

In terms of what is missing on the solution, I can't really think of anything right off the top of my head. It's doing everything we need it to do.

It would be helpful if there was proactive remediation.

In terms of some of the reporting, I find that it takes too long for some of the reports to display actual data.

We started in February using Intune on an actual production project. We had used it on a very limited basis as a testing bed several years ago, however, it wasn't a mature product back then.

The stability is great. We haven't had any issues in that regard. We don't have bugs or glitches. It doesn't freeze. It's reliable.

The scalability is very good. If you need to expand the solution, you can.

It's a management system, so every single endpoint across the enterprise has Intune connectivity. I would say 100% of our users are basically on it. We're managing all of our internal resources through Intune and the on-premise solution configuration manager. We've got upwards of 8,000 employees currently.

The support has been excellent. We're quite satisfied with the level of service provided.

The initial setup is not complex. It's relatively straightforward.

Deployment was basically a three-day engagement.

We had some assistance from Microsoft. A Microsoft engineer came on-site to assist us over the course of the deployment.

We're not paying for Intune due to the integration with Configuration Manager. If you own Configuration Manager, you own Intune and vice versa. If you own Intune, you own Configuration Manager or the on-premise solution. As far as how much Configuration Manager costs, I'm not exactly sure. We set that up a long time ago and I just do not recall the cost on that.

Our company does not have a business relationship with the vendor. We're simply customers.

We're using the very latest version of the solution. We're using it with Microsoft Endpoint Configuration Manager, and we're running a 2006 build. With Intune, since it's the SaaS model, it's whatever version is available in the cloud.

My advice to other organizations considering the solution would be to be patient. Some of the reporting, for example, takes up to 24 hours before it is actually displayed in the console, depending on a number of endpoints you're trying to manage. 

The other recommendation would be is be prepared to switch your way of thinking around deploying policies through Intune. The policies in Intune are similar to GPOs, but there is a difference. There is a very, very distinct difference between those policies and the equivalent of the policy and the configuration as a baseline. They're similar in nature, but they're very different. You have to kind-of switch your method of thinking.

I would say I'm very, very pleased with the solution. Even with the delayed reporting, I would give it probably a solid nine out of ten.

When we develop, it's used for multiple different solutions. It could be anything, such as a portal, field services, web development, web apps, and lots of other different things.

For me, there are many strong points in the solution. Firstly, the skills are readily available. That's one of the things. There's a lot of Microsoft expertise in the market. 

Also, they've invested a lot in their software and continuously updated it. So I think those are the things that are very important to us.

There is room for improvement in integration and security as well. Those are areas that clients are always concerned about.

So, in future releases of the product, I would like to see better integration as well as enhanced security.

I have been using Microsoft Intune for seven years now. We are dealing with the latest update of Microsoft Intune. We have started working on it, and our developers and other personnel are currently getting certified for it.

It is a stable solution. I would rate the stability an eight out of ten.

I would rate the scalability an eight out of ten.

We have over a thousand endpoints using Microsoft solution.

Customer service and support are helpful and responsive.

Positive

If you've got the right skills, the initial setup is not that difficult. It is very quick to set up. It doesn't take long. 

Some customers have benefited from it.

We work with all Microsoft products,  like .NET, and a lot of development around those areas. 

Another one, Arc Systems, is a current platform that we use.

I would recommend using this solution. Overall, I would rate Microsoft Intune an eight out of ten. If they could make the integration a lot easier, it would be better.

We are going to use Intune for registration and then we're going to use some kind of condition policies for resource access for unmanaged devices. With on-prem AD-based access, when the users are working from home or somewhere else, they need to connect to the VPN or something to access the corporate network, whereas, with Azure and Intune, we are going to provide the resources for application access. We can directly provide them access by using conditional policies.

It has been only three months since we took the Azure subscription and migrated all the users to it. We are running it in the production environment. We are not running it in the testing environment. We are not implementing everything in one go because if any issues happen, it's not easy to roll everything back in minutes. For this reason, we're implementing them one by one.

With on-premises Active Directory, the main challenge was that we had no control when a user was working from home. We didn't know what exactly a user was doing and whether the AV was up to date or not. Intune provides better control of their machines.

