We are a Dutch MSP delivering modern workplace solutions for all of our clients. We create tailor-made workspace environments for them.
Director at Provisioned
Automatic patching removes the burden of patch management
Pros and Cons
- "Windows Autopatch is the most valuable because it removes the burden of patch management."
- "One of our clients migrated the model workplace based on Intune, achieving a 78 percent cost reduction, which is quite a lot."
- "Intune should improve its software inventory to provide better metering of which software is used throughout the company. This is especially needed for reporting third-party software solutions."
- "Intune should improve its software inventory to provide better metering of which software is used throughout the company. This is especially needed for reporting third-party software solutions."
What is our primary use case?
How has it helped my organization?
It helps us to transform IT environments of our customers from on-premises to the cloud, focusing on both Azure and the modern workplace.
What is most valuable?
Windows Autopatch is the most valuable because it removes the burden of patch management. Intune's user experience is pretty smooth. The endpoint analytics works well if you know how to use it as a guess. Microsoft includes a little more added value by default. It's a great source of information.
What needs improvement?
Intune should improve its software inventory to provide better metering of which software is used throughout the company. This is especially needed for reporting third-party software solutions.
Buyer's Guide
Microsoft Intune
January 2025
Learn what your peers think about Microsoft Intune. Get advice and tips from experienced pros sharing their opinions. Updated: January 2025.
831,158 professionals have used our research since 2012.
For how long have I used the solution?
I have been using Intune since 2017 or 2018.
What do I think about the stability of the solution?
Intune's stability is good and has improved a lot over the last year.
What do I think about the scalability of the solution?
Scalability works well. It supports organizations with 200 endpoints and those with more than 15,000 endpoints.
How are customer service and support?
I rate Microsoft support eight out of 10. Customer service is pretty good, partly because we have a contract with Microsoft. Transparency is good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We used Active Directory group policies and ConfigMgr in the traditional way. However, most of our clients are already on Microsoft 365 Business Premium or the enterprise E3 or E5 stack, so it doesn't make much sense to use solutions from different vendors.
What about the implementation team?
We are a reseller.
What was our ROI?
One of our clients migrated the model workplace based on Intune, achieving a 78 percent cost reduction, which is quite a lot. Even with the projects around it, they still gain cost benefits in the first year.
What's my experience with pricing, setup cost, and licensing?
It's cost-effective because Intune is included in the E3 and E5 licenses. It's smart because it helps Microsoft sell the license.
What other advice do I have?
I rate Microsoft Intune eight out of 10. There's always room for development.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Last updated: Nov 24, 2024
Flag as inappropriateMicrosoft Practice Lead at a tech services company with 11-50 employees
Provides a centralized management solution, although its suitability depends on specific needs
Pros and Cons
- "I find Microsoft Intune valuable primarily for its Windows management capabilities, along with its Android Enterprise and Apple device management for mobile devices."
- "Intune provides a centralized management solution, although its suitability depends on specific needs and comparisons with alternatives like Jamf, Kandji, or ManageEngine."
- "Intune is not the most user-friendly mobile device management platform available."
- "Intune is not the most user-friendly mobile device management platform available."
What is our primary use case?
Microsoft Intune is a comprehensive solution for mobile application management and mobile device management, securing various endpoints like Windows, Android, and Apple devices. It excels in managing BYOD scenarios, employing work profiles to segregate personal and company data, and ensuring device configuration and compliance with company policies.
How has it helped my organization?
Intune provides a centralized management solution, although its suitability depends on specific needs and comparisons with alternatives like Jamf, Kandji, or ManageEngine. Overall, Intune is a sufficient solution for general use cases requiring essential device management and data security.
The Intune Analytics section is quite useful, especially for Windows upgrades on remote devices. We frequently utilize it to assess compliance and gather analytics on upgradable devices, including TPM and Secure Boot support, and memory capacity. This allows us to identify devices that meet the requirements for Windows 11 and proceed with deployment accordingly. It's particularly valuable for managing Windows 10 to Windows 11 upgrade scenarios.
Copilot for Microsoft 365 is a valuable tool that I use daily for creating proposals, summarizing Teams meetings, and generating content in Word and PowerPoint. It's even helpful in Outlook on occasion. Additionally, both Bing Enterprise and the standard Copilot in Edge are particularly useful when integrated with Customer Data Protection. This integration allows Copilot to securely access company data, including emails, presentations, and documents, to provide relevant recommendations and answers to queries.
