Microsoft Intune Reviews

We use Intune to deploy and control applications on mobile devices and to remote patch and wipe endpoints. We also use it for various other endpoint- related operations.

Intune provides centralized access to the complete environment. It has helped us secure hybrid work and secure company data on hybrid devices. 

It has improved the productivity of our infrastructure and application teams as well as our end users. Intune has helped us quite a bit. I havent' calculated the ROI, so I'm not sure how much it has saved us, but it has streamlined our application process and improved application availability. 

Our main use is Intune's management of mobile devices, like Android or iPhone devices. The application performs quite well for both types. We successfully managed almost 3,000 endpoints. 

From a security perspective, we apply various password patches in application control, but we use a different product. Intune meets our expectations and requirements for device and application control, but it might not fulfill your needs for other purposes, such as security. 

It's quite a thorough solution that gives you a complete inventory of everything you have on your laptop or mobile device. It offers extensive visibility.

Intune could add more features that are relevant to the core application control functions. For example, it would be helpful if it had more control over the on-prem environment from the cloud platform. Greater Teams availability in the Saudi market would also be helpful. 

I have worked with Intune for three years.

I rate Intune nine out of 10 for stability. 

I rate Intune nine out of 10 for scalability.

I rate Microsoft support five out of 10. Unlike some other vendors, Microsoft support is not that efficient, but if you have implemented the solution correctly from the start, then you won't need support that much.

Neutral

Intune isn't an easy deployment.

We used a small Middle Eastern firm as a system integrator.

We evaluated Ivanti, but we decided to use Intune because it was available as a SaaS.ker 0

I rate Microsoft Intune eight out of 10. If you need endpoint management and control, Intune will be right for you, but I don't think It can meet your expectations if you need something else. For new users, I suggest having Intune implemented by a security or application architect. Otherwise, you may face problems later that you cannot troubleshoot.

We were using SCCM to build and manage our machines and to control the AV, and everybody left the offices for the pandemic. We did not have an external management point. Oh. And we realized we lacked a method of control. After hassling Microsoft over a question of semantics, we finally got our answer, and we quickly scrambled over two weeks to push out Defender while everybody was still in the office. The other part was to move toward Intune. 

We started testing that and went in both directions. We tried domain and nondomain. We eventually worked backward, redid it again, and took all of our workstations off the domain. Now, none of our workstations are running on the domain. We build everything from Intune. The company gets a list ahead of time from vendors like Dell or HP, so we can have a laptop sent directly to an individual without ever touching it. They sign in, and it simply asks for their password. 

The biggest benefits of Intune are the ability to push changes and the added security. When we moved forward with Defender, we onboarded all those machines automatically. That helps dramatically. For a while, we were left with machines that weren't protected. We could see where people had done things they shouldn't have done, and Defender saved our skins a few times. It didn't happen a lot, but it happened enough that it made us glad we made that decision. 

Intune has enabled us to manage our remote workers' devices, which has been especially helpful since the start of the pandemic. My guys spend less time troubleshooting. If they're going to spend more than about an hour on an issue, it's a little easier to just reset the machine and reinstall everything again. It saves a lot of time. 

We're a much smaller group, so it worked out better for us. We've been able to push out products that we hadn't planned on. We had to push out certificates because we decided to go with a Cloud RADIUS provider and moved to certificate-based authentication for wireless. We've leveraged that same certificate to turn on 802.1x in all our offices to secure the wired networks. And all of these things have made it possible to roll out DNS filtering. Once again, all through Intune. We could enable all these pieces that we would need to turn on one by one with Intune in place.  

The company needed something that could be agnostic, so it didn't matter where it was. Half our workforce doesn't work in the office. We've downsized our primary office, and leased over half of it to other companies with subleasing. We don't need as much space anymore. Our workers are still working, and they're not required to be in the office more than three days away. Intune ensures that everyone can work remotely and securely. You can't log into our Office 365 environment from a non-managed device. Almost everything is in Office 365. We use nearly every piece of it. We use Teams for communications and switched to Azure Virtual Desktop at the end of 2019. We were a Skype customer then, so it wasn't hard to switch. 

We continued to shrink our footprint as we adopted more and more SaaS offerings. Unfortunately, finance and some other use cases cannot be in the cloud. You still need on-premise Bloomberg terminals, and other companies require you to have circuits to run them. We have to redirect certain things, which is why we have the VDI in place for a handful of users who require those internal resources when they work remotely. Intune is what made all that easy and possible. I don't think we would ever change that. My guys like it. It has simplified things. 

