Microsoft Intune Reviews

We use the solution for BYOD, MDM, and to access Microsoft applications like Teams. Microsoft Intune helps us access Microsoft applications on the road and mobile.

The solution’s most valuable feature is its ease of use.

I have been using Microsoft Intune for about three years.

Microsoft Intune is a very scalable solution. Around 4,000 users use the solution in our organization.

A third-party vendor helped us set up the solution in six months.

We have a large amount of our population using the applications on their phones. Microsoft Intune definitely helps with productivity and efficiency. The solution brings value to the money we pay for it.

Microsoft Intune has been incorporated into our Microsoft E5 licenses. The pricing is very good, as it is not an additional cost to what we already need for our organization as a whole.

Microsoft Intune brings all our endpoint and security management tools into one place for mobile. We work closely with security, which mostly implements the overall rules on what users should be able to do, how the new data is encrypted, and how secure data can't leave the Intune environment. It's easy to go into Intune and apply all of those policies and have them work for you.

I would assess Microsoft Intune very highly for securing hybrid work and protecting company data via BYOD devices. I think it's very secure. Everyone in IT has to be available during off hours to make sure that everyone can see what's going on if there's an emergency.

Since Microsoft Intune has been incorporated into our Microsoft E5 licenses, our organization has saved costs compared to using other EMM providers. Microsoft Intune is a comprehensive solution that has a lot of features and manages all your endpoints.

Overall, I rate the solution a nine out of ten.

We support other companies in managing their devices. Right now, we have multiple projects wherein we are only utilizing the Windows aspect of Intune, but for some of the other organizations, we are utilizing Android and iOS features. For most of the projects that I am working on, the use case is autopilot enrollment, and for iOS, it is through ABM.

One of the most common requests that we get is that most of the users are still on-prem. They need to be moved to the cloud, but they do not want to lose the data on-prem. The basic request that we get is to get co-management enabled for on-prem and the cloud for managing devices. The basic request from every organization I have worked with so far is to get a hybrid or the same management scenario. This is what we utilize Intune for.

All the device information is available in one place. We can see which profiles are being used and other things. If I want to get any information about a device, I just have to select it, and it shows me everything that I want about the device.

As an admin, we have different privileges to a user. In terms of user experience, it is quite easy. It is easy to understand. They have been making a lot of changes to the layout and the categorization. It is much easier and user-friendly. Overall, it has been a pleasant experience to use the portal. Everything is categorized in such a manner that it is easy to understand and navigate.

Advanced endpoint analytics are certainly used in almost all the projects that I have worked on because the security baseline is a very crucial part of configuring all those things in one single place. Apart from that, other profiles are also configured.

It is quite handy. For the general device configuration, we might have to create multiple profiles for different things. When it comes to the security baseline, multiple components are configured into a single policy. That makes configurations easier to handle and easier to change in the future if required. One thing about endpoint analysis that can be an issue is that there is an imprinting policy. Sometimes for some of the components, even if I change the policy, it would not make the change in the device. The policy gets tattooed on the device.

The Cloud PKI helps manage the complexity of certificate infrastructure. It makes work much simpler. The configuration that needs to be done is much simpler.

It makes application deployment and management easy on a device. It is easy to get them packaged and pushed out. Applications are available in the first sync itself. It is pretty easy to do that with Intune.

In terms of integration, so far, we have set up co-management features with SAPM, and it has been going well. The settings are pretty easily understandable. We can do them easily. The setup is smooth. In case of any issues, the logs and troubleshooting are very simplified. It gives pretty accurate information. The APM portal can also be very easily configured. The steps about what to do next are available in the Intune portal itself. It works well with other consoles.

I would assess Intune highly for securing hybrid work and protecting data on company and BYO devices. I would rate it a nine out of ten for this.

As an admin, Intune has made life much easier. Any information about a device is available in one console. We do not have to navigate to multiple portals to see what is going on. The console gives us the answer. Intune gives us information about the error and the possible reason for it to happen. We can see the device status and whether it is syncing. Everything is available in one single source. As an admin, it makes my life easier.