Intune secures Bring Your Own Devices through network access management and work profiles, separating personal and company data. Additionally, it utilizes Defender for Endpoint for device security and facilitates deployment. Features like cloud app security, Microsoft Purview, and data loss prevention further enhance security and compliance, depending on the Microsoft 365 package, protecting both devices and data.
Privilege Access Management sits mostly on Entra ID and is deployed through Intune.
The primary challenge lies in managing employee devices, particularly differentiating between personal and corporate devices. Personal devices often face pushback against deploying security measures, while corporate-owned devices can be managed more securely and effectively. For instance, if a corporate device is lost or stolen, Intune enables remote wiping to protect company data.
Intune has helped in integrating Windows Update for Business to ensure machines are compliant. It provides functionality for workflow management on devices and separating company data from personal data. It is also used for deploying security and compliance capabilities depending on the Office 365 package used.
What is most valuable?
I find Microsoft Intune valuable primarily for its Windows management capabilities, along with its Android Enterprise and Apple device management for mobile devices. The mobile application management features enable BYOD support and work profiles on personal phones, enhancing security and control. Additionally, Intune excels in configuration and compliance management for Windows 10, ensuring devices receive timely updates and adhere to organizational standards.
What needs improvement?
While Intune effectively handles basic functionalities such as device management, data separation, and updates, it may present challenges with update times and limited advanced features.
Intune is not the most user-friendly mobile device management platform available. Compared to Jamf, AirWatch, or VMware Workspace ONE, it is not as intuitive or easy to navigate.
The primary challenge with Intune's enterprise application management feature is its focus on the Microsoft application stack. This limitation makes managing third-party applications difficult, as there is no centralized store or streamlined process for batch operations. Intune lacks the robust support for third-party applications.
Microsoft frequently changes its offerings, so features previously included in Intune might now require Intune Suite. For example, managing device certificates, once an Intune feature, now requires this separate package. Essentially, Microsoft releases new features but places them in Intune Suite, requiring an additional purchase for functionality we might expect in the standard Intune license. This ever-evolving strategy means staying current with Intune can become costly.
For how long have I used the solution?
I have been using Microsoft Intune for almost five years.
What do I think about the stability of the solution?
How are customer service and support?
Microsoft's product support can be inadequate, with slow response times and unsatisfactory resolutions impacting the overall user experience. This contrasts with Jamf's support, which is generally perceived as superior due to its responsiveness and effectiveness.
How would you rate customer service and support?
Neutral
What's my experience with pricing, setup cost, and licensing?
Microsoft Intune's costliness stems from licensing fees and the overhead associated with its management, user experience, and device remediation. While its licensing costs are high, the platform's limitations in manageability and user experience customization further contribute to the overall expense. Unlike Jamf, which offers greater flexibility and remedial capabilities, Intune's intrusive, yes or no approach limits user customization and potentially increases support needs. Therefore, determining Intune's true cost of ownership is subjective and depends on how these factors are measured.
Which other solutions did I evaluate?
I have evaluated Jamf, Kandji, ManageEngine, and VMWare Workspace ONE.
What other advice do I have?
I would rate Microsoft Intune a six out of ten. Its management is not user-friendly, and device additions can take up to 24 hours to synchronize, unlike Jamf, which updates within 15 minutes. This delay is problematic for immediate remediation actions, such as removing harmful content or addressing device exposure, where a 24-hour wait is unacceptable.
It is advisable to prepare for the complexities of Intune and consider Jamf for better support and manageability if working alone. If you plan to use Microsoft Intune, be prepared for manageability and potential delays in changes and support responses.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Nov 27, 2024
Flag as inappropriateBuyer's Guide
Microsoft Intune
January 2025
Learn what your peers think about Microsoft Intune. Get advice and tips from experienced pros sharing their opinions. Updated: January 2025.
831,158 professionals have used our research since 2012.
CTO at Sojitz Logistics Corporation of America
Provides great visibility, helps consolidate our endpoint devices, and our vendors
Pros and Cons
- "Fortunately, now everything is streamlined into a single, unified platform."
- "I would like some integration with the Microsoft reporting platform Power BI."
What is our primary use case?
Microsoft Intune serves as our central platform for device management, ensuring timely patching and secure access through conditional controls.
We leverage Intune to automate device onboarding, ensure patch deployment and device compliance, and generate compliance reports. We prioritize patching devices identified as non-compliant through these reports.
