Microsoft Intune Reviews

We use Intune to deploy and manage applications to devices based on our client requirements and needs. We handle a lot of use cases, especially with regard to Microsoft Edge. Recently, we have deployed BitLocker and Docker encryption using Intune. We utilize Intune to patch and onboard Defender and Core Endpoint. We apply Intune to laptops, mobiles, and tablets, including iOS and Android.

Intune has automated the deployment of patches and applications, which is more efficient and easier. It allows us to deploy applications, packages, Windows updates, and security updates like BitLocker encryption more efficiently and easily.

The most valuable feature currently is the BitLocker encryption. Most clients in the Philippines are moving to BitLocker encryption via Intune, transitioning from any existing third-party encryption tools they may have.

The most significant challenge is reporting and monitoring. The reporting accuracy for deploying applications and all aspects of Intune needs to be improved. Intune is less admin-friendly than SCCM and WSUS systems. In WSUS and SCCM, you can classify the updates you want to deploy to the endpoints, whereas Intune only has quality updates, definition updates, etc. I rate the admin experience seven out of 10. It's not terrible, but there is room for improvement. 

We've used Microsoft Intune for nearly 10 years now.

I rate Intune eight out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft's engineers provide varied approaches and knowledge about the product.

We are resellers, consultants, and they often refer to us as implementers. We handle the solution and technical support.

I can rate Microsoft Intune eight out of 10.

Our customers primarily use Microsoft Intune for core management tasks, often in conjunction with System Center Configuration Manager, especially for Apache-related matters. Intune is also crucial for mobile device management, policy deployment, and ensuring robust security, particularly when activating and deploying security features like Defender to endpoints.

Some of our customers implemented Microsoft Intune because of integration issues and old legacy operating systems.

We use Intune in on-premises, cloud, and hybrid environments.

Intune brings all of the endpoint and security management tools into one place. They have also integrated it with non-Microsoft operating systems, which is a huge plus.

Consolidating endpoint and security management tools into a single platform offers significant benefits for our IT and security operations teams. With centralized visibility, they can gain better control over their systems, identify potential vulnerabilities, and take proactive measures to protect customer data. This enhanced oversight empowers them to address security gaps effectively and ensure a more secure environment.

From the user perspective, the Intune experience is exceptional for those familiar with it. However, for those still learning the technology, it suggests that Intune is user-friendly and straightforward to comprehend.

Intune offers administrators enhanced visibility, control, and ease of management. Patching and updating devices is streamlined, while end users benefit from simplified onboarding, intuitive usage, and robust security features like conditional access.

Intune is essential for safeguarding data on company and BYOD devices, especially in hybrid environments.

Intune significantly enhances IT productivity within our customers' organizations. Before Intune, administrators often struggled with visibility and management, particularly for mobile devices and laptops. They wasted time searching for assets and deploying numerous tools to achieve visibility and enforce management policies. Intune streamlines this process by eliminating the need for hundreds of agents. Simply implementing Intune provides the necessary visibility and management capabilities.

Intune offers significant cost savings. By comparing its licensing model to third-party solutions, we can easily see the return on investment in terms of reduced business expenses. Intune can help businesses save between 35 and 45 percent.

Intune simplifies vendor management by providing visibility into end-of-life dates for most hardware, especially laptops. This makes it easier for administrators to monitor the support status of both software and hardware. By tracking updates and end-of-life information from various vendors, administrators can easily view this data in a consolidated summary.

Before implementing Intune, their security posture was significantly lacking, with most organizations scoring below 20 percent. However, after Intune deployment, especially for banks, compliance became a crucial factor. Intune’s recommendations on improving security scores, particularly Secure Scores, have been instrumental in boosting their ratings to between 75 and 85 percent.

The consolidation has impacted licensing costs due to centralized oversight and dashboards. This raises questions about whether we should continue with the current approach or explore alternative options like Microsoft or a more standardized solution. There is a significant cost advantage to vendor consolidation and visibility.

The core management feature in Intune is invaluable to us, especially considering the challenges we often face with System Center when pushing external updates. Intune has proven to be a game-changer for me in this regard.