At the end of the day, we do touch the machines, but we don't need to. And we know if we didn't have to. Previously, a machine got left in an office, and we just walked through somebody wiping it, where you assign it to them, and they log back into it. In the worst-case scenario, we can just pull something off a shelf like that.

We had to learn the hard way which machines work in our environment. It's nothing against the company, but we will no longer buy Dell because their business platforms only use Intel chips, and we can no longer afford to use Intel chips. It doesn't work for our needs. I can get AMD chipsets that are generally cheaper and perform better. They aren't throttled for some of our applications the way Intel chips do. People have been happier since we made that migration a little over a year ago. 

We replaced many machines and onboarded people after acquiring a couple of other companies, and they were shocked at the difference between the machines we gave them and what they were used to working with. They just had always put up with that, and so had we. With Intune, it didn't matter what we purchased because it already had Windows loaded on. It was simple and easy to move forward.

Intune has reduced our build time from four hours per build to an hour or an hour and a half on a slow day. That's getting the Office 365 stuff to download and install. The other apps are secondary. When somebody logs in to a machine, the apps start downloading. We could give somebody a machine they've never seen before, have them sign in, and they're ready to work in an hour and a half. That's a tremendous amount of time saved, and there's nothing left for us to do.  We just make sure everybody who's supposed to be in a group has the assigned apps that the group needs to have. They're installed automatically.

The biggest problem we ever have is when something goes out of date after 30 days when nobody has logged into it. We do have a problem trying to get those back online. We've been working with Microsoft to resolve that problem, but that's been the only issue that we've had in the last few years.

Out of the box, Intune works reasonably well. They will continue to think of new ways to improve. Some of the policies could use some work to align more with what people are used to, but it's getting there. It's coming along, and I'd like to see how Security Copilot comes into play. You could have Copilot build things based on what you request. It could help put policies in place and look at your current policies. 

Unfortunately, we've had stuff out there for four years, and it's not working properly. A tool like Copilot could assess my policies, find weaknesses, and tell me where to make changes. That would be a great benefit.

I've had a constant battle with the DLP component, and no they're not going to have a choice. If they want to go with Copilot, we will need to start classifying documentation whether we want it or not. There will be a big fight when I get back of it. There's a fight. If you want you want you say you want copilot when it comes out, but if we have a classified stuff, it's not gonna work the way you wanna too. I heard so. Yeah. That's a problem. I heard someone talking about

We started testing Intune at the start of the pandemic, and at the time, it didn't seem to be quite as ready as they claimed it was. It was still being pieced together when we adopted it. However, it worked out well. While everybody else was scrambling during the pandemic to get on Teams and Azure Virtual Desktop, we had done that in the previous December, so by pure luck, we were ready to walk out the door. 

And I think it's scalable, honestly, but it's it's also about mentality, whether you believe it's you wanna spend the time to make sure that it's scalable. You know, I I I don't think I've been a big fan of getting away from domain services for the longest time. Think I don't see the point anymore. It's we use it very rarely. I so, you know, everything should be cloud based. It's a way to go. I mean, if you can run it that way,

We don't usually deal with Microsoft much. We have a CSP in place. However, sometimes we're dealing with a backend problem, and the CSP will take longer, so we'll go straight to Microsoft. When that occurs, Microsoft typically handles those issues reasonably quickly. When I contact Microsoft, I usually go through several engineers before I get to someone who can help. That's normal, but it doesn't drag out.  

Years ago, when we paid for enterprise support, I felt it dragged on forever because I went through the same process. I'd talk to a first-level engineer, and we had to escalate to tier three before we finally got somebody who understood what was going on. They would see the problem but not know how to fix it. They never had a resolution half the time.

The initial setup was easy, but we had lots of time during the pandemic. I had that all set up in my living room that first summer, working on it remotely. There were some pains because it wasn't all there yet. It wasn't until about July 2020 that most of the pieces were in place. It took another year before the rest was solid. However, to be fair, people adopting Intune now will get a mostly finished product.

