Microsoft Intune Reviews

We use Intune as the MDM platform, and we used to deploy some products connected to Intune. 

Intune has improved productivity somewhat by connecting the AD with Microsoft Defender and the MDM because we can identify the Internet server. That's the main application or port over which we can manage our infrastructure. It streamlines device management. 

I like how Intune deploys the policies and makes them customizable. You can deploy it through Intune and forget about it. 

You can connect Defender for Endpoint to Intune and assign the client to start porting detections and alerts, creating a little security operations center. The integration is easy but tricky for someone who doesn't know how to use it. Once you learn to use it, it's a powerful tool that can condense most of your administrative tasks into one place

Integration with Microsoft 365 and security is critical if you have a Microsoft infrastructure. You want all the tools to be connected and exchanging data so that when you make a change or deploy something, you can make an informed decision and log the errors. You can avoid having different types of configurations and strengthen your policies. 

We've been using what they call conditional access in which we set up policies and apply them based on certain conditions and attributes. For example, you can apply some policies to company-owned devices and a different set of policies to devices for personal use. 

Sometimes, it takes time to synchronize the policies between the portal and the devices, you don't have a way to estimate how long it will take to deploy. You have some kind of gray area, where it can deploy in 30 minutes or three days. 

I have two years of experience with Intune

I rate Microsoft support nine out of 10. When we raise a ticket, they respond with a solution or guidance on how to fix the problem within 24 hours. 

Positive

We used VMware Workspace ONE and one other MDM. Based on my experience, I think Intune is the most robust because of how easily it can integrate with the other Microsoft tools. You won't need to deal with the process of connecting the Active Directory to Intune. Once you have your account with a subscription and a license, it will connect automatically, and you won't have a big problem with it. 

Microsoft offers a license that lets you access all the tools. Purchasing that license will probably be the most cost-effective if you plan to implement a Microsoft-oriented infrastructure. It's cheaper than purchasing all the products separately. 

I rate Microsoft Intune eight out of 10. 

We use Intune for Windows computers, and we also have iOS phones.

Intune simplifies mobile application management. It is very good. Its console is perfect. I am satisfied with it.

Intune works well with Microsoft Defender. Intune brings all of our endpoint and security management tools into one place. It is very good. We can manage the firewall and other things. It is very good for the security of computers.

Intune provides full endpoint visibility and IT control across device platforms, but we need to have RBAC for the IT. We have to assign appropriate roles and manage the scope based on, for example, the country and division.

We can use Intune for computers on the cloud, and we can also use it for a hybrid setup with on-premises and cloud computers. We can use Microsoft Endpoint Configuration Manager to manage all the hybrid devices.

We have a lot of reports for data. There are reports related to Windows where we can see whether all the computers have required updates or not. We can also do an inventory of all applications on the computers. We can also do application installation across the company.

Intune works with Log Analytics for Azure. It is a tool for monitoring and analyzing log data.

We can configure Intune for compliance settings. It provides a method to know if a computer is compliant or not. We can use conditional access to allow or block connections. For example, we can set a condition where if a computer is not hybrid, we do not allow the connection to Azure or we block the Office access for that computer. We can configure a compliance setting to know if a computer is compliant or not. We can also block access if a computer, for example, is not encrypted. There are many settings that we can configure, and we can generate reports to see the compliance.

For application deployment, there are a lot of methods that we can use. We can do it from the company portal from Microsoft. It is very easy for IT to configure. We can package, for example, an SAP application in three seconds. We have the possibility to use the automatic detection rules and package our internal application. We have a lot of possibilities. We can use the applications from the store, or we can package our internal applications. I find it very rich.

It is easy to use Intune. We do not have to work with agents. We do not have issues related to agents. With SCCM, we had to use an agent, and there were certain requirements. For example, we had to use a local administrator account, whereas, with Intune, we do not need to do all this. It is all cloud. It is very simple and easy to use.

It is very easy to configure deployment policies. For example, we can deploy something just for Windows 11 and not for Windows 10. It is very rich when it comes to deployment and configuration profiles. Intune is now much better than before.

Configuration profiles, remediation, scripts, and auto-pilot features are very good.

The user experience of Intune is very good for me. The user interface and navigation are very simple and clear. It is very easy to use for managing Windows, iOS, and other environments. People at IT level one and level two will find its console very simple to use. It is very useful.