Intune's privilege management feature, while beneficial, is less intuitive than other Intune features, making it challenging to use. To improve this, more demonstrations and technical sessions would be helpful.

If Microsoft offered a standard license trial that allowed customers to experience its capabilities, customers would be more likely to purchase Intune.

The technical support has room for improvement.

I have been using Microsoft Intune for six years.

I've never encountered any performance problems with Intune. The largest deployment I've undertaken was for ten thousand devices, and even then, I experienced no issues with the Intune platform.

Microsoft Intune is highly scalable.

We encountered an issue once, but unfortunately, we had to seek support on our own. Therefore, Intune support is particularly challenging.

Neutral

We use VMware, Citrix, and various other third-party tools for MDM. These tools include Qualys, GFI, Managed Engines, and others, each offering different functionalities and service levels.

Intune offers a more straightforward licensing process than other vendors. Additionally, its integration capabilities, especially with Microsoft products, are generally smoother and less problematic than many third-party solutions. This allows for a more direct and measurable path to success, enabling users to assess their progress even in the early stages of implementation. 

I have been familiar with Microsoft products for some time, making the initial deployment of Intune relatively straightforward. We begin with a customer immersion session, where we sit with the client to conduct a workshop. This workshop ensures they fully understand the Intune solution's capabilities and limitations. We then establish clear objectives and goals for successful deployment. Our engineers work closely with the customer on-site, deploying the solution and training designated champions to assist user adoption. Following this, we provide comprehensive training and a transition period for the entire organization.

The number of users in an organization determines the number of people needed for a deployment. For organizations with fewer than 500 users, a team of five to six people would suffice. However, organizations with more than 1000 users may require a team of ten.

I would rate Microsoft Intune eight out of ten.

Intune's low maintenance requirements make it a valuable asset for our clients. Once implemented, Intune typically requires minimal ongoing maintenance, ensuring a smooth and efficient experience.

The integration of Intune's capabilities with Microsoft 365 and security for both cloud and co-managed devices is crucial as we transition to the cloud. Intune's visibility into devices provides significant value, and neglecting this integration would be a disadvantage for administrators as cloud-based management becomes the norm. Therefore, incorporating Intune into your cloud migration and strategy is essential for effective device and mobile phone management.

I highly recommend Intune to others. Its visibility feature is imposing. With visibility comes control, and a quick demo can showcase the potential benefits. By highlighting the need for more visibility in their current setup, it's easier to convince them of Intune's value. This also simplifies discussions and makes the decision-making process smoother.

We use Intune to manage devices and configurations on all platforms, including Windows, iOS, iPad, and Android. It also provides conditional access from the Azure portal. We have also used Intune to bifurcate data and data transfers. We have an Intune entry list that shows the device count and bandwidth of each, so we can manage the data flow from every device based on whether it's corporate or personal. 

Intune is flexible. If you want to move a device that was previously on-prem, we can bring it to the cloud and apply all the policies. This is helpful for even those organizations that were on-prem and not on the cloud. They can also come and use these features, which are pretty cool and would be handy to protect the data and manage the devices as well.

It's handy to manage all the hybrid devices that are on-prem and in the cloud. If a user accesses company resources on their work profile or their personal devices, they can register the device in Intune and access the company data. Intune is a crucial part of the overall structure because we can use it to analyze risks and threats coming into our organization and predict what will be vulnerable. It's necessary to analyze all those things from a security perspective.

Intune's advanced endpoint analytics require a separate license. We are keen to use that one because it comes with more features, flexibility, and control for admins over the devices. We haven't used it, but I've tested it on my tenant with a few devices

It is much easier for admins to use that cloud PKI infrastructure compared to when we had to set up all those things using our Skype profile from Intune. It's quite handy. It takes a little work on the admin side, but the whole structure is the same.

Intune drastically improved our productivity. Work that was previously completed in four hours could now be finished in one. It saved our IT admins many hours of work. Once we migrated from our on-prem servers to the cloud, the Cloud PKI saved us a lot of money. I don't know the numbers, but we are saving so much money because of this. 