Intune has a cost advantage if you get it with a bundled Microsoft license. If you have E3 licenses, you already have access to Intune, so you're not paying anything extra. That's a huge savings right there. Back in the day, people always wanted Office, but they didn't wanna pay for it, so you would use Open Office. That was my go-to 10 years ago. Now, I recommend the opposite. You need an Office 365 account. Don't think it is as paying for Office. That's not what you're buying.

For $7 dollars a month, you're getting a terabyte of storage in OneDrive and all the apps. You won't get that from Google. It's about cost, and it's even better if you get those bonuses with it. 

I rate Intune eight out of 10. I've never seen anything perfect, but it is an excellent fit for our environment. This is the smallest company I've ever worked for in my professional career, so it works well for us.

We use Intune specifically for device management and patching, as well as with Autopilot for device configuration and deployment.

Intune has significantly benefited our organization by providing comprehensive visibility into our device ecosystem. This enhanced oversight has led to cost reductions, improved operational efficiency, and a deeper understanding of our IT environment.

Intune's most valuable features are its device management capabilities, particularly its centralized integration with other Microsoft stack components. 

Intune could be improved by expanding its third-party patching capabilities for a more comprehensive solution. Currently, we must utilize external resources to manage certain tasks across our environment. Furthermore, user functionality and feature sets could be enhanced, especially as we prepare to deploy Intune on Mac devices.  

I have been using Microsoft Intune for over a year.

The stability of Microsoft Intune is good.

Microsoft Intune is scalable.

We don't rely on Microsoft for support because, as their top partner, our team possesses extensive Microsoft expertise. Generally, issues are minor and resolved efficiently in-house.

Positive

We currently use Ivanti for some patching and third-party solutions, and Jamf to manage Macs due to limitations in Intune. However, since Intune is included in our Microsoft 365 E5 package, we are motivated to consolidate our toolset.

We have seen a return on investment from the device deployment aspect, with less hands-on touch required when deploying devices.

I rate Microsoft Intune eight out of ten.

I would rate the Intune user experience an eight out of ten.

We plan to implement Intune's advanced endpoint analytics feature next year to gain deeper insights into our environment. This will enhance our understanding of its performance and health.

Our organization is currently deploying Intune's public key infrastructure for cloud applications.

We use the solution for Autopilot. The company uses it for onboarding to Autopilot. We're using it mainly for mobile devices as SCCM cannot handle mobile devices. It works great for iOS, iPads and MacBooks. We do use it for Windows as well. 

If a user wants to purchase any application, they have to do it manually. However, we are now able to purchase the apps for the user and the user can access the apps without having to purchase themselves manually. When we use a VPN, we can utilize a protection policy where we can create rules around certain apps so that no data can be copied to an unmanaged device, for example. The device will be deactivated based on a threat to compliance. 

Intune allows us to deploy legacy policies and future policies for our devices. We can create policies for pushing Windows updates. 

The user experience is mainly for mobile devices, and it's very good for protecting personal devices. It helps us control company data, even on personal devices. Overall, the user experience is good. 

We are using Microsoft Copilot. We've very recently started using it. If you have a Copilot license, it can show policies for each device. It's a very useful feature. We're just starting to test it with our pilot groups. However, so far, it's given us the complete details of policies installed on individual devices. It will help us simplify our security operations. For now, we're working with our security and compliance teams to put it into place fully. 

If any user tries to access company data, it directly interacts with the conditional access policy. This helps us protect our data and set the criteria for how data can be accessed and shared. 

The enterprise application management feature for app discovery deployment and automatic updating is very useful. If you want to use a managed application in Intune, it needs to be authorized in Azure. This is an extra protection that ensures only proper applications are used. 

Intune can reduce the manpower needed on the IT side. By pushing customized policies, we can manage everything via the cloud or on-prem, and everything is seamless as it offers hybrid endpoint management capabilities for all devices.

With Intune, we can now manage both Windows and iOS devices under one solution. It's saving us a lot of costs by streamlining the management platforms needed.  We've been able to consolidate vendors. Since everything is now with Microsoft, the enterprise cost is different. The licensing is very easy.

From SCCM, you can control the complete patches of the Windows device. Either it's a future update or a critical update. Otherwise, it's just a security update. However, when it comes to Intune, we have no option to defer the policy. We can defer for 60 days; however, apart from that policy, everything needs to be deployed from Intune.

If you wish to block any App Store application, there is no way to do so. I have no app-blocking policies. If any user installs an application, the complaint policy will check it. Eventually, the device will remove any non-compliant devices. However, it will take time. There is no rapid, pre-emptive way to block the application directly from the App Store.