There can be more logs. I do not have any other requirements. I am very satisfied with it.

I have been using Intune for six years.

It is stable.

It is very scalable. I would rate it a ten out of ten for scalability. 

Our clients have a lot of users. We have 16 or 17 people working with this solution.

I opened a lot of tickets. Their team is responsive, and they respond quickly to help users. I would rate them a ten out of ten.

Positive

For remote access, we are not using Intune, but in my previous company, we used Intune for that. It worked very well. We did not have any problems with it. For managing remote devices, we are using Bomgar.

We have a lot of departments. We are using Intune only for the production computers. For others, we use SCCM. We have a hybrid environment.

It is a cloud solution. Its deployment took about 40 minutes.

It does require maintenance.

It is not expensive.

We trust Microsoft. They are a big and good company. Microsoft is working very hard on security. We do not have any problems with Microsoft.

I would recommend Intune for all companies. It is a very centralized and good solution.

I would rate Intune a ten out of ten.

We typically use Intune when we have workstations that we want to manage, but we do not want to connect to our legacy Active Directory. We use a combination of Intune and Azure Active Directory.

Intune is able to put together compliance and safety checks for our endpoint devices, but it is one of the protection or security solutions. We need to use other solutions as well to completely manage the security, such as Microsoft Defender or a third-party endpoint antivirus solution. Intune definitely helps with protection, but you need to make sure that you have your endpoint security software installed. Intune provides good visibility into which devices comply with your company standards and which ones do not.

Intune more or less provides full endpoint visibility and IT control across device platforms. It simplifies my work because it is easy to view which devices are compliant and which ones are not. All you have to do is establish or configure your company's device policies, and then from there, you make sure that you assign those policies to users. Intune is able to gather information about who is compliant and who is not. It saves time on security management and administration. The administrator does not have to go through all of the company devices deployed throughout the organization. It definitely saves time.

Users have a better experience because they do not have to do anything on their end. Everything is pretty much handled at the back. When they sign in to their computers, Intune kicks in, and they do not have to do anything for software deployment. It just takes a few minutes for the software on their devices to download. All the software is deployed by Intune based on their profile. It takes a few minutes. The users are happy with it because they are able to proceed to work without having to call the IT help desk to get assistance. For security and management, such as updating machines, they have control over when they can do the restart. They appreciate that their machine is being updated and looked after by the IT group. They see that policies are made personal, and they are able to seamlessly download the updates on computers.

Users' access to the company data through personal devices became more secure. It helps to segregate data from their personal devices or applications.

Intune has improved productivity. It has probably reduced the risk of security breaches by 20%. It cannot completely mitigate possible breaches in the company, but it improves the security posture for the devices being used by the users. A significant percentage of breaches rely on the users and user behavior. 

It helps us save costs, but I do not have any data. Security breaches cost a lot, and if it is able to mitigate a security breach, we have saved the cost of that breach.

The policy and compliance monitoring of devices and the software deployment are most valuable.

We have a bird's eye view of what is happening on the endpoint.

They should improve its compatibility with other operating systems such as iOS and Linux. It supports Linux but they still need to work on the iOS part.

I have been using Intune since 2019.

I have not worked with any other solution recently. 

It is easy.

We have seen an ROI.

It is reasonable for the features it has.

If you are just running Windows, it is very good. It is tightly integrated with Windows. Microsoft gives Windows users quite an experience. If you decide to deploy it for Windows, it allows you to take away the old Active Directory, and just rely on Azure AD. All of the policies and other configurable items are in there to manage security on your local machines. Of course, there are some caveats between the two, but security-wise and endpoint management-wise, it takes care of Windows from authentication and onboarding to software deployment and updates. I have very good experience using Intune with my Windows machines, but for other OS, it still needs to be improved.

I would rate Intune an eight out of ten. It lacks features for managing operating systems other than Windows.

One plan that we are currently testing for the near future is related to our BYOD fleet. Instead of opting for MDM, we have decided to use Microsoft Intune to manage access to our company through BYOD. Moreover, we plan to use Microsoft Intune to perform autopilot PC deployments in the near future.

