Microsoft Intune Reviews

We use Microsoft Intune for device and identity management, providing end-user support, determining device hardware placement, collecting diagnostic logs, deploying patches, distributing software and feature updates, and managing quality rings. This platform enables us to manage over 20,000 devices across our organization effectively.

Intune provides a centralized platform for managing our security, allowing us to establish compliance rules and implement restrictions based on corporate security approvals and project requirements. For instance, we can disable print screens or activate screensavers after specific intervals to enhance security.

Intune offers a positive user experience, and we can monitor each user's activities.

We use Microsoft Intune's Enterprise Application Management feature to manage Forcepoint DLP, Endpoint DLP, privileged identity management, Cisco MD, and other enterprise applications according to organizational needs.

Within half an hour of being added, a device syncs with Intune, enabling policy synchronization and providing immediate benefits. Intune also offers troubleshooting assistance for any device linked to it.

Intune helped increase our IT team's productivity.

I like Intune's ability to manage roles, maintenance tasks, compliance settings, and patch development for all endpoints.

The information we receive at the device level needs improvement. For instance, we can gather data on 10K devices but not 4K ones. I want to access information about devices that currently aren't included. Twenty percent of the workload integrated into the cloud from collected data represents inapplicable scenarios. I want Intune to decrease this by at least ten percent.

I have been using Microsoft Intune for two and a half years.

We have also used Nexthink, which can connect more devices, but Intune allows us to collect more detailed information.

I would rate Microsoft Intune ten out of ten.

We use Intune to deploy and manage applications to devices based on our client requirements and needs. We handle a lot of use cases, especially with regard to Microsoft Edge. Recently, we have deployed BitLocker and Docker encryption using Intune. We utilize Intune to patch and onboard Defender and Core Endpoint. We apply Intune to laptops, mobiles, and tablets, including iOS and Android.

Intune has automated the deployment of patches and applications, which is more efficient and easier. It allows us to deploy applications, packages, Windows updates, and security updates like BitLocker encryption more efficiently and easily.

The most valuable feature currently is the BitLocker encryption. Most clients in the Philippines are moving to BitLocker encryption via Intune, transitioning from any existing third-party encryption tools they may have.

The most significant challenge is reporting and monitoring. The reporting accuracy for deploying applications and all aspects of Intune needs to be improved. Intune is less admin-friendly than SCCM and WSUS systems. In WSUS and SCCM, you can classify the updates you want to deploy to the endpoints, whereas Intune only has quality updates, definition updates, etc. I rate the admin experience seven out of 10. It's not terrible, but there is room for improvement. 

We've used Microsoft Intune for nearly 10 years now.

I rate Intune eight out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft's engineers provide varied approaches and knowledge about the product.

Positive

We are resellers, consultants, and they often refer to us as implementers. We handle the solution and technical support.

I can rate Microsoft Intune eight out of 10.

We are using Intune for managing endpoint devices with zero-trust principles. The devices are not domain-connected because most people work from home. We do not trust these computers, so we use Intune to deploy and enforce policies related to updates, software installation, and management of admin users.

When we are using Microsoft products on mobile devices, we are using Intune to enforce policies on them.

Our usage is very simple. We are using Intune to manage devices that we do not trust. We are using Windows 365, and we install all applications only on these virtual PCs in the cloud. We do not have anything on endpoint devices. Not even a simple document can be downloaded there. We just have an access point to Windows 365 machines in the cloud. We are a financial company. There are not too many enterprise applications that we can use. We prefer to use zero trust. This means no there is no data on company devices at all. It is only on the cloud machines. It is easier to control one perimeter than 10,000 or 20,000 machines. We can reduce the attack surface in this way.

Intune increases the productivity of our IT team. 

There is a reduced cost of ownership and management. We do not need a lot of additional training. Administrators can share roles because its interface is similar to other Microsoft solutions. With one or two days of training, administrators can start working with it. There are a lot of Windows specialists in the market.