The best part of Intune is application deployment. We can deploy an application to several users with a single click. We can use conditional access, granting access to users based on certain conditions, such as location, platform, etc. 

With the help of Microsoft Defender, we can bring each endpoint or node under  Intune's umbrella and manage it through Defender. The most effective feature for managing mobile devices is the compliance policy, which mandates that any user on a particular device should be compliant. It should meet the requirements the company sets and be upgraded. The user should meet all these security criteria we have implemented. 

Intune's app management can support our business operations. For example, if a user wants an Android app, we can deploy it through the Android store, but if we're talking about any MSI on a public-facing platform, we can convert it into Win32 and deploy it to the whole enrollment. Intune is quite flexible.

Compared to another Indian MDM tool I use, Intune provides more flexibility for security. The Microsoft name assures us that our data will be protected. Control over data is the main concern on the cloud.

The reporting causes problems because we're trying to gather data to present to the management, but we can't get the data they request. If a user has removed an application from his device, but it won't report it at exactly the right time. It takes time to sync from the device to the portal. Let's say we are preparing a list or deck for the number of compliant devices that meet all of the organization's requirements. In a real-time scenario, that device could be compliant, but it is showing as non-compliant on the portal. It sometimes hampers the overall decisions that we make on our end.

I have used Intune for four and a half years.

I rate Microsoft premium support nine out of 10. Their premium support is top-notch. They build a bridge to resolve the issues. Standard support varies, depending on the engineer you get. It could range from six to eight out of 10. 

Positive

Previously we used SCCM. It's a Microsoft solution, but Intune's user experience is much better because it's cloud-based and it's more cost-effective. 

Deploying Intune is pretty simple for someone who is experienced with the program. The admin needs to know the basics. Otherwise, it's user-friendly. The time needed to deploy depends on the network, but if everything is perfect, it only takes five to 10 minutes to deploy an application on a Windows device. An Android device is in a similar range. In some weird scenarios, it may take 15 minutes. It doesn't require much maintenance after deployment because it's cloud-based, so we don't need to update anything.

Intune cuts the amount of time we spend on these tasks in half.

Intune is a better value than SCCM or other management tools because we can integrate more with Intune. 

I rate Intune eight out of 10. I would recommend Intune to others. Microsoft offers many new handy features, such as the ledger and the ability to locally administer managed devices. It doesn't require much hassle to set up these things. It's worth the price.

Our main use case for Microsoft Intune is patching. We use Microsoft Intune for patching, specifically Windows patching.

The user experience of Microsoft Intune is quite good because there's not much disturbance in the background; it's just running in the background.

The most valuable features of Microsoft Intune include remote updates. The update runs in the background, so there's no need in most cases to go on-site to do it.

Based on my experience and my team's feedback, one thing that could be better in Microsoft Intune is the file size, as it is quite large at times. Sometimes the file size is too large. The space taken on some hard disks may be too large for the patches that run on them, as we're limiting all these local storage to encourage our users to store on OneDrive rather than on local drives.

For additional functionality, I suggest that Microsoft could expand on asset management. Since the platform is there, they could develop it into a full-fledged asset management system.

I've been working with Microsoft Intune for around a year.

It's stable. I would rate the stability of Microsoft Intune a nine out of ten.

Technical support from Microsoft is quite good, especially because we subscribe to the premium services.

We are currently working with a hybrid deployment model. It's a hybrid because our Active Directory is still on-premises, but other services are online.

As for advanced Endpoint Analytics in the Microsoft Intune Suite, we are still working on it. We only completed the implementation for the basic functions at the end of last year. We are moving in stages.

I'm not sure about the pricing of Microsoft Intune because I didn't buy it. My team members bundled it together with their Microsoft solutions, including Microsoft 365 and related products.

I haven't used different solutions similar to Microsoft Intune or made any comparisons with other products at the moment. In the past, the nearest solution would be BigFix, but you cannot compare it to Microsoft Intune because BigFix was an older system, and you needed more technical knowledge to run it. You needed to know how to do scripting and related tasks.