We had two distinct issues we needed to resolve with Microsoft Intune for two different use cases. Firstly, for the BYOD scenario, we needed Intune to ensure a sufficient level of security while enabling users to bring their personal mobile devices. Secondly, we aimed to automate PC deployment, even when users are not connected to the network, due to the COVID pandemic and the increase in remote work. Currently, to reimage a machine, users must be on the network. Our goal is to enable them to reimage their machines from home, using autopilot.

We found that Microsoft Intune met our expectations for the BYOD section, and we are optimistic about its potential for PC deployment through autopilot. The main advantage is that Intune performs its intended functions effectively.

As a Microsoft 365 user, we found Microsoft Intune to be a practical choice since it was already included in the bundle. The solution was effective, so we didn't need to look for other options or invest in additional tools. Intune performed the necessary tasks efficiently, making our decision straightforward.

The UI is not user-friendly and has room for improvement.

I have been using the solution for four years.

We have not had a single outage in the last four years. Microsoft Intune is extremely stable.

Microsoft Intune is auto-scalable in the cloud.

The initial setup was straightforward. The deployment required two people from the third party and two of our architects, one for security and one for the network.

We used a third party and our architect for implementation.

We have seen a return on investment because we were able to quickly deploy and start using Intune.

Intune is included in the Microsoft 365 licensing package that we have.

We assessed VMware and found its MDM to be promising. However, since we were already utilizing other Microsoft solutions, and Intune was capable of meeting our requirements, we did not require further evaluation of additional solutions.

I give the solution an eight out of ten.

We have around 10,000 people in over 20 different countries whose devices are managed by Microsoft Intune.

There is no maintenance required for the solution.

I highly recommend Microsoft Intune to others.

I primarily use Intune for troubleshooting user issues. For example, if a user raises a ticket stating that Teams is not working and they cannot connect to the corporate network, I check if they are in the appropriate group for certifications like Wi-Fi and PKI. If not, I add them to solve the issue. I am also involved in pushing apps like safety apps. My current project involves ensuring compliance with policies, BYOD, CYOD, Apple Business Manager, APNs, and Apple Push Notification certificates. Enrollment is another task I handle.

Having everything in one place is useful for our IT and security operations. We can remotely do anything in Intune. It protects data on managed devices. It is very effective.

Intune allows us to deploy managed apps directly from the Microsoft store by adding an additional layer of security, automatically reviewing apps before they are installed on end-user devices. For example, if a user needs an application and it is mandatory for them, it is silently and mandatorily downloaded from the company portal.

It is a cloud-based service. It is easy to use and offers privacy.

Intune helps the organization manage access to its internal apps, data, and resources. 

I am pretty new to this solution. At this time, I do not have any areas for improvement. I have heard about some downtime, but I am not in the local IT team.

I have one and a half months of experience in troubleshooting. Currently, I have two years of experience with Intune. I handle iOS and iPad tasks, including applications and small works.

I have not faced any issues. I have heard about downtime, but our local IT team manages downtime issues.

It is scalable and capable of growing with the business.

Microsoft has a portal with good resources. I have not interacted with their support.

Neutral

I have not used any other solution previously.

Its pricing seems reasonable.

I would rate Intune a nine out of ten.

We use Intune for endpoint management to ensure they are updated with the latest patches. We also leverage Intune to oversee our applications and keep them current. Lastly, we employ Intune's remote tools for endpoint administration.

We implemented Intune to ensure our endpoints were updated.

Intune brings all our endpoints and security management tools into one place.

Intune is integrated with Defender to manage our security policies.

The user experience is good. Intune is easy to use and deploy.

Intune has significantly improved our IT productivity by automating the updates for Windows and third-party applications. This automation reduces costs and improves efficiency, allowing us to adopt a set-and-forget approach to software maintenance.

The automatic patching is the most valuable feature of Intune.

Intune needs to incorporate more tools to reduce the number of third-party applications we rely on. For instance, I currently use PatchMyPC to package new applications for Intune and then deploy them to endpoints. If Intune offered this functionality natively, we wouldn't need to rely so heavily on third-party applications.

I have been using Microsoft Intune for almost four years.

The technical support by Microsoft is terrible. 

Negative

The initial deployment was complex, requiring an expert for setup. It took one week to complete and involved one system administrator and me.

The implementation was completed in-house.

We have seen a return on investment from Intune through time saved, which correlates to around $20,000 per year.