Intune doesn't bring all of our security management into one place. Windows patching isn't very visible in Intune. 

We need to manually add in serial numbers of the hardware. It would be ideal if the solution could offer a seamless enrollment option.

We'd like to have more visibility on endpoint security, specifically around antivirus and disk encryption. You can configure the firewall, however, it would be ideal if there was a single portal where we could manage all security efforts - from encryption to antivirus to firewalls - anything related to the network.

I've been using the solution for almost six years. 

The stability of Intune is very good. We don't need to take care of the network or anything since it's not on-prem. It's completely stable in the cloud. 

We have about 50,000 Windows devices and 25,000 iOS devices using Intune.

We haven't faced any limitations when it comes to scalability.

We've very rarely had to reach out for support. We had to in June for an update across iOS applications; however, beyond that, our need for them is very rare. You do need to be at an enterprise level in order to get complete support from Microsoft. 

Neutral

Previous to Intune, we were supposed to use only the WatchGuard devices with Citrix since we did not have any SCCM setup. Citrix completely managed the devices. And even if any user wanted to access something from home, the user had to log in first, sign in to VPN, then sign in to any virtual machine related to Citrix, and only then could they use OneDrive or whatever. There was the added cost of getting virtual machines and then having everyone utilize some more bandwidth. Using Intune helped the company streamline access and reduce bandwidth.

We also had a different process for iOS versus Windows products. For iOS, we had people accessing via AirWatch. Intune allows us to have one single type of license for all devices. Plus, Azure's Microsoft Defender offers security. 

The initial setup is not complex. If you are simply setting it up for a mobile device, it's very easy. It will redirect users for conditional access to ensure compliance. How many people you need to deploy is based on scale. However, even with thousands of devices, you only need two or three people as they would need to set up the groups. 

The tool is easy to maintain. 

We've witnessed a very good ROI by consolidating all of our platforms under Windows. A single license can cover five devices. You can sign in and gain access to all sorts of Windows applications from 365 to Excel. 

The licensing is very reasonable. With a single enterprise or EMS license, you can manage the Teams-certified device, and you can manage Windows as well as mobile devices. You can use Azure and get security. You get everything with a single vendor, which helps save costs by 30% to 50%. 

I'm working as an Intune engineer. I'm an end-user.

By moving to Intune, companies can control more DLP. The data loss protection is all right there. Users gain more visibility with Intune. 

I'd rate the solution seven out of ten. 

We are a Microsoft vendor, not an Intune user. I have deployed Intune for several customers who use this product for business. Our clients use Intune for device management and data security, which gives them control over end-user devices.

Previously, we used a device manager and had a local Active Directory. However, most of our SME customers do not have a local Active Directory set up in their organization that allows them to control their devices. Intune does not require any local AD. It's a cloud application. We can directly join the user devices to the cloud, and the organization manages them. We have enterprise customers and also SMBs, but most of our clients have less than 100 users. 

One of my Indian clients previously had all their devices at the workplace. None of the devices were joined to an Active Directory, so they had to install applications on each device individually. With the help of Intune, we could push the applications to all the portal users simultaneously. 

We have to create a group, assign an application to it, and automatically install it on the user's devices. We also apply the company logo and desktop wallpaper via Intune, which a tech user can change. We can also find the exact location of the devices where the user is sitting.

We also have the option to enroll hybrid devices with Intune. We can enroll users'  devices and separate work and personal data. The devices on the local Active Directory can be joined to Intune. 

Privilege identity management helps. Let's say someone is a company administrator for five to ten days. We can create a dual administrator role for that user for seven days. I can create a PIM role and assign it to the user for seven days, after which the role will be deleted automatically. 

Intune provides routine management of user devices. Once the device is not enrolled in any domain or Active Directory, the IT person must delete every user device to change anything. Intune can work on all those things. That device can be updated and marked as non-compliant. If someone is using Windows 7 or a version of Windows that has been deprecated, we can restrict Windows 7's user ability to log in to the work environment. We can control all this over the admin panel.

If we scale 10 to 50 percent, where new customers manage all their devices. After enrolling all the devices, this work can be done with only one or two people, saving the organization money.

The best part of Intune is device control. If we need to block a user from opening something in their organization's system, we can do it from Intune. If we want to restrict the movement of an organization's data to prevent users from copying the data into Outlook, WhatsApp, or their personal Gmail, we can limit that via Intune. It secures all corporate data.