If they could also make Microsoft Intune a full-fledged asset management system, it would be the best.

I would rate Microsoft Intune an eight out of ten.

We are a Microsoft vendor, not an Intune user. I have deployed Intune for several customers who use this product for business. Our clients use Intune for device management and data security, which gives them control over end-user devices.

Previously, we used a device manager and had a local Active Directory. However, most of our SME customers do not have a local Active Directory set up in their organization that allows them to control their devices. Intune does not require any local AD. It's a cloud application. We can directly join the user devices to the cloud, and the organization manages them. We have enterprise customers and also SMBs, but most of our clients have less than 100 users. 

One of my Indian clients previously had all their devices at the workplace. None of the devices were joined to an Active Directory, so they had to install applications on each device individually. With the help of Intune, we could push the applications to all the portal users simultaneously. 

We have to create a group, assign an application to it, and automatically install it on the user's devices. We also apply the company logo and desktop wallpaper via Intune, which a tech user can change. We can also find the exact location of the devices where the user is sitting.

We also have the option to enroll hybrid devices with Intune. We can enroll users'  devices and separate work and personal data. The devices on the local Active Directory can be joined to Intune. 

Privilege identity management helps. Let's say someone is a company administrator for five to ten days. We can create a dual administrator role for that user for seven days. I can create a PIM role and assign it to the user for seven days, after which the role will be deleted automatically. 

Intune provides routine management of user devices. Once the device is not enrolled in any domain or Active Directory, the IT person must delete every user device to change anything. Intune can work on all those things. That device can be updated and marked as non-compliant. If someone is using Windows 7 or a version of Windows that has been deprecated, we can restrict Windows 7's user ability to log in to the work environment. We can control all this over the admin panel.

If we scale 10 to 50 percent, where new customers manage all their devices. After enrolling all the devices, this work can be done with only one or two people, saving the organization money.

The best part of Intune is device control. If we need to block a user from opening something in their organization's system, we can do it from Intune. If we want to restrict the movement of an organization's data to prevent users from copying the data into Outlook, WhatsApp, or their personal Gmail, we can limit that via Intune. It secures all corporate data.

If they share the data with someone outside the organization, that external person cannot see it until an analyst provides them with access or creates a policy. 

The user experience is good. Users are happy that Intune is managing their work devices. In addition to Windows devices, we can control iOS and other mobile devices. There are good features for managing mobile devices. Work data is stored in different containers, making it easier for users to find their work data. 

In the case of application deployment, we have more services like application updates and patches that can be implemented from the Intune portal. We do not need to outsource these tasks to the device user.

We are currently unable to control aspects of group policy from Teams like we can for GPO. They are still not part of Intune. Microsoft is adding this, but it's currently in preview, and few GPO features have been added to the product. 

I have worked on Intune for the last two years. 

Intune is a stable solution with a lot of capabilities. Most customers who are moving to Intune are also exploring the capabilities of the cloud. 

I rate Intune seven out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft is good, but Intune support is delayed compared to other products. If I make a support ticket on the Intune portal, I get a reply after one or two days. For Exchange or SharePoint, I get a response after an hour, but Intune takes a minimum of a day. 

Positive

One product we can compare Intune with is Jamf Pro. Intune has limitations when managing Mac devices. You can enforce fewer policies because Apple has its own hardware and software. There are lots of limitations of control. Most of my clients use Intune for Windows and Android devices, but Jamf Pro if they have Mac devices.

Deploying Intune is a little complex but not too complicated. At the time of deployment, there is much work to do to join a device to Intune. We have to create a new Windows profile and make users log into the enabled Windows profile. We need to configure all the Office applications and copy users from one to another. It takes 30 to 40 minutes on a single device. 

Intune requires some maintenance, but the customer performs the maintenance once we implement it. We support the customers with issues while they are enrolling the device.

I rate Intune five out of 10 for pricing. It's expensive. 

I rate Intune 10 out of 10. I recommend Intune to every organization that wants to secure user data and control endpoint devices. It can manage other platforms on the market. Google has device management software, but it doesn't have the same scope as Intune. 