We work completely in a Microsoft environment. Its interface is similar to other Microsoft solutions that we are using such as Microsoft Defender. So far, for our administrators, it is easy to use. 

At the moment, we need more flexibility. We have some offices migrating to Windows 11 remotely. Sometimes, it is difficult to manage image installation because we have to collect some information before starting image deployment. Currently, Intune cannot collect the information needed for deploying new images.

We have been using Microsoft Intune for three years. I also used it for two years in my previous work.

Intune is a stable product with no significant issues. We have standardized hardware. We do not have a wide variety of endpoints.

Intune is quite scalable. We started with 3,000 machines, and we now manage 15,000 machines. Our endpoints will probably grow.

I have not interacted with Microsoft technical support personally, but I was satisfied with their support in my previous company.

Positive

I have not used any other solution in my current company.

We are using the public cloud for access, but everything is closed. There is no public access to infrastructure. Access is only through the cloud. There is no VPN or any other way.

I was involved in the security assessment in the beginning. The initial setup was quite easy because we did not look for very complicated functions. We did face some issues with the multi-user mode but resolved them. It took us about a month.

It requires maintenance. You have to review regular policies and adjust policies when something changes in the environment or you deploy new applications. Its maintenance is mostly done in-house. Only in a very complicated situation, we involve a third-party consultant.

We performed the deployment with the assistance of a third-party consulting company, not resellers. Three engineers from our team were involved.

Cost is not my department, but the product is included in the E5 license that we already pay for every user, so no additional cost is incurred.

We have not evaluated other options because Microsoft Intune is included in our E5 licensing. I would prefer to use the VMware solution, but that is not possible because Intune is included with our existing license. Buying any other solution will result in additional costs.

I recommend doing thorough homework and testing everything in a test environment. After ensuring that everything works fine, proceed with the final deployment.

It is not the best solution. It requires a bit more effort in management, but it works. It is not so flexible, but considering it is free for us, it is okay.

We are doing experiments with Copilot to see how we can use it. For some users, it is deployed, and we will be testing it actively. We are mainly using it to make emails, presentations, and documents better for the end users who will read them. We are an international company, and English is not the primary language for 99% of people. Copilot makes the documents more readable. We have not yet tested Copilot in Intune for security functions. We have SIEM and other security tools for insights. At the moment, we do not have a big need to start experimenting with Copilot in Intune. After we finish with the end-user use cases, we can switch focus on daily operations for IT teams.

Intune has not helped us consolidate vendors because we do the installation on the cloud. On endpoints, we have nothing.

I would rate Intune a seven out of ten because it is not so flexible.

Our customers primarily use Microsoft Intune for core management tasks, often in conjunction with System Center Configuration Manager, especially for Apache-related matters. Intune is also crucial for mobile device management, policy deployment, and ensuring robust security, particularly when activating and deploying security features like Defender to endpoints.

Some of our customers implemented Microsoft Intune because of integration issues and old legacy operating systems.

We use Intune in on-premises, cloud, and hybrid environments.

Intune brings all of the endpoint and security management tools into one place. They have also integrated it with non-Microsoft operating systems, which is a huge plus.

Consolidating endpoint and security management tools into a single platform offers significant benefits for our IT and security operations teams. With centralized visibility, they can gain better control over their systems, identify potential vulnerabilities, and take proactive measures to protect customer data. This enhanced oversight empowers them to address security gaps effectively and ensure a more secure environment.

From the user perspective, the Intune experience is exceptional for those familiar with it. However, for those still learning the technology, it suggests that Intune is user-friendly and straightforward to comprehend.

Intune offers administrators enhanced visibility, control, and ease of management. Patching and updating devices is streamlined, while end users benefit from simplified onboarding, intuitive usage, and robust security features like conditional access.

Intune is essential for safeguarding data on company and BYOD devices, especially in hybrid environments.

Intune significantly enhances IT productivity within our customers' organizations. Before Intune, administrators often struggled with visibility and management, particularly for mobile devices and laptops. They wasted time searching for assets and deploying numerous tools to achieve visibility and enforce management policies. Intune streamlines this process by eliminating the need for hundreds of agents. Simply implementing Intune provides the necessary visibility and management capabilities.

