Microsoft Intune Reviews

Microsoft Intune serves as a crucial tool to safeguard against unauthorized access and protect sensitive data. By implementing Intune, we can control and monitor device usage, acting as a gateway to enterprise services. Access to corporate resources, including email and sensitive information, is restricted to devices enrolled in Intune. It is a comprehensive security solution that not only controls access to enterprise resources but also tracks and prevents unauthorized access, ensuring the protection of sensitive data and preventing potential data loss scenarios.

It acts as a central integration point for endpoint and security management tools, simplifying the connection process. However, considerations such as privacy laws may impact the integration of certain devices, like partner devices, emphasizing the flexibility of Intune in adapting to various organizational needs. Given that Microsoft Intune operates on a policy-driven model, connecting all staff devices becomes a matter of duty. This is because the platform excels in efficiently managing endpoints by enforcing policies that govern device security, access, and compliance.

When it comes to the user experience, integrating and onboarding with Microsoft Intune is a seamless process for the majority of devices, such as those from well-known brands like Android and iOS, where compatibility stands at a high success rate of around ninety-four percent. However, it's important to acknowledge that there might be challenges with certain lesser-known or non-mainstream brands, where compatibility may not reach a hundred percent.

The implementation of Intune hasn't significantly impacted IT productivity within our organization. Instead, its primary function is to enhance security for remote connections.

Intune has played a vital role in minimizing the risk of security breaches. Its effectiveness lies in restricting unauthorized access, particularly in scenarios such as conferences where secure connectivity is crucial. This reinforces the overall security posture, especially concerning mobile devices.

Implementing this product has resulted in cost savings for our organization. In the event of data loss, the expenses associated with investigations and remediation are significantly reduced. The product adds value by mitigating the financial impacts related to security incidents.

Intune plays a crucial role in ensuring the security of hybrid work environments and safeguarding data on both company-owned and BYO devices. While it functions seamlessly for mainstream devices, including Dimensional and others, there might be some challenges with certain brands of personal devices. However, overall, Intune provides a comprehensive platform where both corporate and partner devices can coexist securely.

The utilization of Microsoft security signals, coupled with the impact of Intune on our organization's security, is a pivotal aspect of our strategy. While there may be some limitations in the user interface when dealing with BYOD scenarios, the synergy with Microsoft Defender solutions is noteworthy. The seamless integration within the Microsoft suite ensures a cohesive security approach. Additionally, the incorporation of phishing information and tracking numbers further enhances our security posture, especially when dealing with partner devices atop the Microsoft Defender platform.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security for both cloud and on-premises managed devices is highly valuable. The suitability depends on the specific requirements and the number of users in a given scenario.

There is room for improvement, particularly in terms of compatibility, extending beyond the well-known major brands.

I have been working with it for approximately a year.

It provides good stability.

We never faced any issue with scalability.

Thus far, we have not encountered any issues with the support provided, and their responsiveness has been satisfactory.

The deployment process is straightforward; we simply configure the necessary settings within the server, initiate the enrollment, and push it out. This streamlined approach facilitates staff onboarding efficiently.

When it comes to licensing, the decision to include Intune may vary based on the volume of users and the specific modules needed.

Overall, I would rate it eight out of ten.

We use Intune for endpoint management to ensure they are updated with the latest patches. We also leverage Intune to oversee our applications and keep them current. Lastly, we employ Intune's remote tools for endpoint administration.

We implemented Intune to ensure our endpoints were updated.

Intune brings all our endpoints and security management tools into one place.

Intune is integrated with Defender to manage our security policies.

The user experience is good. Intune is easy to use and deploy.

Intune has significantly improved our IT productivity by automating the updates for Windows and third-party applications. This automation reduces costs and improves efficiency, allowing us to adopt a set-and-forget approach to software maintenance.

The automatic patching is the most valuable feature of Intune.