Intune has made the transition from on-prem to the cloud a smoother and simpler experience. We do not even have to make a complete transition. If we want to set up co-management where both of them are in the picture, Intune does a great job in helping out the admins to manage those devices.

In the recent upgrade, I feel the portal has become much more user-friendly. The navigation, the keys, and the settings are easy to find. It is easy to understand. As compared to the previous versions or SCCM, it is very handy. Apart from that, we have many configuration profiles. They have been introduced over the course of time. We had put in the request for them. Some aspects that were not available previously are available now. It keeps improving over time, which is beneficial.

Reporting needs to be better. Sometimes, it is way too slow, and it is not even accurate. Reporting is one aspect about which we have received a lot of complaints. As an admin, I cannot rely on its reporting.

Another feature that can be improved is audit logs. There should be more details in the audit logs.

We have been using it for almost four years.

I would rate it an eight out of ten for stability. I do not believe that any product is completely stable given the fact there is always something new that comes into the market, so it has to go through changes. You never know what those changes might be and whether a release is compatible with certain devices, etc.

We have more than 100 users. Our clients are large enterprises.

We have had a mixed experience. Sometimes we get an engineer who is extremely aware of what is going on and is very quick with the resolution. We get an answer quickly, and the ticket gets closed quickly. However, sometimes we get an engineer who prolongs the case to an unnecessary time frame. We might get an email in six to seven days. We need to keep chasing them about the update. Their support can be improved.

Neutral

I have worked with SCCM which is a Microsoft product. I have not worked on any other similar solution.

We have a combination of cloud and on-prem. We do have GPOs in the picture. We also have cloud users. We have Windows 365 devices. It is a combination of both so far.

Its deployment is pretty straightforward. They provide the details or info in the portal itself, so it is not very difficult. You do not have to go searching for the information.

The initial setup does not take time. Setting up an account for the organization rarely takes five minutes or so, but the time taken for doing the setup for the entire organization, which includes setting up policies and other things, would vary. It depends on the number of activities that need to be performed.

It does not require much maintenance from our side. Over time, they provide new releases that fix the issues that have been stated in our health control section.

Based on the features that it gives, it is cost-efficient. It is not necessarily on the expensive side of the scale. It provides a hefty number of features that any organization would want. It is in a good price range.

Intune does not necessarily bring all of the endpoint and security management tools into one place because there is a role of connectors in Intune that need to be enabled in order to get other accesses. Things like Defender, Compliance, and Purview need to be managed in the device in itself. I do not necessarily see it bringing everything into the same picture, but it does act like a mediator with those connector options.

With the projects in hand, we are mainly focusing on applications and Windows. I have not had an opportunity to explore it much when it comes to iOS and Linux. We are not using the Enterprise Application Management features of Intune Suite. We have done the configuration via Azure.

We are testing out Microsoft Copilot in Intune. We have not had many opportunities to use it.

To a colleague at another company who wants to know what I think about Microsoft Intune Suite, I would say to definitely go for it. I have seen multiple portals, and Intune goes way far. In terms of features and interface, Intune is much superior to any other console that I have seen so far. It is easy. It has many configurations. It is easily understandable. Everything is good about it, and it is growing with time. Within a span of a few months or weeks, you might see a new update, a new configuration profile, or a new system that could be managed. Some kind of new feature is always coming up.

I would recommend Intune to others. If anyone comes to me with any questions or concerns, the first thing I ask is how they are managing their devices. If they are using anything apart from Intune, my suggestion is to use Intune.

Overall, I would rate Intune a nine out of ten.

We control the endpoints and push the software. We also manage the patch schedule, quality updates, and feature updates. We use pretty much everything that is offered within Intune.

Our operations are much simplified. Traditionally, IT support has to manually install a lot of software. For example, Adobe, Google Talk, Google Hangouts, or any other solution has to be installed manually. With Intune, we can automate when somebody is joining. When a laptop joins the company domain, it is much easier to install different applications.