It's cost-efficient and cheaper than the other device management and third-party applications available. Intune can control most things, especially Windows devices. Intune has the best compatibility with Microsoft Windows.

We use it for pretty much everything related to endpoint management. We use it for bring-your-own-devices and corporate-related devices such as laptops and tablets. We have various operating systems such as Windows, iOS, and Android.

Microsoft Intune is helping to streamline operations and minimize administrative overhead.

We are using the Enterprise Application Management features of Intune Suite. It is very well designed and very well suited for Microsoft-related applications. Third-party applications can require some workaround. They do not always organically fit into the solution, but, overall, it is a great option to have visibility into what the users are using and be able to set up some policies based on that. We can allow applications or deny applications. We can manage what users can onboard. Overall, it is a great solution. We can definitely simplify and streamline some security operations.

Microsoft Intune is great for securing hybrid work and protecting data on company and BYO devices. What is more important is that it is not a static product. It is not that the product is very well established and not moving anywhere. It is constantly evolving. Microsoft seems to be spending lots of resources trying to improve and bring new features. That is great.

We are starting with Intune's Endpoint Privilege Management feature. It definitely impacts productivity. It is great and definitely helps a lot. It helps minimize the attack surface because you do not have elevated privileges accounts available all the time. It helps mitigate or shrink the potential impact or potential entry points into the network.

Microsoft Intune has helped us to manage the accounts with elevated privileges. We are a managed service provider. We sometimes have big turnarounds on the help desk. By their job definition, many of them are supposed to have access to different clients and different sensitive areas. It helps us to mitigate and manage these accounts, and, as a result, to be more secure. We can make sure that those accounts are not being distributed very freely. We have control over their actions. We have control over what they are doing. We have full visibility and accountability.

Microsoft Intune is easy to use, and it is able to enforce policies towards multiple devices. It is able to bring multiple classes of devices into the same security posture. I found that very useful.

The interoperability or communication with a different platform can be better. It is a two-way street. It is not only about Microsoft. The other platforms also have to be willing to share some information, but that absolutely can be improved.

I have been using Microsoft Intune for five to six years.

It depends on the level of access you have. We are a managed service provider, so we do have access to Microsoft. Generally, it is okay if you are able to find the right parties to talk to. It can definitely be improved.

Neutral

We did not use any other solution previously.

First of all, we do not have to deploy any third-party privileged account management solution. That is one tangible benefit. An indirect benefit is that by protecting your environment and making it more secure, you are potentially avoiding any downtime. It is hard to quantify what that downtime cost could be.

If an account with elevated privileges is compromised, you need to perform a lot of work. You need to change the password, disable the account, and recreate another account, so 10% to 15% of the downtime definitely could have been avoided.

We use Defender ATP and E5 licenses.

Intune was an organic choice because we are a Microsoft shop. We use everything that Microsoft can offer.

Microsoft Intune is a great solution. If you have a Microsoft environment, it is definitely the way to go. It can help you to streamline operations and simplify a lot of things. If you go into a multi-cloud environment where you have AWS, GCP, or any other cloud workloads, it may be a little bit more complicated. If you are a Microsoft shop, it is the way to go.

In terms of user experience, for the end users, it is pretty much seamless. It is more on the administrative side. If you properly configure it, it is a relatively seamless experience.

We have just started working with Microsoft Copilot in Intune. It is a very fresh solution. It has just been released, so we are setting up use cases and working with Copilot. We have a Copilot for Teams. We have a Copilot for Microsoft Office that we are utilizing. We have started playing with Copilot for some security operations. It is yet to be determined how much value it can bring. Generally, it can help you analyze and optimize some workloads and events more efficiently, effectively, and quickly. There is great potential, but we will see how it is in real life.

I would rate Microsoft Intune an eight out of ten.

I'm part of a break/fix team using Intune to support our clients. We support Android, iOS, Mac, and Windows devices and help customers with enrollment issues, Apple configuration problems, app deployment, and other issues. My clients are small-to-medium-sized.