How has it helped my organization?
Microsoft Intune has played a crucial role in enabling remote work for our facilities under our BYOD policy. It has been essential for our success.
Consolidating all our endpoint security management tools into a single platform significantly improves our IT and security operations. This streamlined approach provides us with the advantage of using only one reporting stack, and it yields synergies that surpass the capabilities of individual solutions from separate vendors.
Integrating Intune with other Microsoft services has streamlined authentication through single sign-on. We're now transitioning to passwordless authentication for enhanced security and convenience within our unified environment.
Last week, for example, someone traveling to China had their laptop stolen. Fortunately, thanks to Intune, we were able to remotely wipe the device, protecting their data.
The incident reporting and analytics tools enable us to monitor our devices' compliance status near-continuously. As licensed customs brokers subject to Department of Homeland Security inspections, this allows us to generate reports quickly and efficiently, reducing inspection time from thirty minutes to three to four minutes.
Intune gives us full visibility into our devices and IT control across all platforms. This has significantly streamlined our management process. Previously, two people in our ten-person department spent their entire time monitoring platforms and fixing issues. Now, only one person devotes 75 percent of their time to these tasks. This means we're accomplishing more with fewer people and less time overall.
It's great, but the issue with any platform like it is the delay between deploying something and it rolling out remotely. However, it's probably the best option available in terms of keeping us informed about what's happening outside our server room or hosting environment.
Microsoft Intune has been instrumental in securing our hybrid work environment and protecting data on company-owned devices (BYOD). Before Intune, if someone lost their phone, wiping it meant erasing all their personal data - photos, documents, everything. Today, with Intune, we can selectively remove only our applications and data. This allows users to recover a lost phone and restore their personal information. Intune empowers us to be more proactive, eliminating the worry of accidentally wiping a misplaced device.
Microsoft Security Signals has become an invaluable addition because it provides centralized reporting capabilities. This one-pane-of-glass view empowers us to easily communicate our security posture internally to management and externally to regulatory agencies and auditors.
I'm impressed with the Intune endpoint privilege management feature. It's allowed us to reduce even the admin team's permissions significantly. Now, they typically lack access to most things, but the system elevates their privileges just in time for them to complete specific tasks and then demotes them again afterward. This least-privilege approach has been fantastic, and the built-in integration across the entire Microsoft stack is a major advantage. It saves us the hassle of purchasing and integrating a separate solution – it's simply there and works seamlessly.
Implementing least privilege access through Endpoint Privilege Management has significantly improved our organization's attack surface. For example, our Microsoft Secure Score was around 60 percent before adopting the solution, and it's now up to 98 percent. This reduction in the attack surface has also enabled us to implement various remediation measures and establish context-based security. For instance, even if users enter the correct password and complete two-factor authentication, we can require additional authentication if they log in from an unfamiliar location, such as a new country or state. This multi-layered approach provides us with an enhanced sense of security.
Intune has helped reduce the risk of security breaches in our organization.
We had another deployment solution for Apple iOS and Mac devices. Additionally, we also managed a few Linux boxes with an unsupported management architecture. We were able to migrate all of those devices to Intune.
Intune has helped consolidate vendors.
What is most valuable?
The integration with macOS and mobile devices specifically iOS, iPhones, and iPads was challenging in the past, requiring separate solutions and manual processes. Fortunately, now everything is streamlined into a single, unified platform.
What needs improvement?
I would like some integration with the Microsoft reporting platform Power BI.
For how long have I used the solution?
I have been using Microsoft Intune for five years.
What do I think about the stability of the solution?
Microsoft Intune is stable.
What do I think about the scalability of the solution?
The scalability is good.
Which solution did I use previously and why did I switch?
We used System Center Configuration Management, and we did it all on-prem. When Covid hit we switched to Intune.
How was the initial setup?
Microsoft documentation has traditionally been criticized for its complexity and search difficulty. While some improvements have been made, many users still rely on online forums and YouTube videos for basic setup and troubleshooting. As a result, the onboarding experience can feel less polished compared to competitors like Malwarebytes, which offer more hand-holding during installation and configuration. Unfortunately, navigating Microsoft products often requires independent research and trial and error, which can be a barrier for new users.
What's my experience with pricing, setup cost, and licensing?