Intune brings all of our endpoint and security management tools into one place. It is always nice when you have a centralized place to look at all the devices. It helps the IT administrators to have a broader overview. It helps if they want to have a quick look at the endpoints or any software that did not install correctly. It has been great for the IT administrators. I log in pretty much every day to take a look at any failures, any out-of-compliance devices, etc.

Intune has been beneficial to me. I have been using it daily. I can see everything through one dashboard. I do not have to jump in and out of different places. 

Intune has definitely saved us costs. We do not have to go and get another software. We are saving quite a lot there, maybe 30,000 to 40,000 annually.

In terms of user experience, the good thing is that users do not feel anything. The users do not have to experience a reboot when an application gets installed. Traditionally, they have to restart their laptop or they experience slowness. All these issues are gone. It is all done in the background. The whole idea is that the user does not need to know what is going on at the back. They just need to use the application. When it gets installed, they will get a notification saying that the app has been installed by their admin. They can then just open the app and use it. That is it.

The ability to push applications on devices is valuable. You do not have to manually install applications one by one. If you like to use ten different applications, you do not have to manually go and download them one by one. Intune can compile a package for you, and then you can just push them from the admin center.

I would like to see easier pushdowns. Currently, we have to package our own software and then push it. Intune can make that way easier and integrate applications, such as Zoom and Adobe Acrobat, that are used by a lot of enterprise or corporate organizations. If they can integrate all the applications in their Intune system and allow all the IT admin to see any vulnerability upgrades or any feature upgrades required, that would be great. Currently, we do not have this kind of information proactively showing up in the admin dashboard.

The UI is very difficult to navigate around. You have to click multiple times. For example, you have to click four or five times to get to the BitLocker key. If something is missing or something is not installed properly, you get the same error every time. Behind the error message, there is a lot of meaning to it. The user interface and the way Intune shows the errors for troubleshooting do not make it very useful for me. We can only get a glimpse of the error, but you have to figure out the rest of the things on your own. You have to go to Google, or you have to go to GitHub or another forum to find any related information.

I have been working with Microsoft Intune since I joined this company. I have been with the company for two years, and my company has been using it longer than that.

I would rate it a 6 out of 10 for stability.

I would rate it a 6 out of 10 for scalability.

Microsoft support does not know a lot of things. There was some issue with the software integration or software deployment. If you ever open a case with them, I feel like they do not really know a lot of things. If you open 5 cases, they are able to resolve only 1 of them. You have to resolve the rest of the 4 cases yourself. You have to troubleshoot them on your own. Their support is not that great. I would rate their support a 4 out of 10.

Neutral

I have not used any similar solution.

We have a cloud environment. Its initial setup was straightforward.

It does not require any maintenance from our side.

I did it all by myself. I do not need any help.

Its price is quite okay. I wish they provide certain additional features with the same license.

There are a lot of free videos about Intune on YouTube. To those who would like to use Intune, I would advise having a look at those videos to learn how to navigate around and how to use it before they start using Intune. From there, they can completely kick off the journey with Intune.

I would rate Intune a 7 out of 10.

I use Microsoft Intune to manage mobile devices and enforce security policies.

The most valuable features in Microsoft Intune for me are application deployment, Defender deployment, and asset management.

There is room for improvement in integrating additional features such as Purview and SharePoint activities into Intune, which would enhance its functionality.

I have been working with Microsoft Intune for four years.

The stability of Microsoft Intune is quite good.

The solution is very scalable.

I would rate the technical support for Intune as a nine out of ten.

Positive

We previously used SCCM. We switched to Intune due to its better usability, cost-effectiveness, and alignment with our Microsoft-centric environment, as we predominantly use Windows across the domain.

The initial deployment of Microsoft Intune was complex as fine-tuning policies took time. We ran a POC for three to six months before deploying to production. Our implementation strategy involved evaluating vendors, cost comparison and prioritizing security features. We opted for Microsoft Intune for its ability to consolidate security telemetry into the Defender portal. Deployment followed a phased approach: POC, small pilot group, then rollout to production. 