Intune needs to incorporate more tools to reduce the number of third-party applications we rely on. For instance, I currently use PatchMyPC to package new applications for Intune and then deploy them to endpoints. If Intune offered this functionality natively, we wouldn't need to rely so heavily on third-party applications.

I have been using Microsoft Intune for almost four years.

The technical support by Microsoft is terrible. 

Negative

The initial deployment was complex, requiring an expert for setup. It took one week to complete and involved one system administrator and me.

The implementation was completed in-house.

We have seen a return on investment from Intune through time saved, which correlates to around $20,000 per year.

I would rate Microsoft Intune seven out of ten. Intune is a valuable tool, but following the screen prompts can sometimes be challenging.

Two of us are responsible for the maintenance of Intune.

I'm working with InTune on the user side. It's used for device enrollment and mobile device management. It's used for remote desktops and remote control for compliance. 

The solution helped us resolve user enrollment issues. Sometimes, users want to reset, for example, file server systems and Intune ensures a user can't just enroll any new systems.

The mobile device management is very useful. With mobile device management, we can monitor everything and control devices. We can monitor devices and fix things on remote desktops. 

Intune brings all endpoints and security management tools into one place. This helps us monitor everything from one portal. We can exclude any PowerShell command. It helps us not only monitor for but also fix any problems. We can add and remove items remotely from any device from a single place. 

The solution has a helpful feature called Co-Pilot. We can access it via the portal and configure it as we need. However, I have not used it myself. 

We use Intune with a hybrid model. We can connect it easily to other services. 

With the ability to monitor everything from one place, our security is quite good. The level of security is better. I'd rate the level of security we've been able to achieve ten out of ten.

It's positively affected IT productivity in our organization. Having Intune has made our IT engineers more effective. They can use the cloud portal from anywhere and at any time to easily adjust or deploy whatever users need. 

We've been able to save money compared to using SCCM. Intune has helped from a cost-savings perspective, although I can't speak to exact costs. 

There are a lot of updates happening on Microsoft.

I've used the solution for about six months. 

I haven't had any challenges with stability.

I haven't come across any limitations in terms of scalability. 

I've never had to reach out to technical support.

I also use VMware. 

The initial setup was straightforward. We simply needed to create an account don't he Microsoft side and then we can go and get licenses. 

I administrate and maintain Intune for the company.

I don't have any visibility in regards to Intune pricing. 

I'd recommend Intune to others. I'd rate Intune ten out of ten. 

Nowadays, we've seen more evolution towards Autopilot for Windows 10 and then in a hybrid or cloud-only setup. After the Windows devices, we use it with Android, the most frequent mobile, and then iOS. I have five or six projects regarding Microsoft.

It helps deal with conflicting policies. We do a lot of graph API calls toward Microsoft for reporting, et cetera. 

It simplifies the work of the IT admins in a company if you set it up right. The setup will take some time, obviously. However, if you set it up right, it will simplify the management of your endpoints. The enterprise app management is great. With Intune, you can shorten the time needed for handling the necessary updates so that there are no vulnerabilities on the applications or on the operating system side of things.

The Intune suite offers a lot of features. 

The AutoPilot feature is helpful.

Endpoint privilege management is very good. You can bring your own device setup. You can use it in combination with conditional access policies for encryption.

Migration from on-prem to cloud is good.

The settings catalog and configuration profiles are also very, very useful.

Intunes brings all of our endpoint and security management tools into one place. This is a good thing. We now have one portal to check instead of dozens. I'm really happy with that.

The overall user experience is quite nice. I have no complaints from end users regarding their devices enrolled in Intune.

We've used Copilot. We have nothing to complain about, however, it is very expensive. With Copilot, we summarized a few of our policies and devices, which were great. We check the properties of the devices, hardware, of the devices, and so on. Mostly, we played around with the summaries of the policies, however, we switched it off since it was running for a couple of days, and it was a few hundred euros for those few days. 