Consolidating vendors has lowered our licensing costs. However, some features included in Microsoft's Intune might be 50 percent more expensive if purchased separately from another vendor. Specifically, if we consider upgrading Azure Active Directory or Entra to the P2 level, adding Intune capabilities, and acquiring the full Intune suite, Microsoft offers a significantly lower per-user cost compared to external vendors. With Microsoft, it's just a couple of dollars per user, while external vendors typically charge $10-$14 per user for similar functionality.
I would rate the price a four out of ten with ten being the most expensive.
Which other solutions did I evaluate?
We evaluated several options, primarily security solutions like Malwarebytes and Sophos, which offer remote management capabilities. Ultimately, we opted for Intune.
This is a case where remote management was initially implemented as an afterthought, primarily driven by anti-phishing and anti-malware threat response needs. Subsequently, it became the sole platform for endpoint management, despite limitations in its functionality and granularity compared to solutions like Intune.
What other advice do I have?
I rate Microsoft Intune an eight out of ten.
I'm conflicted about consolidating our vendors. On the one hand, it would simplify things considerably, which is appealing. However, I worry about relying solely on one supplier, preferring a layered approach with multiple vendors. Ideally, we'd maintain a multi-vendor setup, but the current complexity makes it challenging. There are currently vulnerabilities related to Microsoft's primary factor authentication, including several unpatched zero-day exploits. These represent ongoing security concerns.
It's crucial for our organization that the Intune suite integrates seamlessly with Microsoft 365 and Microsoft Security, both for cloud-based and co-managed devices. This is especially important considering the recent trend of moving data back on-premises. We believe a hybrid environment offers the best of both worlds, but many tools are cloud-only, making them incompatible with our on-premises servers or unable to manage them effectively. Thankfully, the Intune suite has addressed this gap, providing us with much-needed flexibility and functionality.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Systems Architect IV at a aerospace/defense firm with 10,001+ employees
The ability to manage software updates and policies on endpoints has helped us meet contract requirements
Pros and Cons
- "Intune simplifies compliance. The ability to manage software updates and policies on endpoints has helped us meet contract requirements."
- "There are no complaints about the stability. It works one hundred percent of the time."
- "The interface is not as modern as some competitors in terms of single pane of glass visibility across the entire landscape. It has a very Azure vibe and may not be as graphically appealing as other products."
- "The interface is not as modern as some competitors in terms of single pane of glass visibility across the entire landscape. It has a very Azure vibe and may not be as graphically appealing as other products."
What is our primary use case?
Our primary use case for Microsoft Intune is endpoint management across our enterprise, particularly for Windows and mobile endpoints.
How has it helped my organization?
Intune simplifies compliance. The ability to manage software updates and policies on endpoints has helped us meet contract requirements.
What is most valuable?
We like Intune's mobile device management features. When we migrated from another solution to Intune, onboarding our mobile devices was straightforward. Intune is pretty transparent for the end user. They have a customer portal, and I've never had complaints about it.
The enterprise application management feature allows us to identify systems outside our standard security baseline and limit their access to company resources until they are updated and approved.
What needs improvement?
The interface is not as modern as some competitors in terms of single pane of glass visibility across the entire landscape. It has a very Azure vibe and may not be as graphically appealing as other products.
For how long have I used the solution?
I have used Intune for around two years.
What do I think about the stability of the solution?
There are no complaints about the stability. It works one hundred percent of the time.
What do I think about the scalability of the solution?
There are no concerns about scalability, especially coming from an on-premises solution. We no longer need additional hardware and infrastructure.
How are customer service and support?
I rate Microsoft support eight out of 10. We haven't needed support much, but what we've gotten has been good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, we used MobileIron for mobile devices, which is our primary use case for Intune. We switched to Intune mainly because it was included in our standard E5 license, providing cost savings and managing everything under a single pane of glass.
How was the initial setup?
The initial setup was straightforward with minimal support required from Intune's side.
What about the implementation team?
No external integrator, reseller, or consultant was used. All implementation was handled in-house.
What was our ROI?
We have seen a small return from the native integration with our Microsoft systems and Intune's reporting.
What's my experience with pricing, setup cost, and licensing?
With our standard E5 agreement with Microsoft, there have been no pricing concerns. Introductory professional services, like a fast-track service, were included with our E5 membership, and there have been no additional costs.
Which other solutions did I evaluate?
We evaluated Workspace ONE and Jamf for mobile management but stuck with Intune because it's included in our license.
What other advice do I have?