If they share the data with someone outside the organization, that external person cannot see it until an analyst provides them with access or creates a policy. 

The user experience is good. Users are happy that Intune is managing their work devices. In addition to Windows devices, we can control iOS and other mobile devices. There are good features for managing mobile devices. Work data is stored in different containers, making it easier for users to find their work data. 

In the case of application deployment, we have more services like application updates and patches that can be implemented from the Intune portal. We do not need to outsource these tasks to the device user.

We are currently unable to control aspects of group policy from Teams like we can for GPO. They are still not part of Intune. Microsoft is adding this, but it's currently in preview, and few GPO features have been added to the product. 

I have worked on Intune for the last two years. 

Intune is a stable solution with a lot of capabilities. Most customers who are moving to Intune are also exploring the capabilities of the cloud. 

I rate Intune seven out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft is good, but Intune support is delayed compared to other products. If I make a support ticket on the Intune portal, I get a reply after one or two days. For Exchange or SharePoint, I get a response after an hour, but Intune takes a minimum of a day. 

Positive

One product we can compare Intune with is Jamf Pro. Intune has limitations when managing Mac devices. You can enforce fewer policies because Apple has its own hardware and software. There are lots of limitations of control. Most of my clients use Intune for Windows and Android devices, but Jamf Pro if they have Mac devices.

Deploying Intune is a little complex but not too complicated. At the time of deployment, there is much work to do to join a device to Intune. We have to create a new Windows profile and make users log into the enabled Windows profile. We need to configure all the Office applications and copy users from one to another. It takes 30 to 40 minutes on a single device. 

Intune requires some maintenance, but the customer performs the maintenance once we implement it. We support the customers with issues while they are enrolling the device.

I rate Intune five out of 10 for pricing. It's expensive. 

I rate Intune 10 out of 10. I recommend Intune to every organization that wants to secure user data and control endpoint devices. It can manage other platforms on the market. Google has device management software, but it doesn't have the same scope as Intune. 

It's cost-efficient and cheaper than the other device management and third-party applications available. Intune can control most things, especially Windows devices. Intune has the best compatibility with Microsoft Windows.

I use Microsoft Intune to manage mobile devices and enforce security policies.

The most valuable features in Microsoft Intune for me are application deployment, Defender deployment, and asset management.

There is room for improvement in integrating additional features such as Purview and SharePoint activities into Intune, which would enhance its functionality.

I have been working with Microsoft Intune for four years.

The stability of Microsoft Intune is quite good.

The solution is very scalable.

I would rate the technical support for Intune as a nine out of ten.

Positive

We previously used SCCM. We switched to Intune due to its better usability, cost-effectiveness, and alignment with our Microsoft-centric environment, as we predominantly use Windows across the domain.

The initial deployment of Microsoft Intune was complex as fine-tuning policies took time. We ran a POC for three to six months before deploying to production. Our implementation strategy involved evaluating vendors, cost comparison and prioritizing security features. We opted for Microsoft Intune for its ability to consolidate security telemetry into the Defender portal. Deployment followed a phased approach: POC, small pilot group, then rollout to production. 

The solution requires maintenance from our side. This includes change management and configuration management to prevent unauthorized changes to policies, as well as constant review of threats from mobile devices. A team of four people is involved in maintaining the solution.

We used an integrator for deployment, which was a positive experience.

Having all endpoint and security management tools in one place streamlines IT and security operations. It simplifies processes for help desk support, image deployment, and asset management. Transitioning from SCCM to Intune has made tasks like application deployment easier and more efficient.

Intune provides full endpoint visibility and IT control across devices.

Intune has significantly improved our IT operations by consolidating management tasks into one portal. This streamlined approach has led to greater efficiency and effectiveness in our operations, as we no longer need to navigate multiple portals for various tasks.

Overall, I find the user experience of Intune quite positive. It streamlines tasks such as deploying applications and managing mobile devices, which previously required multiple applications. Transitioning endpoints to Intune, including laptops and servers, has been straightforward. Creating security policies and compliance policies is also easier within Intune.

We use the tunnel feature in Intune for MAM to provide remote access to corporate resources on mobile devices. We integrate Intune with Microsoft E5 Compliance Module for DLP, which helps maintain user privacy while protecting sensitive data.