A few of the options are a bit hard to understand. As compared to on-prem services such as AD, it's a bit different. For example, group policy objects have different names. It takes some time to find out where various options are available.

I wanted to check if there is any provision at the Intune level to restrict certain things, such as a website, but unfortunately, that feature is available only in Microsoft Defender. Intune has web filtering capabilities, but they are only useful for protection from malicious websites, whereas we would like to be able to restrict a website. For example, YouTube is a clean website. No one would identify it as a malicious website, but if we want to stop the end-users from going to that website, we have to go for another product, such as Microsoft Defender or another third-party proxy solution. It would be great if this capability is included in Intune.

We started using it three months ago. 

Over the past three months, I haven't seen any instability from the Intune point of view.

We have approximately 220 users. We don't have any immediate plans to increase its usage, but by the middle of next year, we might increase the usage of the product to another 70 or 80 people. We would be able to scale it based on our needs.

I haven't raised any case with Microsoft support, but I believe Microsoft has different types of service agreements based upon which they provide support for different applications. 

I have gone through multiple Microsoft articles, and they have sufficient to-the-point information there. 

We were using on-premises Active Directory, and we were restricting certain things through GPO, but there were a lot of challenges when the users started to work from home. 

Its initial setup is fine. I haven't seen any issues. I have worked as a technical lead at the architect level on different products. For that reason, I haven't had many challenges.

Its implementation was a bit longer because we took our time in testing on multiple machines and multiple users. We wanted to ensure that we are able to achieve what we wanted. We completed all the use case scenarios and what we were expecting from the security point of view.

We implemented it in-house. We had two people for the setup, which included a junior person and me. 

We also take care of its maintenance. We are managing approximately 220 people. I take care of all the cybersecurity and software-related work at the corporate level. Most of the people are now coming to the office. So, we have prepared a simple document for them to follow. 

We don't have just the Intune license. We have the Enterprise Mobility + Security E3 license, but I don't have the exact figures. Someone else was involved in the initial discussions and purchase, and the entire environment was handed over to me.

Any bundle package, such as Security E3, covers multiple things, such as AAP, BitLocker, etc. If you go for them individually, they would be more expensive. Bundling makes the price more attractive and competitive.

It is suitable for small, medium, and large companies, but it also depends on your requirements, budget, and the things you want to restrict. 

I would rate it a nine out of ten.

This solution is on the cloud. What is required currently by our organization is an internet-facing device. The challenges with on-premise have a lot to do with this pandemic. This is why we've seen Intune with the MDM background grow so fast — because we don't have any on-prem limitations. On the cloud, you can manage everything. You can push policies, maintain patches, and maintain security because everything interacts on the cloud. A VPN is not required. In the legacy method, you need to use a VPN for anything and everything. This increases costs.

For Windows services, there are multiple options within Intune to modernize it to be more internet-facing and dynamic. Intune also provides us with a lot of flexibility to manage Windows-specific devices. 

Mobile-wise, I like the MAM feature. It provides us with more control over the application identity levels. When combined with Azure, it provides us with multiple opportunities to design and construct a solution that meets a BYOD or CYOD model.

Regarding mobile devices, Intune is good, but there are other services that I would say are ahead of Intune from an administration and reporting point of view. These are a few things that could be improved from a mobile infrastructure point of view.

From a reporting point of view, it could use some work. If I need to push a profile, it's a challenge with Intune because first I have to go ahead, remove a user, then add him back; only then does it allow me to push or sync. If it synchronizes, it exits on a cloud-based synchronization time. With AirWatch, there is a function where you can push a profile directly on a device. 

Overall, Intune has improved from MDM. They have become EMM and now they're moving towards Unified Endpoint Manager. They're just beginning to compete in the market from a mobile point of view, but regarding Windows, they're great. 

I have been using Microsoft Intune for more than five years. 

I'd say it's 99% stable. Azure being in the background has impacted it a bit, but overall, it's stable. 

Currently, Intune is on track to exceed SCCM. In the near future, most companies will be using Intune. Currently, roughly 25% to 30% of companies use Intune. The rest of them, 40% to 50%, are still using SCCM and trying to evolve old solutions — this will change. This whole management model will completely change into a hybrid Intune model or a complete Intune model.