I rate Microsoft Intune eight out of 10. It's a great solution, but there is room for it to become a more polished product.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Nov 27, 2024
Flag as inappropriateManager, Information Technology at Kadaster
Enables secure and flexible device management across multiple platforms
Pros and Cons
- "Intune makes our organization more secure and flexible. We can onboard new employees faster and more securely. We are a governmental organization with strict regulations, and Intune helps us comply with those requirements."
- "Intune makes our organization more secure and flexible."
- "We would like to see the ability to use multiple personas on a device, similar to Samsung Knox, included in future updates."
- "Customer service used to be better, but as we are nearing the end of the contract, the focus on investing in us as a customer has diminished. It is what one would expect in such a situation."
What is our primary use case?
We use Microsoft Intune to manage mobile devices and distribute software. It helps us securely manage multiple vendors and operating systems.
How has it helped my organization?
Intune makes our organization more secure and flexible. We can onboard new employees faster and more securely. We are a governmental organization with strict regulations, and Intune helps us comply with those requirements.
What is most valuable?
The most valuable feature for us is mobile device management because it allows us to use multiple vendors and operating systems securely. I don't use Intune directly. My teams have used it, and I don't get any complaints about the user experience.
Intune Suite's enterprise application management has made my life a little more difficult because now I know the kind of applications circulating in my organization. On the other hand, we started a program to fix the problem, and Intune helps us by providing us with insights.
Copilot helps because you can use the prompt to ask questions about the Intune-managed environment. That shortens the time we spend on reporting and that kind of stuff. Our analysis will be more efficient.
What needs improvement?
We would like to see the ability to use multiple personas on a device, similar to Samsung Knox, included in future updates.
For how long have I used the solution?
I have used Intune for the two years I have worked for my company, but the company has been using it for longer.
What do I think about the scalability of the solution?
Intune's scalability is excellent. We are not a large company—only around 2,000 employees— and Intune handles our needs well.
How are customer service and support?
Customer service used to be better, but as we are nearing the end of the contract, the focus on investing in us as a customer has diminished. It is what one would expect in such a situation.
How would you rate customer service and support?
Positive
How was the initial setup?
Deploying Intune was difficult for me, but we have a deployment manager who handles it.
What about the implementation team?
We used multiple consultants, including Capgemini and KPN. Our experience with Capgemini has been positive due to a long-term relationship.
What was our ROI?
It is hard to quantify the ROI in hard metrics, but using Intune allows faster onboarding, increased flexibility, and more insight into device and software usage.
What's my experience with pricing, setup cost, and licensing?
We are a governmental organization, so we can get discounts. Considering our environment, we get good value.
What other advice do I have?
I rate Microsoft Intune eight out of 10. Microsoft Intune fits well into our architecture, and they are developing new features like Copilot. It has contributed to the seamless integration with our existing setup.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Dec 4, 2024
Flag as inappropriateEndpoint Manager at a energy/utilities company with 201-500 employees
Extensive device management options empower diverse environments
Pros and Cons
- "The biggest asset is the range of device management options available with Intune, whether it is a Windows device, a Linux device, a Mac device, or mobile devices."
- "The biggest asset is the range of device management options available with Intune, whether it is a Windows device, a Linux device, a Mac device, or mobile devices."
- "The reporting dashboard is really limited."
- "Customer service used to be better. In the last couple of years, support has not been very good, even with Premier and Premium support. It's been very hit-or-miss."
What is our primary use case?
The primary use case is endpoint management.
What is most valuable?
The biggest asset is the range of device management options available with Intune, whether it is a Windows device, a Linux device, a Mac device, or mobile devices. There are numerous options available. Within Windows devices, the depth of management is very nice.
What needs improvement?
The reporting dashboard is really limited. You have to use something like Power BI and Graph to get better reporting. I wish they would implement new dashboards and widgets for the dashboard in Intune. The report updating period is very slow, taking upwards of over an hour to confirm if a policy is deployed after check-in.
For how long have I used the solution?
I have been using Intune for about three years now.
What do I think about the stability of the solution?
Very rarely have I seen it crash, maybe twice. However, if Intune is not available, the 365 environment might not be available, causing a major ordeal.
How are customer service and support?
Customer service used to be better. In the last couple of years, support has not been very good, even with Premier and Premium support. It's been very hit-or-miss. However, when you get a knowledgeable support engineer, they are very good and helpful.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I've used Jamf, JumpCloud, Mosyle 360, and Automate. I switched when I started to see the benefits of machine-level or cloud management through Intune.
