Microsoft Intune Reviews

I generally use Microsoft Intune for Autopilot. There is a technology in Microsoft Intune called Autopilot. You register your devices in the devices section in Microsoft Intune, import the hardware hashes from the devices, and import them in the Intune portal specifically for Windows devices. It is then further used for device provisioning for different client machines running Windows 11. Nowadays, different versions of Windows 11 are running. The other use case is for feature and quality updates. I deploy feature and quality updates using ring strategies in Microsoft Intune. Patching and device provisioning are major applications. Additionally, I use Microsoft Intune for endpoint management to manage different endpoints. These are the major tasks I perform in Microsoft Intune.

My user experience with Microsoft Intune is quite good. I would rate it nine out of ten. Whatever task I am performing, I see the progress bar in the top right corner. If I import any hardware hash or perform any other action, I see any merging in process. I basically see monitoring and charts. The support ticket opening process is also great. Overall, this rating is based on the user experience.

Endpoint management from Microsoft Intune side is quite good. Since it is merged with SCCM, I can perform UDI deployment to make devices secure and reliable. I can mitigate different vulnerabilities. These are quite impressive features from the end-user or client machine perspective that I appreciate the most.

I do use endpoint analytics in Microsoft Intune. I have different tools to detect vulnerabilities. For example, Qualys data performs a scan and gives me the number of vulnerabilities on specific devices. In the same way, I use endpoint analytics, which is a feature in Microsoft Intune. If there is any issue with slow startup of devices or if I am deploying any application and it is crashing, I can see this in endpoint analytics in Microsoft Intune. If I talk about startup performance, if few devices are slow to boot, I can analyze the different GPUs or settings for that particular performance. In the same way, if any app is crashing or it is not installing, I use Microsoft Intune analytics to improve the endpoint experience itself.

I have heard about Cloud PKI, but I have not recently gotten any use case for that.

Regarding deployment, as I mentioned, I use ring strategy and Autopilot for the client machine. The only drawback or challenge is that it does not support server deployment. It only supports client machines. That is the major drawback.

First, there should be a feature for server deployment in Microsoft Intune Autopilot so that I can also provision server devices. Most features, for example Active Directory or different features, cannot be accessed directly from the client machine. They have to be accessed from the server. Majorly, server deployment should be included.

A patching monitoring tab should be included in Microsoft Intune. When I am deploying ring strategy, I deploy multiple devices using that ring strategy. If there could be an option for monitoring that shows where the exact patch status is, it would be easier for the Microsoft Intune administrator to know the status.

BigFix is pretty good with respect to monitoring, mass deployment, and bulk deployment. Microsoft Intune is lacking in these areas, and I would say the speed is not as good as what I can see in BigFix. That is the first pro and con. Another thing is that I have to merge Microsoft Intune with on-premise technology. If someone is having a hybrid model with both on-premise and cloud in their infrastructure, I have to merge Microsoft Intune with some on-premise technology, for example SCCM, so that I can migrate the devices using the Intune connector from on-premise to cloud. There has to be some other way to make these migrations faster. That is a con from my side.

The licensing cost is also quite high, specifically for E3 and E5 licenses. Microsoft Intune uses the per-user model. If it can be reduced, then different small or medium enterprise companies can also use Microsoft Intune.

I have been working with Microsoft Intune for the last four to five years.

A couple of times, maybe once in a week, I do experience slowness or backend issues from Microsoft Intune. Majorly, I have seen these issues during EST hours, where one day in a week, I experience degradation.

On a scale of one to ten, where ten is the best, I would rate the stability of Microsoft Intune an eight.

Scalability is quite good. I would rate it nine.

Technical support is at its best in Microsoft Intune. I just go to the tenant admin and open the support case. I would rate it nine out of ten.

I am using other solutions.

Microsoft Intune is a good solution and it is purely based on Azure cloud. I can use all the benefits of Azure cloud in Microsoft Intune and several good features in Microsoft Intune to manage devices. Microsoft Intune should be used by medium to large enterprises. If there is any security organization, such as any banking or healthcare organization where security is the utmost priority, those kinds of organizations should use Microsoft Intune. My overall rating for this product is 8.5 out of 10.