Intune offers significant cost savings. By comparing its licensing model to third-party solutions, we can easily see the return on investment in terms of reduced business expenses. Intune can help businesses save between 35 and 45 percent.

Intune simplifies vendor management by providing visibility into end-of-life dates for most hardware, especially laptops. This makes it easier for administrators to monitor the support status of both software and hardware. By tracking updates and end-of-life information from various vendors, administrators can easily view this data in a consolidated summary.

Before implementing Intune, their security posture was significantly lacking, with most organizations scoring below 20 percent. However, after Intune deployment, especially for banks, compliance became a crucial factor. Intune’s recommendations on improving security scores, particularly Secure Scores, have been instrumental in boosting their ratings to between 75 and 85 percent.

The consolidation has impacted licensing costs due to centralized oversight and dashboards. This raises questions about whether we should continue with the current approach or explore alternative options like Microsoft or a more standardized solution. There is a significant cost advantage to vendor consolidation and visibility.

The core management feature in Intune is invaluable to us, especially considering the challenges we often face with System Center when pushing external updates. Intune has proven to be a game-changer for me in this regard.

Intune's privilege management feature, while beneficial, is less intuitive than other Intune features, making it challenging to use. To improve this, more demonstrations and technical sessions would be helpful.

If Microsoft offered a standard license trial that allowed customers to experience its capabilities, customers would be more likely to purchase Intune.

The technical support has room for improvement.

I have been using Microsoft Intune for six years.

I've never encountered any performance problems with Intune. The largest deployment I've undertaken was for ten thousand devices, and even then, I experienced no issues with the Intune platform.

Microsoft Intune is highly scalable.

We encountered an issue once, but unfortunately, we had to seek support on our own. Therefore, Intune support is particularly challenging.

Neutral

We use VMware, Citrix, and various other third-party tools for MDM. These tools include Qualys, GFI, Managed Engines, and others, each offering different functionalities and service levels.

Intune offers a more straightforward licensing process than other vendors. Additionally, its integration capabilities, especially with Microsoft products, are generally smoother and less problematic than many third-party solutions. This allows for a more direct and measurable path to success, enabling users to assess their progress even in the early stages of implementation. 

I have been familiar with Microsoft products for some time, making the initial deployment of Intune relatively straightforward. We begin with a customer immersion session, where we sit with the client to conduct a workshop. This workshop ensures they fully understand the Intune solution's capabilities and limitations. We then establish clear objectives and goals for successful deployment. Our engineers work closely with the customer on-site, deploying the solution and training designated champions to assist user adoption. Following this, we provide comprehensive training and a transition period for the entire organization.

The number of users in an organization determines the number of people needed for a deployment. For organizations with fewer than 500 users, a team of five to six people would suffice. However, organizations with more than 1000 users may require a team of ten.

I would rate Microsoft Intune eight out of ten.

Intune's low maintenance requirements make it a valuable asset for our clients. Once implemented, Intune typically requires minimal ongoing maintenance, ensuring a smooth and efficient experience.

The integration of Intune's capabilities with Microsoft 365 and security for both cloud and co-managed devices is crucial as we transition to the cloud. Intune's visibility into devices provides significant value, and neglecting this integration would be a disadvantage for administrators as cloud-based management becomes the norm. Therefore, incorporating Intune into your cloud migration and strategy is essential for effective device and mobile phone management.

I highly recommend Intune to others. Its visibility feature is imposing. With visibility comes control, and a quick demo can showcase the potential benefits. By highlighting the need for more visibility in their current setup, it's easier to convince them of Intune's value. This also simplifies discussions and makes the decision-making process smoother.

We use Intune to manage devices and configurations on all platforms, including Windows, iOS, iPad, and Android. It also provides conditional access from the Azure portal. We have also used Intune to bifurcate data and data transfers. We have an Intune entry list that shows the device count and bandwidth of each, so we can manage the data flow from every device based on whether it's corporate or personal. 