Witnessing the benefits of Intune happen quickly. Clients usually begin to see benefits after the kickoff meeting. Intune is an ongoing development product. It helps both greenfield and existing setups. It's not static. We'll work with policies and versioning, and after every quarter, we'll review our policies and update where necessary. If clients used Intune managed services, they get policy updates included in the managed service. 

Intune is good for securing hybrid work and protecting data of the company while bringing our own devices. We use device framework policies from Microsoft themselves with some minor adjustments. They have level one, level two, and level three policies. You can just fix the settings of their site, and that's also what we use. Then we just tweak and bring in our own experiences. 

The endpoint privileged management enables users to enforce privileged access and can positively affect user productivity. In in small environments, the end users are, in 99% of the cases, also local admins on their devices, which is obviously not good. In bigger environments, we get into that less often as it's more of an organized thing. That said, in small environments, everybody is a local admin and that brings certain risks with it. So users can install and download everything they want. With endpoint privilege management, we can set rules for specific applications, and then, a user can ask for approval to run a certain application, which is very good. 

Intune positively affects overall IT productivity in organizations. If users need to install it on a device that they need in their workday or day-to-day business, they can just grab it themselves from the company portal app. They do not have to wait. They do not have to enter a support ticket that goes to the help desk to request a certain type of software. They can do it themselves, so they save a lot of time.

Intune, when applied on the cloud, can save on costs. With the cloud, there's no on-prem infrastructure that needs service, electricity, space, or cooling, for example. 

There are a lot of features that need to be released. There is no copy-paste or fie transfer. There's more work to do. They don't live up to my expectations anymore. Microsoft has a history of releasing features that are not completely finished. 

Remote help needs to be better.

Reporting needs improvement. It's still lacking. The built-in reporting is pretty basic. In managed services, we have a lot more reporting. However, we had to develop it ourselves.

I've used the solution since the product launched, about 15 years ago. 

The solution is fairly stable. I cannot recall the last time that there was a health issue reported on the Microsoft side regarding Intune.

The scalability is perfect. I've had no issues with scaling. 

The communication between us and Microsft is good. They do come back with insights on what's to come. When it coms to support, if you are lucky, you will get a good tech that can help. The knowledge of some techs are insufficient. They may ask basic questions that are not relevant to the issue. You spend a lot of time re-answering questions you may have already addressed in the original ticket.

Neutral

I did not use a different solution previously. 

I've been in touch with MobileIron and AirWatch, however, that's very, very basic.

I work with both on-cloud and on-prem versions of the solution. 

The initial deployment is very simple and straightforward. I've been doing it for 15 years, so I understand the process. When people are new to Intune, there may be some complexity. There are many things that need to be considered. The learning curve can be steep. 

There is support from Intune for maintenance, like when an application fails to install. 

I tend to implement the solution myself. 

Some people have Microsoft 365 with a security add-on, and Intune is integrated. 

Copilot is expensive as an add-on.

It's a rather expensive solution, especially if you want to use all the bells and whistles. 

I've been involved with the solution as a customer, integrator, reseller and consultant. I'm a freelancer as well and use it myself. I'm selling licenses and doing greenfield setups for different customers. 

We've not yet used all aspects of Intune suite, which is a new collection of advanced endpoint management and security tools. We have demoed it, and we are showing it in workshops. However, we do not have it in a live environment. A lot of customers are hesitating to buy the Intune suite due to the price. Some users may be paying fifty euros per user per month and then would need to add another 10 euros for the Intune suite, and that's a big step since that would be a fifth of the license that they're already paying. 

It's helpful that Intune is integrated with 365. It's important that everything is integrated together so that the Microsoft ecosystem becomes seamless. 

I'd rate the solution 8 out of 10 overall. 

It's a fund product. The possibilities are almost endless. It will make your life easier. 

