Microsoft Intune Reviews

Nowadays, we've seen more evolution towards Autopilot for Windows 10 and then in a hybrid or cloud-only setup. After the Windows devices, we use it with Android, the most frequent mobile, and then iOS. I have five or six projects regarding Microsoft.

It helps deal with conflicting policies. We do a lot of graph API calls toward Microsoft for reporting, et cetera. 

It simplifies the work of the IT admins in a company if you set it up right. The setup will take some time, obviously. However, if you set it up right, it will simplify the management of your endpoints. The enterprise app management is great. With Intune, you can shorten the time needed for handling the necessary updates so that there are no vulnerabilities on the applications or on the operating system side of things.

The Intune suite offers a lot of features. 

The AutoPilot feature is helpful.

Endpoint privilege management is very good. You can bring your own device setup. You can use it in combination with conditional access policies for encryption.

Migration from on-prem to cloud is good.

The settings catalog and configuration profiles are also very, very useful.

Intunes brings all of our endpoint and security management tools into one place. This is a good thing. We now have one portal to check instead of dozens. I'm really happy with that.

The overall user experience is quite nice. I have no complaints from end users regarding their devices enrolled in Intune.

We've used Copilot. We have nothing to complain about, however, it is very expensive. With Copilot, we summarized a few of our policies and devices, which were great. We check the properties of the devices, hardware, of the devices, and so on. Mostly, we played around with the summaries of the policies, however, we switched it off since it was running for a couple of days, and it was a few hundred euros for those few days. 

Witnessing the benefits of Intune happen quickly. Clients usually begin to see benefits after the kickoff meeting. Intune is an ongoing development product. It helps both greenfield and existing setups. It's not static. We'll work with policies and versioning, and after every quarter, we'll review our policies and update where necessary. If clients used Intune managed services, they get policy updates included in the managed service. 

Intune is good for securing hybrid work and protecting data of the company while bringing our own devices. We use device framework policies from Microsoft themselves with some minor adjustments. They have level one, level two, and level three policies. You can just fix the settings of their site, and that's also what we use. Then we just tweak and bring in our own experiences. 

The endpoint privileged management enables users to enforce privileged access and can positively affect user productivity. In in small environments, the end users are, in 99% of the cases, also local admins on their devices, which is obviously not good. In bigger environments, we get into that less often as it's more of an organized thing. That said, in small environments, everybody is a local admin and that brings certain risks with it. So users can install and download everything they want. With endpoint privilege management, we can set rules for specific applications, and then, a user can ask for approval to run a certain application, which is very good. 

Intune positively affects overall IT productivity in organizations. If users need to install it on a device that they need in their workday or day-to-day business, they can just grab it themselves from the company portal app. They do not have to wait. They do not have to enter a support ticket that goes to the help desk to request a certain type of software. They can do it themselves, so they save a lot of time.

Intune, when applied on the cloud, can save on costs. With the cloud, there's no on-prem infrastructure that needs service, electricity, space, or cooling, for example. 

There are a lot of features that need to be released. There is no copy-paste or fie transfer. There's more work to do. They don't live up to my expectations anymore. Microsoft has a history of releasing features that are not completely finished. 

Remote help needs to be better.

Reporting needs improvement. It's still lacking. The built-in reporting is pretty basic. In managed services, we have a lot more reporting. However, we had to develop it ourselves.

I've used the solution since the product launched, about 15 years ago. 

The solution is fairly stable. I cannot recall the last time that there was a health issue reported on the Microsoft side regarding Intune.

The scalability is perfect. I've had no issues with scaling. 

The communication between us and Microsft is good. They do come back with insights on what's to come. When it coms to support, if you are lucky, you will get a good tech that can help. The knowledge of some techs are insufficient. They may ask basic questions that are not relevant to the issue. You spend a lot of time re-answering questions you may have already addressed in the original ticket.

Neutral

I did not use a different solution previously. 

I've been in touch with MobileIron and AirWatch, however, that's very, very basic.

I work with both on-cloud and on-prem versions of the solution. 

The initial deployment is very simple and straightforward. I've been doing it for 15 years, so I understand the process. When people are new to Intune, there may be some complexity. There are many things that need to be considered. The learning curve can be steep. 

There is support from Intune for maintenance, like when an application fails to install. 

I tend to implement the solution myself. 

Some people have Microsoft 365 with a security add-on, and Intune is integrated. 