Intune is flexible. If you want to move a device that was previously on-prem, we can bring it to the cloud and apply all the policies. This is helpful for even those organizations that were on-prem and not on the cloud. They can also come and use these features, which are pretty cool and would be handy to protect the data and manage the devices as well.

It's handy to manage all the hybrid devices that are on-prem and in the cloud. If a user accesses company resources on their work profile or their personal devices, they can register the device in Intune and access the company data. Intune is a crucial part of the overall structure because we can use it to analyze risks and threats coming into our organization and predict what will be vulnerable. It's necessary to analyze all those things from a security perspective.

Intune's advanced endpoint analytics require a separate license. We are keen to use that one because it comes with more features, flexibility, and control for admins over the devices. We haven't used it, but I've tested it on my tenant with a few devices

It is much easier for admins to use that cloud PKI infrastructure compared to when we had to set up all those things using our Skype profile from Intune. It's quite handy. It takes a little work on the admin side, but the whole structure is the same.

Intune drastically improved our productivity. Work that was previously completed in four hours could now be finished in one. It saved our IT admins many hours of work. Once we migrated from our on-prem servers to the cloud, the Cloud PKI saved us a lot of money. I don't know the numbers, but we are saving so much money because of this. 

The best part of Intune is application deployment. We can deploy an application to several users with a single click. We can use conditional access, granting access to users based on certain conditions, such as location, platform, etc. 

With the help of Microsoft Defender, we can bring each endpoint or node under  Intune's umbrella and manage it through Defender. The most effective feature for managing mobile devices is the compliance policy, which mandates that any user on a particular device should be compliant. It should meet the requirements the company sets and be upgraded. The user should meet all these security criteria we have implemented. 

Intune's app management can support our business operations. For example, if a user wants an Android app, we can deploy it through the Android store, but if we're talking about any MSI on a public-facing platform, we can convert it into Win32 and deploy it to the whole enrollment. Intune is quite flexible.

Compared to another Indian MDM tool I use, Intune provides more flexibility for security. The Microsoft name assures us that our data will be protected. Control over data is the main concern on the cloud.

The reporting causes problems because we're trying to gather data to present to the management, but we can't get the data they request. If a user has removed an application from his device, but it won't report it at exactly the right time. It takes time to sync from the device to the portal. Let's say we are preparing a list or deck for the number of compliant devices that meet all of the organization's requirements. In a real-time scenario, that device could be compliant, but it is showing as non-compliant on the portal. It sometimes hampers the overall decisions that we make on our end.

I have used Intune for four and a half years.

I rate Microsoft premium support nine out of 10. Their premium support is top-notch. They build a bridge to resolve the issues. Standard support varies, depending on the engineer you get. It could range from six to eight out of 10. 

Positive

Previously we used SCCM. It's a Microsoft solution, but Intune's user experience is much better because it's cloud-based and it's more cost-effective. 

Deploying Intune is pretty simple for someone who is experienced with the program. The admin needs to know the basics. Otherwise, it's user-friendly. The time needed to deploy depends on the network, but if everything is perfect, it only takes five to 10 minutes to deploy an application on a Windows device. An Android device is in a similar range. In some weird scenarios, it may take 15 minutes. It doesn't require much maintenance after deployment because it's cloud-based, so we don't need to update anything.

Intune cuts the amount of time we spend on these tasks in half.

Intune is a better value than SCCM or other management tools because we can integrate more with Intune. 

I rate Intune eight out of 10. I would recommend Intune to others. Microsoft offers many new handy features, such as the ledger and the ability to locally administer managed devices. It doesn't require much hassle to set up these things. It's worth the price.

We control the endpoints and push the software. We also manage the patch schedule, quality updates, and feature updates. We use pretty much everything that is offered within Intune.