Intune is highly effective for security in hybrid work environments, especially for protecting data on both company and BYO devices. All policies, including those for MDM and BYOD, are managed through Intune, ensuring consistent enforcement. Additionally, Intune offers features like allowing BYOD devices to access corporate data while restricting downloads or uploads, enhancing security without compromising productivity.

Intune's utilization of Microsoft security signals enhances our organization's security by providing visibility into Defender, MDM, Nathan, DLP, and other aspects. While there is a separate Defender portal, Intune allows access to certain features, offering comprehensive security management within a unified platform.

We use the Endpoint Privilege Management feature in Intune to control user access, especially for system admin accounts. This helps improve security by limiting the visibility of passwords and enforcing password rotations. Additionally, role-based access is managed through Intune, enhancing security without hindering productivity.

Endpoint Privilege Management helps reduce our organization's attack surface by providing greater visibility into account usage and usability. Previously, we lacked this visibility, but now we can grant engineers precise roles and responsibilities through privileged access management. Additionally, just-in-time access limits privileges to a small window of time, minimizing the risk of prolonged access.

Intune has positively affected IT productivity in our organization. It offers easy deployment, a user-friendly portal accessible both on and off the network with the right MFA, and consolidates all features, policies, and tools under one portal. This integration has increased efficiency as we no longer need to navigate multiple portals for different tasks, such as SCCM or image deployment.

Overall, Intune has helped reduce the risk of security breaches in our organization. Reducing privileges on accounts limits the impact of potential breaches. Additionally, with real-time data provided through Intune and Defender, we have better endpoint protection, further enhancing our security posture.

Intune has helped our organization save costs by being cheaper than purchasing SCCM licenses and other licenses. We estimated it to be at least 50% cheaper than our previous budget for similar solutions.

By using Intune, we have consolidated vendors by removing SCCM and Endpoint Protection from our portfolio. Defender now serves as our primary endpoint protection solution, streamlining our vendor management. The consolidation of vendors by using Microsoft Intune has not affected our security posture negatively. It has improved effectiveness, although we removed two security vendors from our portfolio, our footprint with Microsoft increased, balancing the impact. It didn't affect our licensing costs. In fact, we saved money as the cost of Intune was lower than what we were paying for the mobile line and SCCM.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security is crucial in our journey to the cloud. Both aspects, cloud management, and security, are equally important in our strategy.

Overall, I would rate Microsoft Intune as a nine out of ten.

It serves as our EDM, enabling remote computer management. We install various applications directly for users, granting us administrator-level control over the computers.

We utilize it exclusively within the IT department to manage all hardware from a single location.

It consolidates all endpoint and security management tools into a single platform. This allows us to efficiently determine the required applications for each employee. Having Azure Active Directory integrated into the complete environment further simplifies the process. Additionally, its compatibility with Android-based devices is a significant advantage, enabling the management of both Windows PCs and Android devices from a unified platform.

It offers complete visibility and IT control across various device platforms, saving us a significant amount of time. The alternative, handling devices individually each time there's a change in employee or any other scenario, is much more time-consuming.

When it comes to the user experience of Intune, the initial setup is quite straightforward, but delving deeper into its functionalities demands additional training and familiarity. This complexity can be considered a drawback. The policies that can be configured sometimes lack clarity, and understanding the limitations for users who aren't global admins can be unclear.

We don't utilize the MAM tunnel feature for remote access to corporate resources. Instead, we rely on TeamViewer for remote support when dealing with any issues.

It significantly enhanced our organization's efficiency, particularly in terms of time savings. While I don't have the specific numbers at the moment, the impact was substantial. Especially when we operated with a small IT team, the investment in the license cost was undoubtedly worthwhile.

In terms of securing hybrid work environments and safeguarding data on company and personal devices, there's flexibility to fine-tune policies for preventing certain actions. Currently, our approach restricts employees from installing unauthorized software, acting as a deterrent to Shadow IT. However, we haven't explored the full spectrum of possibilities with policies to uncover additional security measures.

The impact of Intune on the organization's security is essentially a peace of mind for me. If there's ever a report of a stolen computer, I can swiftly lock it without much concern. The speed at which this can be done is particularly reassuring, especially in the current landscape of hybrid work where such incidents tend to occur more frequently than before.