I would rate Microsoft Intune seven out of ten. Intune is a valuable tool, but following the screen prompts can sometimes be challenging.

Two of us are responsible for the maintenance of Intune.

I am an Operations and Infrastructure manager. I do not use it directly. My team is the implementer, and I oversee it. I know the product, and I know what I can do and what it can do. I just do not push the buttons.

We are still launching it. We have about 85% of our PCs in Intune. We have only got two or three conditional access policies and compliance policies in place.

We are using it for endpoint management for basically getting control. Our next step will be to launch Autopilot. We will use Intune Autopilot and then also security policy management and group policy management. We will also use it for updates and patching compliance.

At this stage, we have not fully utilized its capability for securing hybrid work and protecting data on company and BYO devices. We are still growing. We have been managing our security manually through the security portal and through Azure Security. Intune can provide an additional level of management capability by bringing all of the external services into one management console. It is going to make managing our security posture a little bit easier.

Intune has not yet affected IT productivity in our organization, but it will. Once we start bringing on the remote support capabilities and we are fully compliant in terms of touch management and minimum touch levels, it is going to ease up a lot more. There will be more time and resources for us to look at the other features and capabilities.

Intune has helped to reduce the risk of security breaches in our organization, and that is purely due to its patch management at this stage.

Intune has saved us costs. As it is bundled with our enterprise agreement or enterprise subscription, we have not had to look at additional products. I am still hoping to convince our business that maybe Absolute is not needed if we can manage things with Intune. As we are still relatively young and immature in that area, we might need to look at alternate products to bolt onto it, so we have not yet had any direct savings. We have possibly had indirect savings.

Based on the bit of work or research that I have done, it seems to fit our needs. When you are looking at some of its tracking and management capabilities versus Absolute, it just does not go that one step further where Absolute would go with the recovery service for Precision laptops. My users or asset management are asking for the recovery capability on laptops. If they were not asking for that, I would just settle for Intune and provide the lost location and submit those details to enforcement, but they want the recovery service.

Intune has not helped us consolidate vendors because we are pretty much a single vendor. We have only got the Microsoft ecosystem. We are busy decommissioning our on-prem System Center setup, and we are moving to Intune on the cloud. It is integrated fully with AAD. We do not want to run infrastructure in South Africa. Because of the load shedding and electricity problems that we have here, we would rather use the cloud.

In the context of our journey to the cloud, it is important for us that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. It would not have been attractive if it was not.

It is quite easy to manage. From what I have seen, it is very easy to check through. It is very basic. I do not need to be a rocket scientist to manage it. It takes a little bit of experience to set it up if you have never done it before. From a manageability point of view and ease of use, I would give it an eight out of ten rating.

It is quite policy-enabled, so you can build pretty much any policy to manage remote endpoints.

There could be more wizard-driven policy development or creation. Some of the policies can get quite complex. If they have a wizard that assists the administrators in creating the policy, that will be a great job.

Microsoft South Africa should improve their support for Intune in terms of turnaround time.

We started using it in about October 2022. It has been about a year and four months.

Microsoft South Africa could certainly improve on their support of it in terms of the implementation experience and completion of the project. This project has been going on for a year and four months already, but it should have been completed in six months. There are just too many clients looking at it, and there are not enough Microsoft support engineers for Intune.

We have one assigned Microsoft resource. We have got a unified support contract. They have only one support person to deal with multiple clients within our area, and if he is not available, we just wait.

If we had confident and good support from Microsoft, we probably could have cut the project time by 50%. We probably would already be finished and have 100% PCs fully compliant with Intune. 

I would rate their support a four out of ten.

Neutral

We are busy migrating from Microsoft System Center Configuration Manager and Endpoint Manager because of the infrastructure requirements. We want to be on the cloud.

We are a key government department that looks after and advises 13 other departments. They are rolling up Intune to those 13 departments.

It comes as a bundle, so you do not really know what the prices are. Microsoft does not break it down to the user cost for us. It is just bundled with our E5 license.

We did not evaluate other solutions because Intune was a part of our subscription.