Our operations are much simplified. Traditionally, IT support has to manually install a lot of software. For example, Adobe, Google Talk, Google Hangouts, or any other solution has to be installed manually. With Intune, we can automate when somebody is joining. When a laptop joins the company domain, it is much easier to install different applications.

Intune brings all of our endpoint and security management tools into one place. It is always nice when you have a centralized place to look at all the devices. It helps the IT administrators to have a broader overview. It helps if they want to have a quick look at the endpoints or any software that did not install correctly. It has been great for the IT administrators. I log in pretty much every day to take a look at any failures, any out-of-compliance devices, etc.

Intune has been beneficial to me. I have been using it daily. I can see everything through one dashboard. I do not have to jump in and out of different places. 

Intune has definitely saved us costs. We do not have to go and get another software. We are saving quite a lot there, maybe 30,000 to 40,000 annually.

In terms of user experience, the good thing is that users do not feel anything. The users do not have to experience a reboot when an application gets installed. Traditionally, they have to restart their laptop or they experience slowness. All these issues are gone. It is all done in the background. The whole idea is that the user does not need to know what is going on at the back. They just need to use the application. When it gets installed, they will get a notification saying that the app has been installed by their admin. They can then just open the app and use it. That is it.

The ability to push applications on devices is valuable. You do not have to manually install applications one by one. If you like to use ten different applications, you do not have to manually go and download them one by one. Intune can compile a package for you, and then you can just push them from the admin center.

I would like to see easier pushdowns. Currently, we have to package our own software and then push it. Intune can make that way easier and integrate applications, such as Zoom and Adobe Acrobat, that are used by a lot of enterprise or corporate organizations. If they can integrate all the applications in their Intune system and allow all the IT admin to see any vulnerability upgrades or any feature upgrades required, that would be great. Currently, we do not have this kind of information proactively showing up in the admin dashboard.

The UI is very difficult to navigate around. You have to click multiple times. For example, you have to click four or five times to get to the BitLocker key. If something is missing or something is not installed properly, you get the same error every time. Behind the error message, there is a lot of meaning to it. The user interface and the way Intune shows the errors for troubleshooting do not make it very useful for me. We can only get a glimpse of the error, but you have to figure out the rest of the things on your own. You have to go to Google, or you have to go to GitHub or another forum to find any related information.

I have been working with Microsoft Intune since I joined this company. I have been with the company for two years, and my company has been using it longer than that.

I would rate it a 6 out of 10 for stability.

I would rate it a 6 out of 10 for scalability.

Microsoft support does not know a lot of things. There was some issue with the software integration or software deployment. If you ever open a case with them, I feel like they do not really know a lot of things. If you open 5 cases, they are able to resolve only 1 of them. You have to resolve the rest of the 4 cases yourself. You have to troubleshoot them on your own. Their support is not that great. I would rate their support a 4 out of 10.

Neutral

I have not used any similar solution.

We have a cloud environment. Its initial setup was straightforward.

It does not require any maintenance from our side.

I did it all by myself. I do not need any help.

Its price is quite okay. I wish they provide certain additional features with the same license.

There are a lot of free videos about Intune on YouTube. To those who would like to use Intune, I would advise having a look at those videos to learn how to navigate around and how to use it before they start using Intune. From there, they can completely kick off the journey with Intune.

I would rate Intune a 7 out of 10.

I use Microsoft Intune to manage mobile devices and enforce security policies.

The most valuable features in Microsoft Intune for me are application deployment, Defender deployment, and asset management.

There is room for improvement in integrating additional features such as Purview and SharePoint activities into Intune, which would enhance its functionality.

I have been working with Microsoft Intune for four years.

The stability of Microsoft Intune is quite good.

The solution is very scalable.

I would rate the technical support for Intune as a nine out of ten.

Positive

We previously used SCCM. We switched to Intune due to its better usability, cost-effectiveness, and alignment with our Microsoft-centric environment, as we predominantly use Windows across the domain.