It has significantly impacted IT productivity in our organization. Onboarding and offboarding processes have become much faster. Simply Intuning the device and managing it through the internal portal or even within the VPN network streamlines the workflow. This is especially beneficial since our company supports hybrid work, extending flexibility to the IT staff as well. Inventory management has also seen a notable improvement, with less time spent. Now, we not only have a count of devices but also know which accounts they are associated with. Compared to our previous reliance on paper and Excel, this is a whole new level of efficiency. Overall, it has been an extremely positive experience for us.

While it's challenging to directly quantify cost savings, Microsoft Intune has certainly resulted in significant time savings for our organization. As we didn't have a comparable system before, it wasn't a matter of moving from something else to Intune. However, the investment has proven valuable, especially evident in the offboarding process. Previously taking fifteen to twenty minutes per device, it has now been streamlined to just a few clicks, around five minutes. This efficiency has been particularly impressive and has undoubtedly saved us considerable time.

Its most valuable aspect is the seamless onboarding and offboarding of new users, whether it's for a computer or a mobile device. This process is remarkably straightforward. Additionally, while not explicitly security features, there are safeguards in place that enhance safety. For instance, if a user reports their computer as stolen, you can promptly lock it and erase all data remotely. This means you can secure the hardware even without physical possession of the device. It goes beyond safeguarding just the Microsoft 365 user account; it extends protection to the hardware itself. It also served as a means to efficiently manage our inventory. Through Intune, I could easily access a comprehensive list of all the computers, tablets, and company-owned devices. This streamlined the process of accounting for new devices in our stock, eliminating the need for separate tracking outside of the Intune platform.

The capabilities of the Intune suite are seamlessly integrated with Microsoft 365 and Microsoft Security. This integration, especially with Microsoft 365, is crucial for us as it enables clear visibility into the association of devices with specific employees. Additionally, it facilitates tracking the usage of applications by different groups. The integration with Azure Active Directory further enhances the importance of the overall integration for our operations.

It would be beneficial to have a more straightforward understanding of Intune's capabilities, presented in a simplified manner. This way, one wouldn't need to be an Intune specialist or spend hours trying to grasp the intricacies of policies and functionalities. While I've used Intune extensively and have practical experience, I've found that to explore its full potential, significant time is needed for both understanding capabilities and seeking out relevant training. The current understanding of what actions or functionalities are available for configuration is not as clear as it could be. Enhancing the clarity of these policies, whether in terms of functionality or features, would be beneficial for users managing Intune.

I have been working with it for three years.

It provides excellent stability. We didn't face any downtime. I would rate it ten out of ten.

Scalability has been excellent. We began with a pilot involving just a few devices and swiftly expanded to over two hundred without experiencing any degradation in performance or functionality. I would rate it ten out of ten.

In terms of tech support or customer support, our experience has been somewhat mixed. Since we work with partners rather than directly with Microsoft Intune, and these partners are internal and cross-charged within the same company, there have been instances where support was not entirely satisfactory. This could be attributed to a lack of in-depth understanding on their part. However, it's important to note that they are not directly affiliated with Microsoft, and the level of support might vary accordingly.

The initial setup was complex.

Our setup is hybrid, specifically with Active Directory. The initial configuration necessitated an on-premises presence. However, once the setup is complete, the entire system operates in the cloud, making it predominantly cloud-based after the initial on-premises setup. I was involved in certain aspects of the deployment process. The complexity arose not necessarily from the intricacies of the tasks themselves but from the coordination required. As we lacked global admin privileges, there was a need for extensive collaboration between our team, global admins, and the Intune team at Microsoft.

In terms of maintenance, once it's up and running, there's not much ongoing effort required. It's essentially a set-and-forget situation. Occasionally, we might need to handle reports and views, especially when there's a new release. In such cases, there might be minor adjustments, like making something visible or invisible, but overall, the maintenance workload is minimal.

Regarding the pricing, my experience was with a nonprofit, where we enjoyed a substantial discount. While I can't provide insights from a business perspective, it's worth noting that the pricing may differ significantly, and the discount we received might not be reflective of standard business rates.

It's advisable to start with a straightforward approach, avoiding unnecessary complexity initially. However, it's equally important to have a well-thought-out plan for maximizing the platform's capabilities. Assign someone the responsibility of owning and creating a roadmap for ongoing improvements and enhancements. The idea is not just to go live and consider the implementation complete; rather, to plan for continuous refinement and utilization of additional features over time. Overall, I would rate it eight out of ten.