The solution requires maintenance from our side. This includes change management and configuration management to prevent unauthorized changes to policies, as well as constant review of threats from mobile devices. A team of four people is involved in maintaining the solution.

We used an integrator for deployment, which was a positive experience.

Having all endpoint and security management tools in one place streamlines IT and security operations. It simplifies processes for help desk support, image deployment, and asset management. Transitioning from SCCM to Intune has made tasks like application deployment easier and more efficient.

Intune provides full endpoint visibility and IT control across devices.

Intune has significantly improved our IT operations by consolidating management tasks into one portal. This streamlined approach has led to greater efficiency and effectiveness in our operations, as we no longer need to navigate multiple portals for various tasks.

Overall, I find the user experience of Intune quite positive. It streamlines tasks such as deploying applications and managing mobile devices, which previously required multiple applications. Transitioning endpoints to Intune, including laptops and servers, has been straightforward. Creating security policies and compliance policies is also easier within Intune.

We use the tunnel feature in Intune for MAM to provide remote access to corporate resources on mobile devices. We integrate Intune with Microsoft E5 Compliance Module for DLP, which helps maintain user privacy while protecting sensitive data.

Intune is highly effective for security in hybrid work environments, especially for protecting data on both company and BYO devices. All policies, including those for MDM and BYOD, are managed through Intune, ensuring consistent enforcement. Additionally, Intune offers features like allowing BYOD devices to access corporate data while restricting downloads or uploads, enhancing security without compromising productivity.

Intune's utilization of Microsoft security signals enhances our organization's security by providing visibility into Defender, MDM, Nathan, DLP, and other aspects. While there is a separate Defender portal, Intune allows access to certain features, offering comprehensive security management within a unified platform.

We use the Endpoint Privilege Management feature in Intune to control user access, especially for system admin accounts. This helps improve security by limiting the visibility of passwords and enforcing password rotations. Additionally, role-based access is managed through Intune, enhancing security without hindering productivity.

Endpoint Privilege Management helps reduce our organization's attack surface by providing greater visibility into account usage and usability. Previously, we lacked this visibility, but now we can grant engineers precise roles and responsibilities through privileged access management. Additionally, just-in-time access limits privileges to a small window of time, minimizing the risk of prolonged access.

Intune has positively affected IT productivity in our organization. It offers easy deployment, a user-friendly portal accessible both on and off the network with the right MFA, and consolidates all features, policies, and tools under one portal. This integration has increased efficiency as we no longer need to navigate multiple portals for different tasks, such as SCCM or image deployment.

Overall, Intune has helped reduce the risk of security breaches in our organization. Reducing privileges on accounts limits the impact of potential breaches. Additionally, with real-time data provided through Intune and Defender, we have better endpoint protection, further enhancing our security posture.

Intune has helped our organization save costs by being cheaper than purchasing SCCM licenses and other licenses. We estimated it to be at least 50% cheaper than our previous budget for similar solutions.

By using Intune, we have consolidated vendors by removing SCCM and Endpoint Protection from our portfolio. Defender now serves as our primary endpoint protection solution, streamlining our vendor management. The consolidation of vendors by using Microsoft Intune has not affected our security posture negatively. It has improved effectiveness, although we removed two security vendors from our portfolio, our footprint with Microsoft increased, balancing the impact. It didn't affect our licensing costs. In fact, we saved money as the cost of Intune was lower than what we were paying for the mobile line and SCCM.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security is crucial in our journey to the cloud. Both aspects, cloud management, and security, are equally important in our strategy.

Overall, I would rate Microsoft Intune as a nine out of ten.

With Intune, managing devices is a breeze. I use it to enforce security policies and seamlessly deploy applications to handle Windows 11 upgrades. It is like my one-stop shop for device management – no more manual headaches, just simple templates making my life easier. Plus, with Windows 10 support ending soon, Intune ensures a smooth transition to the latest and greatest without much hassle.