The initial deployment of Microsoft Intune was complex as fine-tuning policies took time. We ran a POC for three to six months before deploying to production. Our implementation strategy involved evaluating vendors, cost comparison and prioritizing security features. We opted for Microsoft Intune for its ability to consolidate security telemetry into the Defender portal. Deployment followed a phased approach: POC, small pilot group, then rollout to production. 

The solution requires maintenance from our side. This includes change management and configuration management to prevent unauthorized changes to policies, as well as constant review of threats from mobile devices. A team of four people is involved in maintaining the solution.

We used an integrator for deployment, which was a positive experience.

Having all endpoint and security management tools in one place streamlines IT and security operations. It simplifies processes for help desk support, image deployment, and asset management. Transitioning from SCCM to Intune has made tasks like application deployment easier and more efficient.

Intune provides full endpoint visibility and IT control across devices.

Intune has significantly improved our IT operations by consolidating management tasks into one portal. This streamlined approach has led to greater efficiency and effectiveness in our operations, as we no longer need to navigate multiple portals for various tasks.

Overall, I find the user experience of Intune quite positive. It streamlines tasks such as deploying applications and managing mobile devices, which previously required multiple applications. Transitioning endpoints to Intune, including laptops and servers, has been straightforward. Creating security policies and compliance policies is also easier within Intune.

We use the tunnel feature in Intune for MAM to provide remote access to corporate resources on mobile devices. We integrate Intune with Microsoft E5 Compliance Module for DLP, which helps maintain user privacy while protecting sensitive data.

Intune is highly effective for security in hybrid work environments, especially for protecting data on both company and BYO devices. All policies, including those for MDM and BYOD, are managed through Intune, ensuring consistent enforcement. Additionally, Intune offers features like allowing BYOD devices to access corporate data while restricting downloads or uploads, enhancing security without compromising productivity.

Intune's utilization of Microsoft security signals enhances our organization's security by providing visibility into Defender, MDM, Nathan, DLP, and other aspects. While there is a separate Defender portal, Intune allows access to certain features, offering comprehensive security management within a unified platform.

We use the Endpoint Privilege Management feature in Intune to control user access, especially for system admin accounts. This helps improve security by limiting the visibility of passwords and enforcing password rotations. Additionally, role-based access is managed through Intune, enhancing security without hindering productivity.

Endpoint Privilege Management helps reduce our organization's attack surface by providing greater visibility into account usage and usability. Previously, we lacked this visibility, but now we can grant engineers precise roles and responsibilities through privileged access management. Additionally, just-in-time access limits privileges to a small window of time, minimizing the risk of prolonged access.

Intune has positively affected IT productivity in our organization. It offers easy deployment, a user-friendly portal accessible both on and off the network with the right MFA, and consolidates all features, policies, and tools under one portal. This integration has increased efficiency as we no longer need to navigate multiple portals for different tasks, such as SCCM or image deployment.

Overall, Intune has helped reduce the risk of security breaches in our organization. Reducing privileges on accounts limits the impact of potential breaches. Additionally, with real-time data provided through Intune and Defender, we have better endpoint protection, further enhancing our security posture.

Intune has helped our organization save costs by being cheaper than purchasing SCCM licenses and other licenses. We estimated it to be at least 50% cheaper than our previous budget for similar solutions.

By using Intune, we have consolidated vendors by removing SCCM and Endpoint Protection from our portfolio. Defender now serves as our primary endpoint protection solution, streamlining our vendor management. The consolidation of vendors by using Microsoft Intune has not affected our security posture negatively. It has improved effectiveness, although we removed two security vendors from our portfolio, our footprint with Microsoft increased, balancing the impact. It didn't affect our licensing costs. In fact, we saved money as the cost of Intune was lower than what we were paying for the mobile line and SCCM.

The integration of Intune suite capabilities with Microsoft 365 and Microsoft Security is crucial in our journey to the cloud. Both aspects, cloud management, and security, are equally important in our strategy.

Overall, I would rate Microsoft Intune as a nine out of ten.

We are a Microsoft vendor, not an Intune user. I have deployed Intune for several customers who use this product for business. Our clients use Intune for device management and data security, which gives them control over end-user devices.