Copilot is expensive as an add-on.

It's a rather expensive solution, especially if you want to use all the bells and whistles. 

I've been involved with the solution as a customer, integrator, reseller and consultant. I'm a freelancer as well and use it myself. I'm selling licenses and doing greenfield setups for different customers. 

We've not yet used all aspects of Intune suite, which is a new collection of advanced endpoint management and security tools. We have demoed it, and we are showing it in workshops. However, we do not have it in a live environment. A lot of customers are hesitating to buy the Intune suite due to the price. Some users may be paying fifty euros per user per month and then would need to add another 10 euros for the Intune suite, and that's a big step since that would be a fifth of the license that they're already paying. 

It's helpful that Intune is integrated with 365. It's important that everything is integrated together so that the Microsoft ecosystem becomes seamless. 

I'd rate the solution 8 out of 10 overall. 

It's a fund product. The possibilities are almost endless. It will make your life easier. 

I was using Intune with a customer. I had a long-term contract with a mining company, and then I moved to another organization. I am now in a different company. They all are large organizations. They are moving to the cloud, and Intune is one of the tools they are going to utilize.

In my previous job, Intune was being used for the cloud environment. We migrated fully from on-premises SCCM to cloud-only managed. We were utilizing all the benefits of Intune for cloud management, such as Windows updates, encryption, configuration, replacement of GPOs, etc. Moving away from the SCCM to Intune was a part of my previous job.

It is a modern tool. It is a cloud-based or software-as-a-service tool that gives you centralized management at one location. You have good dashboards. You have pretty much everything at a single location. You can manage different settings in one place. It is about manageability. It also gives you access from any place. It is a cloud solution, so as long as you have connectivity, you can do pretty much everything.

Intune brings all of the endpoint and security management tools into one place, but it is a lengthy process because I have been working for large organizations. They have been heavily dependent on on-premise services for years or decades, so the transition always takes time, but it is pretty successful. It is a good tool, but in security, there are dependencies, so it takes time for the transition to be successful. We have been using different security baselines and CIS or NAS methodology. It is a difficult process. Especially when you do GPO migration, not all settings are yet directly supported in Intune. Sometimes, you have to do a bit of workaround, power shell settings, and registry settings. It is tricky, but it is a key area for a successful transition.

Intune does not yet provide full endpoint visibility and IT control across device platforms. There is still a significant gap between all the systems we used on-premise and Intune. It is probably going to take time for Microsoft to fill the gap. Sometimes, you have to use third-party products, and sometimes, you have to use workarounds. It is a tricky one, but Microsoft is moving in the right direction, slowly but surely.

In terms of user experience, users do not use Intune. From the user perspective, it is about the performance and the impact, and there are some analytical tools to measure performance, reliability, etc. The built-in reporting is pretty good.

Intune affects IT productivity. From the IT operations perspective, things are much more simplified. The transition also enforces some cleanups, optimization, etc. It is definitely a great improvement for the IT organization.

Intune itself has probably not reduced the risk of security breaches, but there are many add-ons. There are many security products from Microsoft that integrate with Intune and Azure. Its reporting is great. By having the right knowledge and the right understanding, you can utilize this. There are some security baselines that you can utilize in Intune, which are coming out of the box. Microsoft is providing its own products for security, and this is probably an area we should explore.

Intune helps to save costs. As a part of the transition from on-premises to Intune, you can decommission your legacy infrastructure such as SCCM and domain controllers.

Intune has helped to consolidate vendors. It is one product, and Microsoft is trying to fill all the gaps with the add-ons. Microsoft is constantly adding functionality pretty much on a monthly basis. Utilizing a single vendor or single tool set is always good. This consolidation affects the licensing costs. When you have a single vendor, you have more options for contract negotiation, license discounts, etc.

It is very important that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. You have a single pane and the same toolset. It is always good to utilize a single product.

It is a modern desktop management tool. It is a replacement for SCCM and GPOs. When organizations are moving away from the AD to Azure AD, especially for devices, it is very useful. It is helpful for managing devices anytime and any place without requiring dependency on the local networks.

There is still a gap between SCCM and Intune, especially in the reporting, inventory, and software deployment areas. For people using SCCM, Intune seems to be very simple. It is a good thing, but sometimes, it is a bad thing. There is a significant gap, especially for large organizations in terms of functionality. Microsoft still has a lot to do.

I have been working with Intune for about 5 years. I am an endpoint management specialist. I am using it pretty much daily.