The vendor ships the machine directly to you. All you need to do is connect it to the internet. It takes around 30 minutes or 40 minutes depending on the configuration. After that, you're ready to go. Post setup, if you need anything, you can simply go to the built-in Intune company portal and shop from there. This saved us a lot of time.

Still, the initial setup was not straightforward. When we initially started with Windows, there were a lot of open items. There were a lot of things which were not there. Obviously, we couldn't just move a company directly from on-prem to cloud. There is complexity, there are some legacy procedures that we had to follow. At that point in time, Intune was not ready, but currently, there are a lot of options that can fulfill your security requirements, your network requirements, your application requirements, user accessibility requirements, and the user experience. All of these things are pretty much in the place now. To start with, it was not this way. 

When I started using this solution, it took me roughly one year and three months to understand how to build it, to do due diligence, etc. Now, I can migrate an organization within 13 days.

Implementation is a complete team effort. You have to understand a company from a network point of view, a security point of view, a compliance point of view, and a GDPR and HR point of view. These things take time to analyze; it's still maturing but it's a little bit better than what we had before. Now, after I have interacted with an organization, I can get it up and running within 15 or 16 days.

I never got a complete picture regarding how much we've saved thanks to this solution. Still, I think it's very significant. We stopped using a lot of services because we didn't need them anymore. We don't need a lot of resources — we don't need to procure them. We don't need a VPN solution, plus, shipping is all taken care of. 

I started my journey with AirWatch. It was primarily an MDM solution. According to Gartner, AirWatch and Microsoft are currently neck-and-neck. From an organization requirement point of view, regarding MDM, I'd say AirWatch is a step ahead of Intune.

For the last four years, I've only used Intune. I don't know how AirWatch has improved over the last four years. Still, simple things, like pushing a profile are much easier with AirWatch compared to Intune. From a UI point of view, it's really easy for an admin to go ahead and work using AirWatch. From a deployment point of view, there are multiple options for retaining user data. 

As long as it will not primarily be used for banking or security purposes, I would recommend Intune. If you work in a banking environment and are looking for a high-security solution, then I would recommend VMware, AirWatch, or Jamf. As I said, Intune is still developing. Maybe this will change after another year, but currently, regarding banking and security, AirWatch is a step ahead when it comes to mobile infrastructure policy. 

Overall, on a scale from one to ten, I would give Intune a rating of seven.

Intune is a cloud-based solution for MDM and endpoint management.

The most important thing for me is the autopilot feature. Other products have this capability but they have to first integrate with Azure. Because Intune is a Microsoft product, you don't have to do anything explicitly to get this feature working properly.

Microsoft really needs to improve the reporting in Intune. It doesn't come anywhere close to VMware Workspace when it comes to their reports. I am sure that Microsoft will improve but at the moment, they are underperforming in terms of reporting.

There is a feature called dynamic groups, which populates users and computers based on a query that is written, and it runs at some interval. I would like to see this updated more frequently so that the users don't have to fair for too long before computers appear in the group.

I would like to see the ability to deploy custom packages as a Windows 64-bit package, as opposed to the Windows 32-bit, which is the only one available now. Although it can run in 64-bit mode, I would like to see this supported natively.

I have been working with Microsoft Intune for about two years. I have changed companies since that time and we are now evaluating Intune for use in my new organization.

Intune is a stable product and it has improved a lot over the past year. This is something that Microsoft is always working on, and I think that it will continue to improve.

We have not had the chance to test scalability. We will have the real results when it is put into the field.

I have not been directly in contact with the support for Intune. Rather, when I have needed assistance, I went through a partner channel.

I set up Intune without any assistance.

The price of Intune is included with the license for Office 365, so we don't have to pay anything extra for it.

We are currently evaluating both Microsoft Intune and VMware Workspace, and we will choose the one that best suits our use cases. Our plan is to implement one of these products in a couple of months.

One of the conditions is that we have to make sure that it supports all of the devices that we have in the enterprise. For example, we have Windows, Mac, Android, and iOS devices that need support.