Previously, we used a device manager and had a local Active Directory. However, most of our SME customers do not have a local Active Directory set up in their organization that allows them to control their devices. Intune does not require any local AD. It's a cloud application. We can directly join the user devices to the cloud, and the organization manages them. We have enterprise customers and also SMBs, but most of our clients have less than 100 users. 

One of my Indian clients previously had all their devices at the workplace. None of the devices were joined to an Active Directory, so they had to install applications on each device individually. With the help of Intune, we could push the applications to all the portal users simultaneously. 

We have to create a group, assign an application to it, and automatically install it on the user's devices. We also apply the company logo and desktop wallpaper via Intune, which a tech user can change. We can also find the exact location of the devices where the user is sitting.

We also have the option to enroll hybrid devices with Intune. We can enroll users'  devices and separate work and personal data. The devices on the local Active Directory can be joined to Intune. 

Privilege identity management helps. Let's say someone is a company administrator for five to ten days. We can create a dual administrator role for that user for seven days. I can create a PIM role and assign it to the user for seven days, after which the role will be deleted automatically. 

Intune provides routine management of user devices. Once the device is not enrolled in any domain or Active Directory, the IT person must delete every user device to change anything. Intune can work on all those things. That device can be updated and marked as non-compliant. If someone is using Windows 7 or a version of Windows that has been deprecated, we can restrict Windows 7's user ability to log in to the work environment. We can control all this over the admin panel.

If we scale 10 to 50 percent, where new customers manage all their devices. After enrolling all the devices, this work can be done with only one or two people, saving the organization money.

The best part of Intune is device control. If we need to block a user from opening something in their organization's system, we can do it from Intune. If we want to restrict the movement of an organization's data to prevent users from copying the data into Outlook, WhatsApp, or their personal Gmail, we can limit that via Intune. It secures all corporate data.

If they share the data with someone outside the organization, that external person cannot see it until an analyst provides them with access or creates a policy. 

The user experience is good. Users are happy that Intune is managing their work devices. In addition to Windows devices, we can control iOS and other mobile devices. There are good features for managing mobile devices. Work data is stored in different containers, making it easier for users to find their work data. 

In the case of application deployment, we have more services like application updates and patches that can be implemented from the Intune portal. We do not need to outsource these tasks to the device user.

We are currently unable to control aspects of group policy from Teams like we can for GPO. They are still not part of Intune. Microsoft is adding this, but it's currently in preview, and few GPO features have been added to the product. 

I have worked on Intune for the last two years. 

Intune is a stable solution with a lot of capabilities. Most customers who are moving to Intune are also exploring the capabilities of the cloud. 

I rate Intune seven out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft is good, but Intune support is delayed compared to other products. If I make a support ticket on the Intune portal, I get a reply after one or two days. For Exchange or SharePoint, I get a response after an hour, but Intune takes a minimum of a day. 

Positive

One product we can compare Intune with is Jamf Pro. Intune has limitations when managing Mac devices. You can enforce fewer policies because Apple has its own hardware and software. There are lots of limitations of control. Most of my clients use Intune for Windows and Android devices, but Jamf Pro if they have Mac devices.

Deploying Intune is a little complex but not too complicated. At the time of deployment, there is much work to do to join a device to Intune. We have to create a new Windows profile and make users log into the enabled Windows profile. We need to configure all the Office applications and copy users from one to another. It takes 30 to 40 minutes on a single device. 

Intune requires some maintenance, but the customer performs the maintenance once we implement it. We support the customers with issues while they are enrolling the device.

I rate Intune five out of 10 for pricing. It's expensive. 

I rate Intune 10 out of 10. I recommend Intune to every organization that wants to secure user data and control endpoint devices. It can manage other platforms on the market. Google has device management software, but it doesn't have the same scope as Intune. 

It's cost-efficient and cheaper than the other device management and third-party applications available. Intune can control most things, especially Windows devices. Intune has the best compatibility with Microsoft Windows.