I would rate it an 8 out of 10 for stability. It is still under development, so there are issues. Sometimes, settings are not consistently applied everywhere, so they give unexpected results. It is probably because of the learning curve and also the ongoing development. Sometimes, there are bugs or some mistakes. It is a cloud environment, and sometimes, some settings are not applied. It is a matter of time. It will get fixed.

It is very scalable. It is practically unlimited.

I have been working with companies with different numbers of users and devices. In one company, there were 40,000 devices, and in another one, there were 300,000. The number of users is more than the number of devices because the companies I have been working with have different shifts, so they are sharing devices. That is why there are more users than devices. The average is 35,000.

The first and the second lines of support are quite poor. They redirect end users to publicly available documentation, which is not very useful because usually, the first thing you do is to check what is available publicly before you raise the ticket. Their support is not very good. I would rate their support a 6 out of 10.

Neutral

I have been mostly using SCCM. The move to Intune was a part of the cloud transition. Most companies are moving not only the MDM solution but all kinds of services to the cloud. Intune is just one of them. It covers one of the areas.

Its deployment and maintenance are easy. I would rate it a 9 out of 10 for both. It is generally deployed on a public cloud.

The number of people required for maintenance depends on the size of the organization. One person is never good enough because you need to consider various time zones, people going on leave, etc. 

Intune comes with the licensing that is common for large organizations. However, Microsoft has recently released many add-ons that are very expensive, especially for large organizations or corporations. They are not very happy. They are not willing to buy them. That is the problem. Microsoft should probably work on the strategy for pricing for the add-ons.

They probably did not evaluate other options. A lot of organizations are trying to use one vendor, and they have been using Microsoft for a long time. Intune seems to be the most complete as compared to others. I have been doing some research recently for a company, and I have been going through some Gartner reports. Intune is clearly number one in this area.

To those evaluating this solution, I would advise to be aware of the fact that this is a product that is still being developed. There are many features that are not available yet, especially as compared to a product like SCCM which has been on the market for many years. Do not expect everything to be available straight away. 

I have not used Intune much for BYO devices. The companies I have been working with do not allow that. They either provide their own hardware, such as laptops or desktops, or virtual desktops such as cloud PCs. They either have Azure virtual desktop or Windows 365, so I do not have much experience with BYO devices.

I have also not used Intune's Endpoint Privilege Management feature. It is probably a new functionality that is not free. For large organizations, it is a significant cost, so they are reluctant to go in this direction. They might use it in the future.

Because of its scalability and future-proofing, I would rate Intune a nine out of ten.

We manage all our client devices, including Windows laptops, MacBooks, iPhones, iPads, and Android devices, using Microsoft Intune.

We regularly survey our users to gather feedback on their experience with device enrollment and app installation. The feedback we have received so far has been positive.

Intune is good at securing hybrid work and BYOD. There are a few gaps but we can manage those with other tools.

Microsoft Security Signals within Intune is an effective tool. It allows us to restrict access to specific systems or resources for certain devices based on their risk score. We can also prevent access for other devices that don't meet a specific risk threshold until their score improves.

It has enabled our IT team to use their tools more effectively.

Intune streamlines our endpoint management by consolidating multiple vendors into a single platform. With Intune, we can now manage features like the Windows Defender firewall and disk encryption directly, eliminating the need for separate third-party products. This simplifies our management process and potentially reduces costs.

The vendor consolidation has helped to reduce our licensing costs.

It is extremely important to us that the Microsoft Intune suite is integrated with Microsoft 365 and Microsoft Security. We're looking at consolidating more systems and solutions into our Microsoft licensing because of how easily it integrates. 

While Microsoft Intune boasts a wide range of features, its user-friendliness and bundled licensing cost are key considerations for me.

The licensing has room for improvement.

It would be great if Intune offered better data protection controls for BYOD Windows PCs.

I have been using Microsoft Intune for four years.

While Microsoft Intune is generally stable, there are recurring issues with deploying Microsoft 365 apps through Intune. These outages occur around the same time each month.

I would rate the scalability of Intune a nine out of ten.

While the technical support team is generally good, there have been instances where feedback sent to the product group has resulted in delayed or absent responses. This can be frustrating, especially when requesting new features or clarifying existing ones. It would be beneficial to establish a clearer communication channel with the product group to ensure timely responses and address customer concerns efficiently.