I was using Intune with a customer. I had a long-term contract with a mining company, and then I moved to another organization. I am now in a different company. They all are large organizations. They are moving to the cloud, and Intune is one of the tools they are going to utilize.

In my previous job, Intune was being used for the cloud environment. We migrated fully from on-premises SCCM to cloud-only managed. We were utilizing all the benefits of Intune for cloud management, such as Windows updates, encryption, configuration, replacement of GPOs, etc. Moving away from the SCCM to Intune was a part of my previous job.

It is a modern tool. It is a cloud-based or software-as-a-service tool that gives you centralized management at one location. You have good dashboards. You have pretty much everything at a single location. You can manage different settings in one place. It is about manageability. It also gives you access from any place. It is a cloud solution, so as long as you have connectivity, you can do pretty much everything.

Intune brings all of the endpoint and security management tools into one place, but it is a lengthy process because I have been working for large organizations. They have been heavily dependent on on-premise services for years or decades, so the transition always takes time, but it is pretty successful. It is a good tool, but in security, there are dependencies, so it takes time for the transition to be successful. We have been using different security baselines and CIS or NAS methodology. It is a difficult process. Especially when you do GPO migration, not all settings are yet directly supported in Intune. Sometimes, you have to do a bit of workaround, power shell settings, and registry settings. It is tricky, but it is a key area for a successful transition.

Intune does not yet provide full endpoint visibility and IT control across device platforms. There is still a significant gap between all the systems we used on-premise and Intune. It is probably going to take time for Microsoft to fill the gap. Sometimes, you have to use third-party products, and sometimes, you have to use workarounds. It is a tricky one, but Microsoft is moving in the right direction, slowly but surely.

In terms of user experience, users do not use Intune. From the user perspective, it is about the performance and the impact, and there are some analytical tools to measure performance, reliability, etc. The built-in reporting is pretty good.

Intune affects IT productivity. From the IT operations perspective, things are much more simplified. The transition also enforces some cleanups, optimization, etc. It is definitely a great improvement for the IT organization.

Intune itself has probably not reduced the risk of security breaches, but there are many add-ons. There are many security products from Microsoft that integrate with Intune and Azure. Its reporting is great. By having the right knowledge and the right understanding, you can utilize this. There are some security baselines that you can utilize in Intune, which are coming out of the box. Microsoft is providing its own products for security, and this is probably an area we should explore.

Intune helps to save costs. As a part of the transition from on-premises to Intune, you can decommission your legacy infrastructure such as SCCM and domain controllers.

Intune has helped to consolidate vendors. It is one product, and Microsoft is trying to fill all the gaps with the add-ons. Microsoft is constantly adding functionality pretty much on a monthly basis. Utilizing a single vendor or single tool set is always good. This consolidation affects the licensing costs. When you have a single vendor, you have more options for contract negotiation, license discounts, etc.

It is very important that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. You have a single pane and the same toolset. It is always good to utilize a single product.

It is a modern desktop management tool. It is a replacement for SCCM and GPOs. When organizations are moving away from the AD to Azure AD, especially for devices, it is very useful. It is helpful for managing devices anytime and any place without requiring dependency on the local networks.

There is still a gap between SCCM and Intune, especially in the reporting, inventory, and software deployment areas. For people using SCCM, Intune seems to be very simple. It is a good thing, but sometimes, it is a bad thing. There is a significant gap, especially for large organizations in terms of functionality. Microsoft still has a lot to do.

I have been working with Intune for about 5 years. I am an endpoint management specialist. I am using it pretty much daily.

I would rate it an 8 out of 10 for stability. It is still under development, so there are issues. Sometimes, settings are not consistently applied everywhere, so they give unexpected results. It is probably because of the learning curve and also the ongoing development. Sometimes, there are bugs or some mistakes. It is a cloud environment, and sometimes, some settings are not applied. It is a matter of time. It will get fixed.

It is very scalable. It is practically unlimited.