One prominent use case for Microsoft Intune revolves around the Active Directory, particularly focusing on user and device management, as well as mobile device enrollment. The primary objective in this scenario is to establish effective governance. This involves tasks such as pushing passwords and implementing policies seamlessly.

The most significant benefit lies in the ability to seamlessly handle personal devices, such as iPads, ensuring automatic compliance with comprehensive policies. The convenience of having robust support makes it easy for staff to manage device configurations independently, eliminating the need for external intervention.

It consolidates all endpoint and security management tools in a single location, significantly enhancing the employee experience. This is especially beneficial for executives or high-profile individuals who frequently change devices. The process is simplified – whether configuring a new iPad or downloading required applications, it's all streamlined. Executives and end-users can manage device enrollment independently without relying on support staff for tasks like setting up Outlook or other tools. The system allows for immediate enrollment and device tracking.

It offers comprehensive endpoint visibility and IT control across various device platforms. This proves highly beneficial for IT operation teams, providing details on the number of devices, their compliance status, and overall device status, including network access. The dedicated dashboard is a valuable tool, allowing users to proceed with applications and configure settings. Additionally, it assists in managing devices that may not have updated configurations promptly. For instance, in the case of a new iOS release, users receive reminders to update their devices, ensuring compliance with company policies and continued access to enterprise data.

Our experience with Intune in terms of user satisfaction is outstanding. If we were to quantify it on a scale from one to ten, I would confidently rate it around nine.

Intune plays a crucial role in securing hybrid work environments and safeguarding company data on both company-owned and BYOD devices. On a scale from one to ten, I would rate its effectiveness a nine.

The influence of Intune on our organization's security is substantial. Its impact is significant because I no longer need to be concerned about compliance or the enforcement of policies. With a single dashboard, I can efficiently handle all aspects related to compliance and security.

It has impacted IT productivity in our organization, and I would rate it around seven on a scale of one to ten. The flexibility of using Intune on multiple devices, including up to three or four, has been particularly beneficial. Whether I'm traveling or working remotely, I don't need to carry my laptop everywhere. I can efficiently manage emails and other tasks on my iPad, and if necessary, respond to emails, take calls, or update documents. Additionally, using my iPad for note-taking with OneNote is seamless – all notes captured on my iPad are automatically synchronized with my laptop. These features prove highly useful and convenient in various scenarios.

It has assisted our organization in cost savings, approximately ranging from twenty-five to thirty percent.

The system as a whole is immensely valuable, proving to be highly helpful and practical.

There has been a noticeable increase in productivity for both my organization and clients. The primary factor contributing to this enhancement is the user-friendly nature of the platform, coupled with effective technical support.

An area for improvement is the absence of seamless integration, particularly with external dashboards. Currently, to obtain an updated overview of devices not in compliance, we need to download the data, restricting visibility across other platforms like Power BI or third-party dashboards. This presents a challenge as we have to manually pull and manage the data, highlighting the need for enhanced integration with dashboard solutions.

I have been using it for three years.

I would rate its stability capabilities nine out of ten.

Its scalability is highly commendable, and I would give it a rating of nine out of ten.

The technical support is quite effective, and I would rate it at around nine out of ten.

Positive

The initial setup was quite straightforward.

It is deployed across various locations and departments.

Maintenance primarily involves administrative staff occasionally creating reports or extracting specific data. Apart from these tasks, there doesn't seem to be much ongoing maintenance required.

We have seen a return on investment by using it.

The cost is somewhat on the higher side, particularly when considering certain price points, especially in markets like India. It takes time for people to recognize and appreciate the features offered. Convincing customers to adopt this solution can be challenging initially, but as they explore its capabilities over time, they acknowledge the value of the investment. If the pricing were more competitive, it would be easier for me to recommend it to customers as their preferred choice over other endpoint management solutions.

The integration of Intune Suite capabilities with Microsoft 365 and Microsoft Security is of utmost importance to us. This is the primary reason why I encourage both my customers and the IT department to leverage it. The combined benefits of Intune with Microsoft 365 are substantial.

I encourage my users to embrace new ways of working and explore how tools like Intune can enhance productivity. Instead of relying on traditional methods and seeking IT staff for assistance, it's essential to leverage technology for improved efficiency. Overall, I would rate it eight out of ten.