Neutral

Previously, we used Workspace ONE. While I find Intune to be generally better, there are still some specific areas where Workspace ONE offers functionalities that Intune currently lacks. Additionally, Workspace ONE was significantly faster for generating reports. However, I acknowledge that Intune has undergone significant improvements over the past year and a half, and it's steadily approaching the level it needs to be. Nevertheless, there's still room for further improvement.

The implementation was completed in-house.

The current licensing model separates essential features into higher-tier subscriptions, requiring additional purchases. Ideally, all functionalities should be included in a single bundled license.

I would rate Microsoft Intune eight out of ten.

We rely on Intune for device management and leverage other tools for security.

Additional maintenance is required to deal with the monthly outages.

I recommend using Intune for endpoint management. It's important to familiarize yourself with the product beforehand. Researching endpoint management via Intune and reviewing Microsoft's online recommendations is crucial for successful implementation within your organization.

I use Microsoft Intune for my Active Directory and my end-point and zero-day protection.

Microsoft Intune has allowed us to work from anywhere.

Autopilot is the most valuable feature of Microsoft Intune.

Integrating certain group policies can be challenging and may necessitate using on-premises systems to integrate them with Microsoft Intune.

I am encountering challenges integrating with multiple domains outside of my own due to unsupported Active Directory extensions.

I have been using Microsoft Intune for four years.

Microsoft Intune is stable.

Microsoft Intune is scaled to support more than 39,000 users without any issues. The initial setup process for the on-premises to Active Directory hybrid integration can be quite technical. We have 100 users.

Microsoft Intune's technical support is good.

Positive

The initial setup is straightforward. I am an architect and completed the deployment on my own within two months.

The implementation was completed in-house.

Using a hybrid setup instead of relying on a third-party product can provide a better return on investment with Microsoft Intune.

Microsoft Intune is included in our Office 365 suite license. The E5 license is expensive.

I give Microsoft Intune an eight out of ten.

Microsoft Intune doesn't require any maintenance from our end.

I recommend Microsoft Intune because it can be easily integrated with other Microsoft products into a single suite, making it a plug-and-play solution that can be set up with ease.

The main use cases that I had or have with Microsoft Intune include laptop deployments coupled with Autopilot and day-to-day management of laptops, including patching.

We were able to deploy about 65 computers in under two weeks to a completely remote user base without touching any of the machines. This year was a pure cloud environment. We got rid of their Active Directory joins, and they are running purely in a cloud environment.

The features that I find the best with Microsoft Intune are its ability to completely replace all the on-premise tools for group policy and similar functions. It now gives the ability to almost fully and completely manage a machine. 

When I first started, the user experience was okay, but it has improved significantly over the last few years.

Autopilot still leaves room for improvement regarding monitoring deployments and troubleshooting deployments.

I have dealt with Microsoft Intune for approximately four and a half to five years.

I would rate Microsoft support as six out of ten. This is a challenging area because every time we call, we get bounced to a new team. This is an area they could improve. Each time you call in, they tell you that it is not their team's responsibility. You get partway through the solution, and then they say that at this point it becomes another team's responsibility, so you have to start over with them. There is no cohesive end-to-end support, which is very frustrating and time-consuming.

Neutral

Before using Microsoft Intune, we were using a fully manual process, and we transitioned from fully manual to fully automated.

It is straightforward in terms of the UI, but it can be complex to set up because you are working blind with everything on the machine.

Microsoft Intune is not cheap. Microsoft has consistently separated features and charges additional fees, which makes it a much steeper climb from a budgeting aspect because you need to buy something new frequently.

We did not consider other options. Microsoft Intune was our preferred and first choice, and we were going to look at anything else only if it failed, which it did not.

We are not using Copilot in Microsoft Intune yet. We are just starting to use the advanced endpoint analytics in the Microsoft Intune suite. Initially, we could not use them because we did not have licenses for them, so we are just transitioning over to them. The advanced endpoint analytics are helping us with detecting and remediating anomalies and endpoints. We have used these capabilities to find old certificates and unexpected web browser extensions, but since we are just getting started, I am not sure of its full capabilities.

I would wholeheartedly recommend Microsoft Intune to others but advise being prepared for an ever-growing cost.

I would rate Microsoft Intune an eight out of ten.