How was the initial setup?
Intune from zero has a learning curve, however, it's not overly difficult. It's important to have a basic understanding of what you're doing.
What about the implementation team?
I've set up environments by myself. It's better to have a small team to verify policies and come up with solutions.
What's my experience with pricing, setup cost, and licensing?
I know what's included in 365 Premium offering, and it's a good deal. On an enterprise level, they break out features I'd really want, which complicates access. It is a good value, especially for smaller organizations.
Which other solutions did I evaluate?
What other advice do I have?
Make sure you have a test environment or test devices. Don't push a policy out to all devices unless you absolutely understand what it's going to do.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Nov 22, 2024
Flag as inappropriateEnd User Computing Architect at a consultancy with 10,001+ employees
Simplifies IT and security operations and enrolling endpoints is a breeze
Pros and Cons
- "A valuable feature is user enrollment, where users can enroll their devices in their organizations themselves."
- "The current Intune reporting functionality could benefit from some improvements."
What is our primary use case?
We use Intune to manage endpoints as a centralized enterprise solution. Instead of relying on Active Directory or an on-premise system, we directly manage employee devices using Microsoft Intune. Intune, a cloud-based SaaS product, simplifies endpoint management. From a user perspective, it's an improvement. Users no longer need to be on the office network. They can set up their devices anywhere with an internet connection, whether at home or another location.
Security is also enhanced. By using Intune as a mobile device management solution, we can implement security controls and restrictions on endpoints. Intune helps us achieve a balance between user experience and security.
How has it helped my organization?
Managing remote employee devices with Microsoft Intune is easy. Intune acts as a central platform for deploying controls, policies, and applications to our endpoints. It simplifies the delivery of these configurations to our remote workforce.
Intune simplifies our mobile application management. Once implemented across the organization, it will eliminate our reliance on on-premises solutions. Previously, managing endpoints required using our System Center Configuration Manager. Now, Microsoft offers a unified solution called Microsoft Endpoint Manager. Intune, a key component of this suite, allows for convenient device enrollment over the internet, streamlining endpoint organization.
Intune helps bring our endpoints and security management tools into one place.
Consolidating endpoints and security management tools simplifies IT and security operations. This unified approach offers a single solution or console for all tasks. Role-based access control ensures each administrator only sees and modifies what's relevant to their role. For example, the security team can access Intune solely for security-related functions, while the patch management team has its own set of permissions. This centralized management is significantly easier to handle than using multiple third-party tools. Intune provides a comprehensive solution where everyone can configure settings – security, endpoints, controls, etc. – within a single platform.
Intune offers endpoint visibility and IT control across various device platforms. It simplifies troubleshooting and device management compared to other solutions. Intune excels in providing a comprehensive solution. We can manage applications, security controls, and patching processes all within Intune. This eliminates the need to rely on three separate solutions. With Intune, everything is consolidated into a single platform, allowing for combined reporting and streamlined issue resolution.
Enrolling endpoints with Intune is a breeze! The overall user experience is excellent, easily a nine out of ten.
There are three critical features of Intune for maintaining our devices' security. Endpoint encryption ensures data on the device is scrambled even if it's lost or stolen. Intune supports BitLocker encryption for Windows devices and file-level encryption for Mac devices. Defender is a comprehensive security solution that helps protect devices from malware, viruses, and other threats. Compliance policies in Intune allow us to define security requirements for devices. These policies can enforce encryption, complex passwords, and other security settings. If a device doesn't meet the compliance policy, it can be restricted from accessing organizational resources. Intune can also send notifications to users or administrators when a device becomes non-compliant.
In the initial stages of migrating from our on-premises solution to Intune, we relied on device compliance policies. We configured these policies to require the latest antivirus signatures, specifically targeting developer devices. This ensured compliance and minimized the risk of non-compliance impacting their work. While compliance policies were initially used, we've since transitioned to Microsoft Defender, which now plays a major role in our device security strategy.
Intune's application deployment feature has significantly improved efficiency in our IT department. As one of its key functionalities, Intune allows deployment of a variety of applications with different extensions, such as .DXE or .MSI files. However, for applications requiring custom license scripts, batch files, or executables, Intune provides its own Windows app deployment toolkit. This toolkit facilitates the conversion of these files into a format compatible with the Intune app store and its update system.