I have been working with companies with different numbers of users and devices. In one company, there were 40,000 devices, and in another one, there were 300,000. The number of users is more than the number of devices because the companies I have been working with have different shifts, so they are sharing devices. That is why there are more users than devices. The average is 35,000.

The first and the second lines of support are quite poor. They redirect end users to publicly available documentation, which is not very useful because usually, the first thing you do is to check what is available publicly before you raise the ticket. Their support is not very good. I would rate their support a 6 out of 10.

Neutral

I have been mostly using SCCM. The move to Intune was a part of the cloud transition. Most companies are moving not only the MDM solution but all kinds of services to the cloud. Intune is just one of them. It covers one of the areas.

Its deployment and maintenance are easy. I would rate it a 9 out of 10 for both. It is generally deployed on a public cloud.

The number of people required for maintenance depends on the size of the organization. One person is never good enough because you need to consider various time zones, people going on leave, etc. 

Intune comes with the licensing that is common for large organizations. However, Microsoft has recently released many add-ons that are very expensive, especially for large organizations or corporations. They are not very happy. They are not willing to buy them. That is the problem. Microsoft should probably work on the strategy for pricing for the add-ons.

They probably did not evaluate other options. A lot of organizations are trying to use one vendor, and they have been using Microsoft for a long time. Intune seems to be the most complete as compared to others. I have been doing some research recently for a company, and I have been going through some Gartner reports. Intune is clearly number one in this area.

To those evaluating this solution, I would advise to be aware of the fact that this is a product that is still being developed. There are many features that are not available yet, especially as compared to a product like SCCM which has been on the market for many years. Do not expect everything to be available straight away. 

I have not used Intune much for BYO devices. The companies I have been working with do not allow that. They either provide their own hardware, such as laptops or desktops, or virtual desktops such as cloud PCs. They either have Azure virtual desktop or Windows 365, so I do not have much experience with BYO devices.

I have also not used Intune's Endpoint Privilege Management feature. It is probably a new functionality that is not free. For large organizations, it is a significant cost, so they are reluctant to go in this direction. They might use it in the future.

Because of its scalability and future-proofing, I would rate Intune a nine out of ten.

We manage all our client devices, including Windows laptops, MacBooks, iPhones, iPads, and Android devices, using Microsoft Intune.

We regularly survey our users to gather feedback on their experience with device enrollment and app installation. The feedback we have received so far has been positive.

Intune is good at securing hybrid work and BYOD. There are a few gaps but we can manage those with other tools.

Microsoft Security Signals within Intune is an effective tool. It allows us to restrict access to specific systems or resources for certain devices based on their risk score. We can also prevent access for other devices that don't meet a specific risk threshold until their score improves.

It has enabled our IT team to use their tools more effectively.

Intune streamlines our endpoint management by consolidating multiple vendors into a single platform. With Intune, we can now manage features like the Windows Defender firewall and disk encryption directly, eliminating the need for separate third-party products. This simplifies our management process and potentially reduces costs.

The vendor consolidation has helped to reduce our licensing costs.

It is extremely important to us that the Microsoft Intune suite is integrated with Microsoft 365 and Microsoft Security. We're looking at consolidating more systems and solutions into our Microsoft licensing because of how easily it integrates. 

While Microsoft Intune boasts a wide range of features, its user-friendliness and bundled licensing cost are key considerations for me.

The licensing has room for improvement.

It would be great if Intune offered better data protection controls for BYOD Windows PCs.

I have been using Microsoft Intune for four years.

While Microsoft Intune is generally stable, there are recurring issues with deploying Microsoft 365 apps through Intune. These outages occur around the same time each month.

I would rate the scalability of Intune a nine out of ten.

While the technical support team is generally good, there have been instances where feedback sent to the product group has resulted in delayed or absent responses. This can be frustrating, especially when requesting new features or clarifying existing ones. It would be beneficial to establish a clearer communication channel with the product group to ensure timely responses and address customer concerns efficiently.