Second, we need to have the autopilot experience for the users running under Windows. If somebody joins the company and they are provided with a laptop then we need to have it set up correctly. Normally, when it ships from a vendor such as Dell, Lenovo, or HP, it will come with their software pre-installed. Given the current situation with employees working at home, the laptop ships directly to where they live. At this point, with autopilot, they should be able to log in using their cloud credentials as soon as the device is switched on.

Once logged in, all of the details will be picked up from Azure, including the policies, updates, and other mandatory software such as Skype, Zoom, and Microsoft Office. Essentially, it eliminates all of the laptop setup and configuration that used to happen inside the organization.

Intune supports autopilot natively through Azure, and VMware Workspace is on par with this as well.

Next, it should have good reporting features. All products are able to generate reports, but we should be able to customize them in the way that we want.

We also have to have good security, where we can push all of the security configuration and policies that our organization has. This will differ based on the department. For example, security in banking or finance will be different from the security in manufacturing.

Finally, we should be able to deploy applications all over the cloud.

I think that in comparison, VMware Workspace is a more mature product than those offered by competing vendors. It has been developed very intelligently. The UI is good, with fancy graphics. They also have Smart Groups, and a different way of deploying applications, which are very good features.

VMware Workspace also has a slight advantage over Intune when it comes to managing multiple hierarchies. Intune does not support this type of structure, where you can have sublevels. For example, I can have a root-level like Europe with sublevels such as the UK, Germany, and France. 

The suitability of this product depends on your environment, requirements, and use cases. If you have a reporting-extensive company, for example, then you may need to look for other products. Similarly, if you are a multi-hierarchy organization with a presence around the globe, then Intune may disappoint you.

Given all of the factors and things to consider, including features and cost, I would say that Intune has a slight edge over competing products.

I would rate this solution a seven out of ten.

We have policies that need to be enforced regarding mobile devices accessing email and the corporate intranet. We have defined them in Intune so that the devices are not able to connect to the resources that they are not supposed to connect. This is the main use case for which we are using Intune.

It helps with security because everybody is not cautious. For security, it is quite useful. It has had a positive impact on the organization. We have zero tolerance for cybercrime. We do not want any threat to our systems. Intune has reduced the number of security issues. It helps to ensure that the devices are compliant and can connect. It also helps with some tracking.

We understand that as an organization, we are not supposed to interfere with users' personal data. We are able to use Intune to segregate the applications. It controls what they are allowed to see on the bank network.

We have three different categories of staff, and we are able to create and enforce policies based on each category.

We have an overview of the devices in terms of security compliance and from where they are connecting with our network. We can also do root cause analysis when there is any issue. It also helps prevent data loss. If a user is doing something against the policy, it can inform the user.

We have good visibility over mobile devices and workstations. If we have any problem, we know where it is coming from.

Intune has helped with productivity. Before Intune, we were not able to give access to some remote workers because we were not able to check exactly what kind of devices they were using. We had a limited number of people who could work from home. With Intune, we are able to check the devices to allow them. If they cannot finish their work in the office, they can continue from home.

It has helped with compliance. It has helped to ensure that devices comply with the organization's policy. If they are not compliant and secure, they cannot access the resources.

It would be good if, in addition to the minimal patching and compliance, we could also use Intune for application deployment. For instance, if a device is not patched, Intune should have the ability to push not only a Microsoft patch but also other patches, such as a browser patch.

I have been using Intune for six years.

It does not have any problem.

It is scalable.

We were not using any similar solution previously.

We have it on a public cloud. We have Microsoft 365. 

It is not difficult to maintain because it is in the cloud. It is important for us that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices.

We had a Microsoft partner for some configuration and training. We did not have any issues.

We have seen a positive return on investment, but it is hard to quantify the ROI and put a value on it. As a bank, we must protect our data, and the cost of losing the data is very high.

We did not evaluate other options.

I would recommend it to others. I would rate Intune a nine out of ten.

The solution has a holistic approach. The device management, application management, identity management, and cybersecurity features are valuable. It brings all of the endpoint and security management tools into one place. It provides complete integration with Microsoft products. It provides full endpoint visibility and IT controls across device platforms.