Intune is a tool for managing configurations and policies for devices. It has additional benefits like monitoring and enforcing security measures. It helps us ensure that the devices we provide to our users are perfectly controlled so that data isn't leaking. For example, I can enable BitLocker to encrypt data on all employee devices. All laptops in the organization require antivirus software. Any laptops without antivirus are non-compliant, so I can block them in Intune. 

I can also use Intune to lock down specific activities on mobile devices. When people access their email, Microsoft Teams, or OneDrive on their mobile devices, I can enforce a policy that prevents them from copy-pasting data from the corporate email address mailbox to their phones. I can also block screenshots. 

We have nearly 100,000 users across multiple locations. That's one benefit of Intune. We can cover devices at several locations with a single cloud-based solution. 

The great part about Microsoft Intune is that we can target for Android/IOS/Windows devices with full control. We can also enroll Mac and Linux OS and enforce certain configurations and get compliance reporting. This provides us a key criteria for zero trust deployment model.

And now we have the option to integration of Ms Intune to MAC JAMF with API integration which makes the life simpler

And administrative Units helps a lot in scoping the device and providing the delegation to the required administrators which creates a very good RBAC management as well.

Intune is a cloud-based solution, so we avoid many of the headaches associated with on-prem maintenance like for example SCCM which was doing this job in the past and we need frequent patching and maintenance as well. Because Intune is a cloud-based solution whereas SCCM depends on on-premises technology to function, Intune has a simpler architecture with more options on MAM, reporting, security & MDM. We always get the latest security features and enhancements from Microsoft with the cloud-based solution Intune.

Intune allows you to create policies for managing mobile devices and mobile applications. Mobile application management targets and protects only the application. It will create a container for your application on the mobile device, securing the container and application. Mobile application management allows you to set limits on what employees do in specific applications that contain corporate data, such as Microsoft Outlook.

Intune device restriction policies enable me to enforce limitations on the device, like blocking the mobile camera or restricting the employees from using and inserting USB devices, including thumb drives and flash drives.

Intune's reporting and logging could be improved. When troubleshooting, it's difficult to collect the logs and determine what's happening. If I want to filter out the compliant devices, I can see it from the logs, but I would like the option to drill down further. 

I select one device, and Intune tells me it's non-compliant. I click on it, and it tells me the antivirus service is not running. It should provide some additional information. When did the service stop? Did the service start in the first place? Intune's internal graph API should also be improved because that is where we can apply commands. 

I've been using Intune for the last six years.

As stated the solution is very stable because there is 24/7 monitoring of the core component by Microsoft Monitoring Team. 

Microsoft Intune can scale easily since it's a cloud-based solution and we need to procure only licenses per user and no need to worry about maintaining the backend core component because it's handled by Microsoft.

I rate Microsoft's support a seven out of ten. Support is one area that requires massive improvement. In most cases, the frontline engineers collect the logs. After they review the logs, they will find the person who can help us fix the issue. 

Neutral

We previously used Microsoft System Center Configuration Manager, Microsoft's on-premise configuration management solution. We switched to Intune because we purchased an EMS E3 license that covers Outlook, Teams, Intune, etc. 

Ultimately, it comes down to costs. We don't need to spend money on SCCM licensing, and we get better cloud-based monitoring and reporting than SCCM. Most people prefer to move to Intune because they get some additional features included for free when they buy the EMS E3 license from Microsoft.

Setting up Intune was initially complex because we need to migrate everything from SCCM to Intune. If you already have your policies and configurations worked out on-prem, it will be the same once you move to Intune, and you'll see a massive improvement in configuration, compliance, reporting, and mobile device management.

The return on investment is that I have a better way to secure my devices and make them compliant. 

Intune's pricing is competitive. For example, the license of Blackberry's Enterprise Mobility Suite was costly, but Intune is affordable. It is included as an additional feature when you buy security enhancements for your organization. For example, let's say I have fifty users in my organization and all of them are using Microsoft cloud services, like Teams, Office 365, and OneDrive. 

In order to protect this, I'm going to buy the EMS E3, which includes security and also the option to utilize Microsoft Intune. I don't need to buy an additional license for software and device management. I can do all of this with the same license I bought for Microsoft security.

I see a significant gap between Microsoft Intune and products by other vendors. We were using SCCM on-premises, but Microsoft Intune added monitoring and security features, so we didn't see any suitable alternatives. 