Intune brings all endpoints and security management into one place. Through the same portal, we can manage policies and deploy apps. If we push apps through the portal, they can be deployed to all users. 

Intune makes it easier to manage devices, saving us time. It solves many challenges we face in deploying and configuring devices. When something breaks, we need to investigate, starting with the configuration. For example, the kiosks are Android-based devices. When we have issues, we need to check to ensure everything is configured correctly on the portal. 

Intune's security features for Apple iOS and Mac OS are helpful. We can check enrollment, manage public and private settings, and manage the organization's data using security key features. Like the MCM interface, the Intune portal is flexible and easy to understand.

The Cloud PKI feature helps us manage our complex certificate infrastructure across our cloud and on-prem Active Directories. We are using Copilot. The settings are controlled by Intune and SCCM, so Copilot works the same regardless of the product we use. It simplifies IT operations and helps us manage both. We can use AD Connect to integrate our on-prem Active Directory, connect with hybrid devices, and manage every device in the organization.

Intune could add more Linux security features and more integration with on-prem devices. The application deployments can also be improved. 

I have used Intune for around two years.

I rate Intune nine out of 10 for stability. 

I rate Intune nine out of 10 for scalability. 

I rate Microsoft support nine out of 10. 

Positive

We use SCCM to manage users and patches. We can push all the patches using Microsoft releases patches where we can push in a one we're using a one group and meeting one group, and then we are pushing it through this patch management.

Deploying Intune can take one to three days, depending on the configuration required. 

I rate Intune seven out of 10 for pricing.

I rate Microsoft Intune nine out of 10. I recommend Intune because it's more flexible, user-friendly, and has more security features. I work with Microsoft technologies like SCCM, Windows Server, and Intune. 

I enrolled devices with Microsoft Intune and applied policies and pushed applications. The main use cases for Microsoft Intune involve device management and policy implementation.

It excels at endpoint management and security. When managing a large number of devices in an organization, it becomes easy to handle them on one platform using Microsoft Intune. For security purposes, we can push many applications through Microsoft Intune to numerous devices in our organization, making it the best solution.

For organizations with numerous devices, Microsoft Intune's application management is beneficial because IT administrators don't need to push applications to devices individually. This makes the process easier, more time-efficient, and cost-effective.

Microsoft Intune is best for Windows devices and security in Office 365 and Microsoft-related enterprise environments. It's a nice platform for endpoint management.

Microsoft Intune lacks live location tracking capabilities. Improvements should be made in terms of MDM platforms for other devices. Microsoft Intune could be enhanced for better implementation across various device types.

I have been working with Microsoft Intune for two years.

I don't have detailed information about specific downtime or performance issues, but these issues can be there on any platform.

Microsoft Intune is a good platform for scalability. There were many challenges, but with experience, the scalability improved.

Microsoft support is good. However, compared to SOTI MobiControl, Microsoft Intune needs more efficient technical support. SOTI MobiControl's technical support is superior to Microsoft Intune's support.

Neutral

I have worked with SOTI MobiControl. The choice depends on customer requirements. If the customer's needs align with the capabilities of Intune, we choose that option. Conversely, if the requirements fit better with SOTI MobiControl, we go in that direction. Ultimately, it all depends on the customer's input. Intune is best suited for enterprises using a Microsoft environment, especially for Windows devices. However,  SOTI MobiControl is more appropriate for Android devices. While Intune can also support Android and iOS, it is particularly optimized for Windows. For iOS devices, both platforms offer similar capabilities due to platform-level restrictions that limit endpoint management solutions. Therefore, we evaluate each option based on the specific needs of the customer and their device ecosystem.

I primarily work with device enrollment and am not certain about the complete initial setup process of Microsoft Intune. Device enrollment is easy. I've worked with iOS, Android, and Windows as well.

With one user base license, we can use Intune for up to five devices. However, with SOTI MobiControl, each license is tied to a single device, meaning one license is dedicated to one device only.

I would rate Microsoft Intune a seven out of ten. I find SOTI MobiControl to be the best, which I would rate a ten out of ten.