Neutral

Previously, we used Workspace ONE. While I find Intune to be generally better, there are still some specific areas where Workspace ONE offers functionalities that Intune currently lacks. Additionally, Workspace ONE was significantly faster for generating reports. However, I acknowledge that Intune has undergone significant improvements over the past year and a half, and it's steadily approaching the level it needs to be. Nevertheless, there's still room for further improvement.

The implementation was completed in-house.

The current licensing model separates essential features into higher-tier subscriptions, requiring additional purchases. Ideally, all functionalities should be included in a single bundled license.

I would rate Microsoft Intune eight out of ten.

We rely on Intune for device management and leverage other tools for security.

Additional maintenance is required to deal with the monthly outages.

I recommend using Intune for endpoint management. It's important to familiarize yourself with the product beforehand. Researching endpoint management via Intune and reviewing Microsoft's online recommendations is crucial for successful implementation within your organization.

The main use cases that I had or have with Microsoft Intune include laptop deployments coupled with Autopilot and day-to-day management of laptops, including patching.

We were able to deploy about 65 computers in under two weeks to a completely remote user base without touching any of the machines. This year was a pure cloud environment. We got rid of their Active Directory joins, and they are running purely in a cloud environment.

The features that I find the best with Microsoft Intune are its ability to completely replace all the on-premise tools for group policy and similar functions. It now gives the ability to almost fully and completely manage a machine. 

When I first started, the user experience was okay, but it has improved significantly over the last few years.

Autopilot still leaves room for improvement regarding monitoring deployments and troubleshooting deployments.

I have dealt with Microsoft Intune for approximately four and a half to five years.

I would rate Microsoft support as six out of ten. This is a challenging area because every time we call, we get bounced to a new team. This is an area they could improve. Each time you call in, they tell you that it is not their team's responsibility. You get partway through the solution, and then they say that at this point it becomes another team's responsibility, so you have to start over with them. There is no cohesive end-to-end support, which is very frustrating and time-consuming.

Neutral

Before using Microsoft Intune, we were using a fully manual process, and we transitioned from fully manual to fully automated.

It is straightforward in terms of the UI, but it can be complex to set up because you are working blind with everything on the machine.

Microsoft Intune is not cheap. Microsoft has consistently separated features and charges additional fees, which makes it a much steeper climb from a budgeting aspect because you need to buy something new frequently.

We did not consider other options. Microsoft Intune was our preferred and first choice, and we were going to look at anything else only if it failed, which it did not.

We are not using Copilot in Microsoft Intune yet. We are just starting to use the advanced endpoint analytics in the Microsoft Intune suite. Initially, we could not use them because we did not have licenses for them, so we are just transitioning over to them. The advanced endpoint analytics are helping us with detecting and remediating anomalies and endpoints. We have used these capabilities to find old certificates and unexpected web browser extensions, but since we are just getting started, I am not sure of its full capabilities.

I would wholeheartedly recommend Microsoft Intune to others but advise being prepared for an ever-growing cost.

I would rate Microsoft Intune an eight out of ten.

Intune is a tool for managing configurations and policies for devices. It has additional benefits like monitoring and enforcing security measures. It helps us ensure that the devices we provide to our users are perfectly controlled so that data isn't leaking. For example, I can enable BitLocker to encrypt data on all employee devices. All laptops in the organization require antivirus software. Any laptops without antivirus are non-compliant, so I can block them in Intune. 

I can also use Intune to lock down specific activities on mobile devices. When people access their email, Microsoft Teams, or OneDrive on their mobile devices, I can enforce a policy that prevents them from copy-pasting data from the corporate email address mailbox to their phones. I can also block screenshots. 

We have nearly 100,000 users across multiple locations. That's one benefit of Intune. We can cover devices at several locations with a single cloud-based solution. 