Overall, Intune has been a game-changer for our organization. It offers enhanced visibility, helping me identify and fix issues swiftly. Since implementing it, our security score has seen a noticeable improvement.

Intune gives me full visibility and control across all devices. For instance, if a device is slowing down, Intune alerts me, and I can proactively upgrade the hardware, like moving from HDD to SSD or M.2, ensuring optimal performance. It is like having eyes and control over the entire device landscape.

Intune has significantly reduced the risk of security breaches. With its robust security features and compliance monitoring, I can track and manage everything from emails to miscellaneous activities, ensuring a proactive stance against potential security threats.

The user experience of Intune is a perfect ten for me. It provides an incredibly helpful and seamless interface.

Intune has saved costs by preventing potential security threats. Restrictions on accessing miscellaneous websites have been invaluable in avoiding virus downloads and data loss. 

The reporting and analytics features in Microsoft Intune have been a lifesaver. In the report section, I can quickly identify device issues, compliance problems, or deployment failures. It provides a clear overview, allowing me to take immediate action, whether it's redeployment or manual adjustments, keeping everything in check and running smoothly.

While Intune works perfectly well, the only potential downside is that the deployment could be a bit complex for some users.

I have been using Microsoft Intune for three years.

The stability of Intune is impecable.

I would rate the scalability of Intune as a ten out of ten. I have not had any issues with it.

Technical support from Microsoft for Intune is top-notch, a solid ten. Whenever I have had issues and opened a ticket, they have been quick to respond within half an hour to two hours. The solutions provided are effective with detailed instructions and additional information.

Positive

My deployment model for Intune is gradual and cautious. It is like navigating through a vast ocean, where I test on a few devices first, slowly deploying one thing at a time. I learned the hard way that rushing impacts users, so it is a step-by-step process, taking a month or two, testing, deploying, and making adjustments as needed. Patience is the key to Intune deployment.
Deploying Intune wasn't a walk in the park, but it wasn't overly complex either. I would say it is moderate—needing time, experience, and knowledge. Testing is crucial.

Microsoft takes care of updates and maintenance. I just need to stay on top of deploying new patches that come from vendors, ensuring our machines are up-to-date and secure.

The return on investment with Intune has been excellent. The increased productivity and control over machines justify the cost, giving a full value-for-money experience.

We use Microsoft Intune to ensure security compliance mainly through our DLP project. It is our go-to for deploying new features and staying on top of security patches. Intune keeps us informed about vulnerabilities, making it easier for me to download and deploy updates across our infrastructure, ensuring a robust and secure system.

The standout features of Microsoft Intune for managing and securing our workforce are endpoint protection, streamlined deployment of applications, and easy handling of feature updates. Creating Intune policies is a breeze; for instance, deploying applications is just a matter of selecting them and letting Intune take care of the rest. It is a time-saving and efficient way to keep our systems secure and up-to-date.

The real game-changer in Microsoft Intune for our data security is the ability to create and enforce specific policies. I have set up two types: one within Intune and the other through GPO. The combination of both has been pivotal in ensuring robust security measures for our organization.

Having all endpoint and security tools in one place with Intune is quite valuable. It allows me to track device usage, block systems, and, if necessary, wipe company data for security purposes. The integration with OneDrive ensures seamless syncing and backup of user data, providing an added layer of protection. It is like having a control center that empowers me to respond swiftly to any security concerns.

For securing hybrid work and data protection, I set up Intune to handle encryption using tools like BitLocker. It provides an added layer of security, allowing me to manage BitLocker keys and make necessary changes for better control. This way, even in a hybrid work environment, I have visibility and control over data protection measures.

Intune's integration with Microsoft security has significantly bolstered our organization's security. From prompt security patches to timely machine restarts and access control, it covers a multitude of aspects, ensuring a robust and proactive security stance.

Using the Endpoint Privilege Management feature in Intune has been a productivity boost.

After deploying Intune, there was a shift in user freedom, but it was a positive change. I could restrict access, control network usage, and block certain applications, enhancing overall security. While some users may find it limiting, it aligns well with the organization's focus on security.