I rate Microsoft Intune a nine out of ten. Before deploying Intune, you must understand your current setup and security needs. If you're only looking for a security solution, you can deploy Microsoft Defender for Endpoint. However, Intune is ideal if you want a more comprehensive security solution that covers configuration and compliance management. You need to understand the gaps in your current solution and what you want to overcome. 

My company has over 7,000 devices, including mobile devices, Windows, and Mac. The tool is only used to manage my team's mobile devices.

The solution's most valuable features are its ease of use and control of the MAM and MDM policies and configuration. The tool is straightforward and easy to use, while it also integrates with Azure. It has been a good product so far.

The tool has improved the way my team works as it is a cloud-based tool, so we don't have to manage on-prem servers. We also use apps on Microsoft Office 365, which is also one of the main reasons why we use Microsoft Intune.

I use the enterprise application management features of the tool, and my experience with it has been pretty good. Microsoft tells us that there are no bug issues with the updated versions or current versions, so there are no issues in the tool.

I use Microsoft Intune's Cloud PKI, and it helps manage the complexity of certificate management in infrastructure pretty well. There are no issues with certs or updating them.

Microsoft Intune has not affected my IT productivity, but it is not a very Android-friendly tool. We have had a lot of Android issues and compatibility problems with our VPN or tunnel. The tool is not very Android-friendly.

The maintenance of the tool is a lot less now for our company.

With the day to day device management tasks, the tool has been great, and there have rarely been any issues with it.

The mobile application management policies, specifically conditional access policies and app protection policies, are good features for managing diverse mobile environments. The DLP part is very strong.

The tool's tunnel gateway is not very good, making it an area where improvements are required. I wish it weren't so Azure's security group-based tool with which you can have local accounts. More personalization should be possible in the tool. One negative about Microsoft Intune is it acts too much as one of Azure's group-based products.

I have been using Microsoft Intune for half a year. I am just a customer of the solution.

I think the scalability is pretty easy and a lot easier to manage since we don't have to deal with the on-premises side. We use the cloud for extra storage, so it has been great.

My experience with the solution's technical support has been very good, but for other teams, it has not been very good. I rate the technical support a nine out of ten.

Positive

My company previously had some on-premises tools, but now it is cloud-based, so we save all the money on the network infrastructure and data centers. We don't need servers or storage, and it helps us save money.

When it comes to the product's deployment phase, I have taken part in the mobility side. In our company, we went through a migration, so there is always a lot of planning and testing and all that goes with it. Overall, it is fairly easy to use because it is deployed on a SaaS model.

The solution is deployed using a dedicated SaaS model. I think other teams have deployed it using an on-premises model.

The solution's deployment phase took a year and a half to test and set up everything. There was a lot of stuff involved.

In our company, prior to our migration, we already had Office 365 licenses, so it saved us around 4,00,000 for around a year.

I have seen a return on investment right from the start of the tool's usage.

I don't really know how much it costs, as my company pays for a bunch of licenses. The tool is cheaper than our company's other MDM tools.

My company has a few of Microsoft Intune's compliance policies that have helped us with some of the issues with sync interval with the compliance that we have noticed. The sync interval or the turnaround is not as quick as our company would like it to be currently. I understand that we can't control the sync interval.

I rate the tool a seven and a half out of ten.

Intune is a cloud-based platform for mobile application management and mobile device management. We can deploy applications on user devices and enroll user devices. We can enroll devices as per the organization's security policies. The devices comply with all the policies of the organization. We can also change the policies at the backend via Intune.

Intune helps with enrollments and securities. We can control the access to devices and users. We can specify what users can do. We can give role-based access. For example, a person working as a normal user does not require the same access as a manager. We can give access to users based on their roles. For example, a manager can add users to a particular group, but users cannot do that. We can restrict a user from doing certain activities. For example, we can restrict the user from using a camera or microphone. We can do such a configuration at the backend and deploy it to the user device.

Intune is very helpful for IT and security operations. If Intune is not there, we have to manually connect to user devices and deploy the changes. If we have thousands of devices, doing this manually on each and every device is very difficult. With Intune, we just configure the required settings and deploy them to a thousand devices in a single group. In a single step, we can add devices to a group. We can apply configuration easily. It is very helpful. It saves time. Adding or configuring devices manually takes a few months, whereas the same thing can be done with Intune within minutes.

We have had a very good experience. It is a Microsoft product. Everything related to a user is available. We have user names, user devices' names, and user licenses. We can also check the device compliance. We can see whether the device complies with the company policies or not.