The user interface is easy to navigate. Microsoft provides monthly updates that introduce new features. Previously, they provided pie chart visualizations for complaint and policy control status reports. These have been transitioned to standard chart formats. Overall, the UI continues to improve with each Microsoft update.
Company-owned devices are subject to a different set of policies. These policies may be very strict, restricting certain functionalities, or they may prioritize security above all else. On the other hand, for BYOD programs, we provide users with certain privileges for their mobile devices and laptops. We create a secure, isolated environment in a sandbox to manage the devices within that environment. Security is a major consideration for both BYOD and company-owned devices.
Intune has increased our IT productivity for patching and security by around 15 percent.
Microsoft Intune helps our organization reduce the risk of security breaches by eight percent by deploying zero-day patches in conjunction with Defender and Sentinel.
Intune has helped us consolidate vendors with the driver deployment and onboarding.
We manage configurations for Microsoft 365, co-managed devices, Azure, Defender security controls, and DLP controls within Intune. This centralized platform allows us to configure roughly 80 percent of these services and controls in a single location.
What is most valuable?
A valuable feature is user enrollment, where users can enroll their devices in their organizations themselves. This streamlines the process and saves IT time.
Another key benefit is zero-day productivity. During enrollment, the user has access to the applications and settings the organization needs them to have, making them ready to work immediately. Intune essentially pre-configures the device based on the user and organization during enrollment.
Finally, Intune offers easy patch management for various endpoints, including Windows 10, 11, and Macs. Deploying upgrades and monthly patches is significantly simpler compared to other solutions, both from Microsoft and third-party vendors.
What needs improvement?
The current Intune reporting functionality could benefit from some improvements. Specifically, a report that tracks patch deployment status would be valuable. Ideally, I'd like a report that provides device-level details on applications and controls deployed. However, it seems like other organizations might be more interested in control-centric reports, showing details like what control was deployed, the number of devices affected, and other relevant device data. Overall, reporting is the area where we're encountering the most challenges with Intune.
For how long have I used the solution?
I've been using Microsoft Intune as a comprehensive solution for the past six years. While I had some experience with it before 2019, it was limited to mobile device management. Since 2019, I've been managing the full Intune suite as an administrator, overseeing Windows endpoints, Mac endpoints, Android and iOS.
What do I think about the stability of the solution?
I would rate the stability of Microsoft Intune eight out of ten.
What do I think about the scalability of the solution?
Microsoft Intune excels in scalability, earning it a nine out of ten rating. It empowers organizations to migrate to the cloud and manage all their endpoints seamlessly. This includes a wide range of platforms like Windows, macOS, mobile devices, and even Linux. Intune simplifies endpoint management by offering a centralized solution for all these platforms.
How are customer service and support?
The response time and technical knowledge of the support team is not what it used to be.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We previously used an on-premises solution, Microsoft Endpoint Manager, to manage our devices. The pandemic necessitated a shift to the cloud.
How was the initial setup?
The initial deployment of Intune can be complex because it is linked to Microsoft Entra, which itself is a complex product. This complexity depends on the desired outcome. Intune's deployment complexity hinges on whether users will enroll their devices themselves or if the IT team will enroll them and grant access. A proper pre-assessment is crucial to determine if Intune's complexity aligns with our desired outcome.
Our deployment took two months to complete because of the internal security approvals we required.
Three administrators were required for the deployment.
What's my experience with pricing, setup cost, and licensing?
The price for Intune is fair.
What other advice do I have?
I would rate Microsoft Intune eight out of ten. There are some improvements concerning the reports and there are other design-related concerns that we are looking at in Intune.
We don't have the tunnel option because we primarily work in a restricted computer environment. Our organization uses Microsoft Intune to manage applications within a dedicated sandbox environment. We perform frequent updates to ensure everything is current.
During the initial onboarding process, we encountered some challenges, and multiple teams were involved in resolving them. For example, users from India might experience issues like broken URLs or restricted access due to their ISPs. Similarly, in China, certain URLs might be blocked by some internet service providers. To address these issues, we initially involved additional administrators from each region on the administrative side. However, we've since transitioned to a centralized management structure with a core team of five to six members overseeing the entire organization.
We maintain a separate development Intune environment for User Acceptance Testing specific to the Asia Pacific region. Since our production environment is also located in Asia Pacific, we essentially have two Intune instances: one for development and one for production. We also have around 290,000 devices.