My advice would be to make certain that you have the relevant in-house capability so that if you are working with Microsoft, you are able to cross-skill with Microsoft. If you do not have that and you are going to fully rely on Microsoft to assist you with deploying it, then make certain that you go into your project with your eyes wide open in terms of timing. The product is good. The scoping of the project is good, but the turnaround time is an issue. There is a lot of improvement required at Microsoft's end. The easier they make the policy creation within Intune with the wizard-driven process, the easier it will be for the internal administrators to implement it. If you remove your reliance on Microsoft, you can run a good product.

We do not use the feature called Tunnel for MAM to provide remote access to corporate resources on mobile devices. We do use Teams as a support or email support tool. We have a very small department, so that is sufficient. We would not migrate it to Intune.

We are not using Intune's Endpoint Privilege Management feature. At this stage, we are using Azure privileged management as the primary means of control. If it makes sense, we will get to it. It is not the first one on the list of things that we have got to do at the moment. We are on a zero-trust journey. If it is going to be one of the tick boxes, we will get to that.

Based on what I have seen of the product and its capabilities, I would rate Intune a seven out of ten. There are some issues that need to be dealt with, especially with the integration with Microsoft Defender Endpoint. Most definitely, the level of support and Microsoft resource capability is where I would mark it down.

Microsoft Intune serves as a crucial tool to safeguard against unauthorized access and protect sensitive data. By implementing Intune, we can control and monitor device usage, acting as a gateway to enterprise services. Access to corporate resources, including email and sensitive information, is restricted to devices enrolled in Intune. It is a comprehensive security solution that not only controls access to enterprise resources but also tracks and prevents unauthorized access, ensuring the protection of sensitive data and preventing potential data loss scenarios.

It acts as a central integration point for endpoint and security management tools, simplifying the connection process. However, considerations such as privacy laws may impact the integration of certain devices, like partner devices, emphasizing the flexibility of Intune in adapting to various organizational needs. Given that Microsoft Intune operates on a policy-driven model, connecting all staff devices becomes a matter of duty. This is because the platform excels in efficiently managing endpoints by enforcing policies that govern device security, access, and compliance.

When it comes to the user experience, integrating and onboarding with Microsoft Intune is a seamless process for the majority of devices, such as those from well-known brands like Android and iOS, where compatibility stands at a high success rate of around ninety-four percent. However, it's important to acknowledge that there might be challenges with certain lesser-known or non-mainstream brands, where compatibility may not reach a hundred percent.

The implementation of Intune hasn't significantly impacted IT productivity within our organization. Instead, its primary function is to enhance security for remote connections.

Intune has played a vital role in minimizing the risk of security breaches. Its effectiveness lies in restricting unauthorized access, particularly in scenarios such as conferences where secure connectivity is crucial. This reinforces the overall security posture, especially concerning mobile devices.

Implementing this product has resulted in cost savings for our organization. In the event of data loss, the expenses associated with investigations and remediation are significantly reduced. The product adds value by mitigating the financial impacts related to security incidents.

Intune plays a crucial role in ensuring the security of hybrid work environments and safeguarding data on both company-owned and BYO devices. While it functions seamlessly for mainstream devices, including Dimensional and others, there might be some challenges with certain brands of personal devices. However, overall, Intune provides a comprehensive platform where both corporate and partner devices can coexist securely.

The utilization of Microsoft security signals, coupled with the impact of Intune on our organization's security, is a pivotal aspect of our strategy. While there may be some limitations in the user interface when dealing with BYOD scenarios, the synergy with Microsoft Defender solutions is noteworthy. The seamless integration within the Microsoft suite ensures a cohesive security approach. Additionally, the incorporation of phishing information and tracking numbers further enhances our security posture, especially when dealing with partner devices atop the Microsoft Defender platform.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security for both cloud and on-premises managed devices is highly valuable. The suitability depends on the specific requirements and the number of users in a given scenario.

There is room for improvement, particularly in terms of compatibility, extending beyond the well-known major brands.

I have been working with it for approximately a year.

It provides good stability.

We never faced any issue with scalability.

Thus far, we have not encountered any issues with the support provided, and their responsiveness has been satisfactory.

The deployment process is straightforward; we simply configure the necessary settings within the server, initiate the enrollment, and push it out. This streamlined approach facilitates staff onboarding efficiently.

When it comes to licensing, the decision to include Intune may vary based on the volume of users and the specific modules needed.

Overall, I would rate it eight out of ten.