Application updates and patching are available through Intune. We can also change group policy settings and registry settings of a device via Intune. We can change these settings without connecting the device. We can do that by deploying the PowerShell script or configuration profiles. For example, a kiosk device should stay up for hours and hours. It should not go to sleep. You can configure such devices to not go to sleep until 999 minutes. It is a very long time. If we enable such settings and add a particular user device group in the configuration, after the device starts syncing with the policy, no device will go to sleep.

With the Advanced Endpoint Analytics, we can see the application installation status. If we deploy a script to the user, we can see the status. We can see if it is a success or if there is a conflict. We can monitor the changes in user devices and check the compliance status. We can see if any app such as CrowdStrike is not updated.

With the help of Advanced Endpoint Analytics, we can proactively detect and remediate anomalies in endpoints. We can then reach out to users.

Intune saves us a lot of time. If we package an application using virtual packaging or physical packaging, it will take nearly two to three hours to package a single application. If we do this in Intune, it takes just minutes to add applications and deploy users. We can also monitor the particular application status in Intune.

The devices that are linked with Azure Active Directory are automatically linked with Intune. That makes the enrollment and management of BYO devices easy.

Intune has affected IT productivity in our organization. By saving time, it has automatically improved productivity.

Intune certainly saves costs. Without a cloud-based solution like Intune, we would require more IT staff.

Microsoft releases updates every second Tuesday. We can deploy those updates from Intune. We can also do patching through Intune. We can do quality updates and feature updates from Intune. We can also monitor the application status in Intune. We can see which applications are installed, pending, or available to install. We can see these things in Intune.

It is user-friendly. We can also troubleshoot any issues.

Intune saves time, and it is very easy to use. It allows us to manage applications completely.

If we could remote into a device, it would be great. Currently, we cannot directly connect to the user device. We have to use other tools such as VMware for connecting to devices.

If there are any issues, we should be able to connect through the Intune portal. The administrator should not have to go anywhere from the portal. He should be able to do everything from the portal.

Intune does not show whether a device is online or offline. It just shows the last login. It would be useful to know whether a device is online or offline.

We can see the issue related to updates in the Intune portal, but we cannot do anything from the Intune end. We have to connect to the user's device manually. We also need a better understanding of why the update is not happening on a particular device. It will decrease the time to troubleshoot the issues.

At times, there have been slowness issues with the company portal. It takes time to load and does not show the application status.

It would be great if there is a way to generate a PowerShell script to do certain things. Learning the PowerShell script is not easy, so such a feature would be helpful. Based on what we want, if it can automatically generate a script, it would be helpful.

It is not necessary, but it would be great if they added a messaging system in Intune. For example, when it is a shared device, a number of users log in to the device. In the case of any issue, it would be great to be able to directly message a user from Intune. Currently, there is no option for that, but if it could be done, it would be a very good thing.

I have been working with this solution for the last 18 months.

It is 100% stable.

It is very scalable.

We have about 12,000 devices and 20,000 users.

So far, I have not raised any questions with them.

I have worked with Microsoft SCCM. It is similar to Intune but not as user-friendly as Intune. Intune is very easy to understand. Its framework is very good. Microsoft SCCM is very old.

I have not worked with any other vendor. 

I am involved in the deployments, enrollments, troubleshooting errors, and monitoring in Intune. I take care of adding devices, users, and licenses, deploying policies, and configuring policies and scripts.

Its deployment does not require much. We just need a license to operate it. Our management takes care of that. There are a few licenses that are active only for nine hours. After nine hours, the roles are deactivated.

It does not require any maintenance from our end.

Intune is linked with Microsoft. We can deploy the Microsoft E365 license to users by Intune. There are different types of licenses, such as device administrator licenses, E5 licenses for device enrollment manually, and P1 and p2 licenses for device enrollment automatically. These are the licenses required for the administration.

I did not evaluate any other option. This was my first project, and I started as an Intune administrator.

It is a very good tool. It is easy to learn. You can expect quick assistance from Intune.

Before using Intune, I would recommend learning about Windows. Learn about the registry, configurations, and group policies. If you know these, it is easy to learn Intune.

You can face enrollment errors if the prerequisites are not met. For example, to upgrade from Windows 10 to Windows 11, you need to have some amount of free space or RAM. If you do not care about the prerequisites and just enroll the device, it causes issues. It will affect the device, and you need to enroll the device again.

I would rate Intune a nine out of ten.