The great part about Microsoft Intune is that we can target for Android/IOS/Windows devices with full control. We can also enroll Mac and Linux OS and enforce certain configurations and get compliance reporting. This provides us a key criteria for zero trust deployment model.

And now we have the option to integration of Ms Intune to MAC JAMF with API integration which makes the life simpler

And administrative Units helps a lot in scoping the device and providing the delegation to the required administrators which creates a very good RBAC management as well.

Intune is a cloud-based solution, so we avoid many of the headaches associated with on-prem maintenance like for example SCCM which was doing this job in the past and we need frequent patching and maintenance as well. Because Intune is a cloud-based solution whereas SCCM depends on on-premises technology to function, Intune has a simpler architecture with more options on MAM, reporting, security & MDM. We always get the latest security features and enhancements from Microsoft with the cloud-based solution Intune.

Intune allows you to create policies for managing mobile devices and mobile applications. Mobile application management targets and protects only the application. It will create a container for your application on the mobile device, securing the container and application. Mobile application management allows you to set limits on what employees do in specific applications that contain corporate data, such as Microsoft Outlook.

Intune device restriction policies enable me to enforce limitations on the device, like blocking the mobile camera or restricting the employees from using and inserting USB devices, including thumb drives and flash drives.

Intune's reporting and logging could be improved. When troubleshooting, it's difficult to collect the logs and determine what's happening. If I want to filter out the compliant devices, I can see it from the logs, but I would like the option to drill down further. 

I select one device, and Intune tells me it's non-compliant. I click on it, and it tells me the antivirus service is not running. It should provide some additional information. When did the service stop? Did the service start in the first place? Intune's internal graph API should also be improved because that is where we can apply commands. 

I've been using Intune for the last six years.

As stated the solution is very stable because there is 24/7 monitoring of the core component by Microsoft Monitoring Team. 

Microsoft Intune can scale easily since it's a cloud-based solution and we need to procure only licenses per user and no need to worry about maintaining the backend core component because it's handled by Microsoft.

I rate Microsoft's support a seven out of ten. Support is one area that requires massive improvement. In most cases, the frontline engineers collect the logs. After they review the logs, they will find the person who can help us fix the issue. 

Neutral

We previously used Microsoft System Center Configuration Manager, Microsoft's on-premise configuration management solution. We switched to Intune because we purchased an EMS E3 license that covers Outlook, Teams, Intune, etc. 

Ultimately, it comes down to costs. We don't need to spend money on SCCM licensing, and we get better cloud-based monitoring and reporting than SCCM. Most people prefer to move to Intune because they get some additional features included for free when they buy the EMS E3 license from Microsoft.

Setting up Intune was initially complex because we need to migrate everything from SCCM to Intune. If you already have your policies and configurations worked out on-prem, it will be the same once you move to Intune, and you'll see a massive improvement in configuration, compliance, reporting, and mobile device management.

The return on investment is that I have a better way to secure my devices and make them compliant. 

Intune's pricing is competitive. For example, the license of Blackberry's Enterprise Mobility Suite was costly, but Intune is affordable. It is included as an additional feature when you buy security enhancements for your organization. For example, let's say I have fifty users in my organization and all of them are using Microsoft cloud services, like Teams, Office 365, and OneDrive. 

In order to protect this, I'm going to buy the EMS E3, which includes security and also the option to utilize Microsoft Intune. I don't need to buy an additional license for software and device management. I can do all of this with the same license I bought for Microsoft security.

I see a significant gap between Microsoft Intune and products by other vendors. We were using SCCM on-premises, but Microsoft Intune added monitoring and security features, so we didn't see any suitable alternatives. 

I rate Microsoft Intune a nine out of ten. Before deploying Intune, you must understand your current setup and security needs. If you're only looking for a security solution, you can deploy Microsoft Defender for Endpoint. However, Intune is ideal if you want a more comprehensive security solution that covers configuration and compliance management. You need to understand the gaps in your current solution and what you want to overcome.