We have a team of five Intune administrators. The only maintenance required for Intune is the updates.
I recommend Microsoft Intune.
Based on the number of users and devices you're enrolling, I recommend having separate UAT and production Intune environments for larger deployments. For simpler environments, a single Intune license is sufficient to manage your devices and integrate with your Enterprise and Microsoft 365 solutions.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head Of EUC at Telenor Microfinance Bank (TMB)
Helps unify our endpoint and security management tools, enhances IT security operations, and improves our security posture
Pros and Cons
- "Intune's unified endpoint management platform is invaluable."
- "Microsoft Intune is not user-friendly to manage and has room for improvement."
What is our primary use case?
We opted for Microsoft Intune for endpoint management within our Microsoft solution bundle.
How has it helped my organization?
Intune unifies our endpoint and security management tools.
Managing our devices in a single solution helps our IT security operations.
The user experience is good, especially for SIS Administration.
Intune provides 90 percent visibility and IT control across device platforms.
Intune helps us secure our hybrid work.
Our information security team has been quite satisfied with our organization's security posture since deploying Intune.
Microsoft's E3 and S3 subscriptions keep us within their ecosystem and enhance our IT productivity, eliminating the need for third-party solutions.
With the implementation of Intune the risk of security breaches has been decreased.
Intune's unified platform has saved our organization money by eliminating redundant costs, like extra licenses and the need for multiple solutions for the same tasks.
Intune helped us consolidate vendors. This consolidation has improved our security posture.
It is important for us that Intune integrates with Microsoft 365 and Microsoft Security for both cloud and commonly managed devices.
What is most valuable?
Intune's unified endpoint management platform is invaluable.
What needs improvement?
Microsoft Intune is not user-friendly to manage and has room for improvement.
The detection and prevention of end-user data leaks from mobile devices can be improved.
For how long have I used the solution?
I have been using Microsoft Intune for nine months.
How are customer service and support?
The first level of remote support is inadequate. While the E5 license grants access to advanced support, I've encountered instances where the technical support team deflects responsibility. For example, a recent issue with Microsoft not syncing properly with the cloud was attributed to Windows and redirected to another team. Due to Microsoft's overall responsibility for their products, I believe since it all falls under the umbrella of Microsoft, they should deal with it.
How would you rate customer service and support?
Positive
How was the initial setup?
Once we create our tenants, the migration and synchronization of the users to the cloud services is straightforward.
We deployed the solution in phases and it took around three months to complete. Three people from our end were involved in the deployment.
What about the implementation team?
Our Microsoft partner helped with the deployment.
Which other solutions did I evaluate?
We evaluated IBM, Ivanti, and Workspace ONE but our management decided to move away from third-party platforms to simplify and save costs.
What other advice do I have?
I would rate Microsoft Intune a nine out of ten. Intune is missing a single-pane-of-glass, requiring us to jump through multiple portals to manage all our devices.
We have 3,000 users.
Microsoft Intune is a top-notch solution and I recommend it.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Microsoft Intune Report and get advice and tips from experienced pros
sharing their opinions.
Updated: January 2025
Product Categories
Unified Endpoint Management (UEM) Configuration Management Remote Access Enterprise Mobility Management (EMM) Microsoft Security SuitePopular Comparisons
Workspace ONE UEM
ManageEngine Endpoint Central
NinjaOne
IBM MaaS360
Ivanti Neurons for MDM
Sophos Mobile
Citrix Endpoint Management
Faronics Deep Freeze
Ivanti Endpoint Manager
Scalefusion
Hexnode UEM
Matrix42 Unified Endpoint Management
Tanium XEM
Adaptiva
Buyer's Guide
Download our free Microsoft Intune Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Microsoft Intune and VMware AirWatch; Which do you recommend?
- What is lacking in comparison with AirWatch?
- What are the benefits of Microsoft Intune for IT Admin?
- What do you think of the integration of Azure AD Services, Defender for Endpoint, and Intune as comprehensive security solutions?
- What are the main differences between Jamf Pro and Microsoft Intune for Mac management?
- Which solution is better for an educational organization: Google Workspace or Microsoft Intune?
- What are the differences between MobileIron UEM and Microsoft Intune?
- What are the pros and cons of Microsoft Intune?
- How does Microsoft Intune compare with ManageEngine Desktop Central?
- Is it worth migrating from WS1 to Intune if we have Microsoft 365 E3 available?