Intune must integrate with Microsoft 365 and Security. The synergy is powerful. For instance, in security, I identify vulnerabilities and know precisely what patches to deploy using Intune. It is like a seamless collaboration that streamlines the process.

Microsoft Intune's integration with other Microsoft tools has revolutionized my device management strategy. It is like a helping hand that makes everything easy and seamless. Over the past five to six years, it has become an essential and efficient part of my device management toolkit.

Microsoft Intune's integration with other Microsoft tools has revolutionized my device management strategy. It's like a helping hand that makes everything easy and seamless.

For new users, my advice is to take advantage of Microsoft's virtual training sessions and certifications. Sometimes, they offer free certifications, which can be beneficial for users, considering the investment companies make. The biggest lesson I have learned is the incredible control and flexibility Intune provides. From deploying and removing applications to blocking and deploying the OS, it gives complete control over the infrastructure, making it invaluable for users in the field.

Overall, I would rate Intune as a ten out of ten.

We've experimented with and deployed Autopilot for building and deploying software through Intune, utilizing Intune policies to modify Azure AD joined systems, now referred to as Entra joined. This covers the entire scope of Intune that we've explored and implemented.

We are a consulting company with extensive experience in deploying Intune. We utilize Intune for hybrid join Entra machines. For clients who have the necessary licenses, while Intune is not a full-fledged Remote Monitoring and Management solution, it can serve as an effective replacement for RMM if you are a Managed Service Provider.

While more mature tools exist for securing hybrid work and protecting data on BYOD and company devices, Intune is a viable option for clients who want to leverage MDM with their Premium or E3 license, especially if cost is a major concern. Despite some challenges with Samsung Knox and iOS devices, Intune has shown improvement, and these issues are less frequent. As Microsoft doesn't have a native phone, limitations are inevitable.

The Mobile Device Management in Intune is a valuable feature.

Microsoft recently separated Defender into Security. Intune does not centralize all endpoint and security management tools into one place. It used to be more centralized.

The Microsoft support has been subpar for some time now. Troubleshooting issues often require us to involve a partner, which isn't an ideal or easily manageable solution given the challenges with Microsoft support. We need a reliable partner, but that partnership might still require Microsoft's assistance.

We've faced significant pushback with Copilot as our clients aren't seeing a favorable cost-benefit analysis. Many are opting for ChatGPT Enterprise instead of integrating Copilot into their workflows. We initially expected significant value from Copilot, but Microsoft's pricing is excessive, and the product itself is not exceptional. It remains quite rudimentary in its current state.

Microsoft should not rely on partners to fix issues. While users can open tickets with Microsoft, they often cannot resolve the problems themselves and must engage a partner. This is not an à la carte solution. Perhaps when Copilot eventually becomes available, it will address this. It's not Intune's fault, as it is used frequently.

I have been using Microsoft Intune for ten years.

The technical support is not good.

Negative

We tried numerous solutions prior to Intune, but Microsoft's inclusion of it within their licensing model incentivized us to adopt it. Since we were already paying for the license, it made sense to leverage its full potential and maximize our investment.

If you're subscribing to Premium or E3, there are no additional costs for Intune, it's included. However, with lower-tier plans, you don't get the full suite of security features. Depending on your specific licenses, you might have some level of Advanced Threat Protection, Endpoint Detection Response, or other Defender tools, but not the complete package. Generally, for around 300 users, you get decent protection with Defender for desktop and server – it's a good value. But with E5 licenses, you're at the enterprise level, and you get what you pay for, so expect add-ons. I don't think Microsoft would position Intune as a primary security product anymore, given their recent cloud changes and the focus on Defender. Intune is useful for patching, but it's not a comprehensive security solution in itself. That's why Microsoft has rebranded their security offerings under security.microsoft.com.

I rate Intune six out of ten.