It makes the security measurements easier to maintain. The user experience is sufficiently good. It helps secure hybrid work and protect data. The tool provides an add-on that integrates artificial intelligence and Microsoft Graph. It is a good development. The product has affected IT productivity in our organization.

It's a good platform for management and security for all kinds of devices. There is less trouble for the users so they can do more. For the IT team, the product provides a guarantee of security. The solution has reduced the risk of security breaches by 30%. It has helped us save on direct and indirect costs. We are a global organization. We need fewer resources and are more secure due to the solution. There are much less incidents based on security.

The tool helps consolidate vendors. There is much more functionality that we can leverage. It has positively affected the security posture of the organization and licensing costs. The capabilities of Intune that are integrated with Microsoft 365 and Microsoft Security are very important. I work in environments that are completely Microsoft-dominated. The more we use Microsoft, the better the integration. It is easier to connect the different parts. I am satisfied with the product’s performance.

The add-ons must be integrated into the solution. They should not be separate add-ons. The add-ons have artificial intelligence and must be part of the base product.

I have been using the solution for very long.

I am satisfied with the product’s scalability.

The technical support is quite reasonable.

Neutral

The pricing is competitive, but it is not cheap. All the licenses are not cheap nowadays.

I have used AirWatch in my previous organization. The integration provided by Microsoft Intune is its biggest advantage over its competitors. Most of the integration with third-party tools is good.

I'm familiar with Microsoft Intune from the beginning. I have heard that the solution’s Tunnel for MAM feature enables users to use their private phones to make a secure connection to the company's network to access company resources. I haven’t used it yet. We are partners and customers. Overall, I rate the solution a nine out of ten.

Intune provides a platform for managing all our devices, including mobile iOS devices and PC workstations. It can also control some aspects of servers.

We can automatically enroll our devices with Intune. It helps us implement company-wide policies and ensure regulatory compliance because we can restrict how company devices are used. Intune improves security by enabling us to set conditional access policies for each device. 

Intune can wipe devices. For example, if a disgruntled employee wants to leak the data on their company phone, Intune can terminate their access and wipe the entire device with a click. Conditional access is another essential feature. 

You can set up two profiles on every device to keep personal data separate from company data, and the employee cannot copy data between them. This is a critical requirement for most companies to avoid the loss of sensitive data.  

Intune doesn't provide much control over Windows servers. It's something we struggle with.

I have worked with Intune for six years.

Intune is mostly stable. Microsoft guarantees 97 percent availability throughout the year, so it's pretty stable. 

Intune is scalable. 

I have used multiple endpoint management solutions in the past nine years. I also work with Jamf, a solution that focuses on iOS devices. Compared to Jamf, Intune also has some limitations when working with iOS. For example, Jamf can create specific policies for each iOS device, whereas Intune can't go that far. It also has role-based and device-based features. You can do more customization on iOS devices with Jamf. 

The initial installation isn't too difficult, but it can be complex if you have a large number of devices and need to do lots of customization. It is more complicated to onboard Windows PCs versus mobile devices, which are pretty easy.

The number of staff members required also varies according to the job and the timeline for deployment. For example, I would probably need additional resources if I'm enrolling 20,000 devices in under a month. However, we don't need too many resources if we have enough time

Intune is a cloud-based solution, so Microsoft is responsible for maintaining the infrastructure. We only need to handle the administrative and configuration adjustments on our side. 

Most clients get the ROI they expect, with the exception of those organizations that primarily use Mac and iOS. Jamf is more appropriate for iOS users. You may need to buy two solutions if you have a mixture.

Intune is reasonably priced. When we design a solution, we always compare costs for the client, but I don't know the price of Intune off the top of my head right now. It varies depending on the size of your organization, the market, and the reseller. You can buy a stand-alone license for Intune, or it may be included in a 365 license. 

I rate Microsoft Intune nine out of 10. 

Before implementing Intune or any endpoint management solution, I recommend looking at your internal requirements. Are most of your devices iOS or Android? Do you need automated enrollment? Go for Intune if you're using mostly Android mobile devices and Windows PCs.