Many of our clients with premium or E3 or above licenses use Intune because it's included in their Microsoft solution. They prefer to leverage a Microsoft product over a third-party alternative. Additionally, Intune allows us to maximize the value of our clients' existing licenses. Therefore, if a client has a premium license, has under 300 users, or is on E3 or above, there's no reason to use another solution when Intune is readily available.

Microsoft recently transitioned from Intune to Endpoint, then back to Intune. Additionally, they moved certain security aspects of Purview into a separate deployment, as is the case with their ATP Defender Suite. This shift signifies a move away from a single, unified management interface to a more distributed model.

We use the enterprise application management feature to roll out apps. While there are better tools available for app discovery, deployment, and automatic updating, Intune's inclusion in the Microsoft bundle keeps costs down. Although Intune may not be the ideal solution for automated application deployment or MDM, its integration with Microsoft licenses makes it a worthwhile option, especially with the expectation of future improvements from Microsoft.

We use the Advanced Endpoint Analytics but it is no longer in Intune. It's been moved over to the security portal for Defender.

The endpoint analytics feature, which helps proactively detect and remediate anomalies and endpoints, is now part of Microsoft Defender formerly known as Advanced Threat Protection. Gartner rates it very highly. To perform threat hunting, we need the appropriate licensing, such as a P2 Defender license. This functionality is not available within Intune. We are transitioning from the older Advanced Threat Protection to the newer Microsoft Defender platform. Previously, configuration was done through Intune, but now we manage it through the Microsoft security site.

My advice for any organization that is already paying for a Premium or above Microsoft license is to deploy Intune because it makes financial sense. Intune is not a bad tool but if they run into any issues, the Microsoft support is no good so they need to rely on a good partner to help resolve the issue.

Microsoft cannot fully replicate the functionality of a Remote Monitoring and Management tool. However, it could incorporate certain RMM features into its existing products or develop new tools that complement RMM solutions.

By implementing Intune, we are exposing aspects of our infrastructure to the cloud that traditionally would remain on-premises. This means relying heavily on Microsoft's infrastructure and security. As we saw a few years ago with the Department of Justice's issues, which were clearly Microsoft-related, placing all our trust in one provider can lead to potential problems. However, despite these concerns, we have not encountered any security issues with Intune to date. But at the end of the day, we are maximizing our license.

Intune deployment is straightforward if you're well-prepared, whether for a hybrid setup or a purely Azure-based one. Packaging new apps is generally well-documented, but troubleshooting can be trickier. There are helpful PowerShell scripts available, though they might not be easy to find.

We use it for pretty much everything related to endpoint management. We use it for bring-your-own-devices and corporate-related devices such as laptops and tablets. We have various operating systems such as Windows, iOS, and Android.

Microsoft Intune is helping to streamline operations and minimize administrative overhead.

We are using the Enterprise Application Management features of Intune Suite. It is very well designed and very well suited for Microsoft-related applications. Third-party applications can require some workaround. They do not always organically fit into the solution, but, overall, it is a great option to have visibility into what the users are using and be able to set up some policies based on that. We can allow applications or deny applications. We can manage what users can onboard. Overall, it is a great solution. We can definitely simplify and streamline some security operations.

Microsoft Intune is great for securing hybrid work and protecting data on company and BYO devices. What is more important is that it is not a static product. It is not that the product is very well established and not moving anywhere. It is constantly evolving. Microsoft seems to be spending lots of resources trying to improve and bring new features. That is great.

We are starting with Intune's Endpoint Privilege Management feature. It definitely impacts productivity. It is great and definitely helps a lot. It helps minimize the attack surface because you do not have elevated privileges accounts available all the time. It helps mitigate or shrink the potential impact or potential entry points into the network.

Microsoft Intune has helped us to manage the accounts with elevated privileges. We are a managed service provider. We sometimes have big turnarounds on the help desk. By their job definition, many of them are supposed to have access to different clients and different sensitive areas. It helps us to mitigate and manage these accounts, and, as a result, to be more secure. We can make sure that those accounts are not being distributed very freely. We have control over their actions. We have control over what they are doing. We have full visibility and accountability.

Microsoft Intune is easy to use, and it is able to enforce policies towards multiple devices. It is able to bring multiple classes of devices into the same security posture. I found that very useful.

The interoperability or communication with a different platform can be better. It is a two-way street. It is not only about Microsoft. The other platforms also have to be willing to share some information, but that absolutely can be improved.

I have been using Microsoft Intune for five to six years.

It depends on the level of access you have. We are a managed service provider, so we do have access to Microsoft. Generally, it is okay if you are able to find the right parties to talk to. It can definitely be improved.

Neutral

We did not use any other solution previously.

First of all, we do not have to deploy any third-party privileged account management solution. That is one tangible benefit. An indirect benefit is that by protecting your environment and making it more secure, you are potentially avoiding any downtime. It is hard to quantify what that downtime cost could be.

If an account with elevated privileges is compromised, you need to perform a lot of work. You need to change the password, disable the account, and recreate another account, so 10% to 15% of the downtime definitely could have been avoided.

We use Defender ATP and E5 licenses.

Intune was an organic choice because we are a Microsoft shop. We use everything that Microsoft can offer.

Microsoft Intune is a great solution. If you have a Microsoft environment, it is definitely the way to go. It can help you to streamline operations and simplify a lot of things. If you go into a multi-cloud environment where you have AWS, GCP, or any other cloud workloads, it may be a little bit more complicated. If you are a Microsoft shop, it is the way to go.

In terms of user experience, for the end users, it is pretty much seamless. It is more on the administrative side. If you properly configure it, it is a relatively seamless experience.

We have just started working with Microsoft Copilot in Intune. It is a very fresh solution. It has just been released, so we are setting up use cases and working with Copilot. We have a Copilot for Teams. We have a Copilot for Microsoft Office that we are utilizing. We have started playing with Copilot for some security operations. It is yet to be determined how much value it can bring. Generally, it can help you analyze and optimize some workloads and events more efficiently, effectively, and quickly. There is great potential, but we will see how it is in real life.

I would rate Microsoft Intune an eight out of ten.

I'm part of a break/fix team using Intune to support our clients. We support Android, iOS, Mac, and Windows devices and help customers with enrollment issues, Apple configuration problems, app deployment, and other issues. My clients are small-to-medium-sized.

Intune brings all endpoints and security management into one place. Through the same portal, we can manage policies and deploy apps. If we push apps through the portal, they can be deployed to all users. 

Intune makes it easier to manage devices, saving us time. It solves many challenges we face in deploying and configuring devices. When something breaks, we need to investigate, starting with the configuration. For example, the kiosks are Android-based devices. When we have issues, we need to check to ensure everything is configured correctly on the portal. 

Intune's security features for Apple iOS and Mac OS are helpful. We can check enrollment, manage public and private settings, and manage the organization's data using security key features. Like the MCM interface, the Intune portal is flexible and easy to understand.

The Cloud PKI feature helps us manage our complex certificate infrastructure across our cloud and on-prem Active Directories. We are using Copilot. The settings are controlled by Intune and SCCM, so Copilot works the same regardless of the product we use. It simplifies IT operations and helps us manage both. We can use AD Connect to integrate our on-prem Active Directory, connect with hybrid devices, and manage every device in the organization.

Intune could add more Linux security features and more integration with on-prem devices. The application deployments can also be improved. 

I have used Intune for around two years.

I rate Intune nine out of 10 for stability. 

I rate Intune nine out of 10 for scalability. 

I rate Microsoft support nine out of 10. 

Positive

We use SCCM to manage users and patches. We can push all the patches using Microsoft releases patches where we can push in a one we're using a one group and meeting one group, and then we are pushing it through this patch management.

Deploying Intune can take one to three days, depending on the configuration required. 

I rate Intune seven out of 10 for pricing.

I rate Microsoft Intune nine out of 10. I recommend Intune because it's more flexible, user-friendly, and has more security features. I work with Microsoft technologies like SCCM, Windows Server, and Intune.