I mostly manage devices with Microsoft Intune, applying policies such as MAM (application management) and MDM. We have companies who have managed devices, mobile devices, laptops, and mobile telephones. 

I work in a company where we serve medium-small companies up to a few enterprise clients, and we have many customers. I work in cloud support, not doing migration to the cloud, just managing it. I make changes if they want to have a group of people who shouldn't have access to company resources anymore with their non-compliant devices, setting the compliance, and conditional access policies. On a daily basis, it's more about application management - making packages, uploading them to Microsoft Intune, and distributing them to groups of people.

My favorite feature about Microsoft Intune is that I have good logging capabilities. I can effectively troubleshoot, though I'm also missing some aspects. 

It gives me a good base to troubleshoot device conflicts of policies, but when an application fails, it doesn't provide enough information about where to look for the issue.

I use advanced endpoint analytics in Microsoft Intune extensively and think it's good but has room for improvements. You see error messages directly, but sometimes you have to search for them and find more information in random blogs from MVPs rather than from Microsoft itself. Everything which is policy related is very good in logging, but everything app related needs improvement.

There can definitely be more transparency in synchronization. Sometimes you push a policy and then you're waiting without knowing if it will take 10 minutes or 25 minutes. Then you go to the device, and it's already there, but the information isn't in Microsoft Intune that it's already there. As an administrator, you are somewhat lost in the synchronization part. There's no information about which process it is and how long it would take. If there was any information that it takes 25 minutes, that would be fine. Sometimes it's fast, sometimes it's not, which can be annoying.

I have been using Microsoft Intune for five years.

We've experienced issues, especially for enterprise customers where we enrolled 150 to 250 devices per week for more than one year in Microsoft Intune. This customer has more than 25,000 devices running. You can have a bad day where 80% of the enrollments failed. The next day it's running with the same devices without any changes, and you don't know why. The downtime isn't officially tracked in your health report. It appears Microsoft Intune undergoes changes without informing customers. It happens for short periods only, but it seems they are doing some changes without informing the customers.

Microsoft Intune is good in scalability in general because we have enterprise customers with many policies and devices.

The quality and speed of support depends on the agent. You can get very basic support or very professional support. My company has premium support, which runs much better. We get routed to the correct persons who give us good answers. What is annoying is when they close a ticket because they are very fast with closing it, you have to provide all the logs again. Once the support said they couldn't see or reopen an old ticket where all the logs were already included, so we needed to do all the fiddler logs again with the customer, which is pretty annoying for them as well.

Neutral

I haven't tried using any alternatives to Microsoft Intune.

Related to what you can do and manage with Microsoft Intune, I would say it's easy. The Windows Autopilot profile is pretty straightforward. Troubleshooting when it fails is challenging. This involves going through forums, and with Dell, some drivers get swiped, making remote management impossible. The initial deployment and setting for Windows Autopilot is straightforward and good.

Once the Autopilot profile is set in Microsoft Intune, it doesn't need any maintenance. This works pretty fine. Later on, you have some apps included and build a bigger profile which has to be set up. If something goes wrong, we check what we did later on, but we don't touch the Autopilot profile much.

We have a team of three people for Microsoft Intune deployment, and we check in teams during integration.

Microsoft is generally super complicated in pricing because they split every package into an extra subscription. I know about the licenses such as Business Premium, E3, E5, F3, and so on. This is straightforward and clear what you get. But with Copilot additional license and endpoint security advanced packages, it's not clear for customers whose main business isn't Microsoft Intune or M365 administration. As a middleman, I have to explain the complicated stuff from Microsoft to the customer.

Regarding enterprise application management, I use it more through Azure portal to give consent to apps and give permissions there. 

I would rate Microsoft Intune an eight out of ten.

My main use case for Microsoft Intune is device management, policy enforcement, application deployment, and ensuring endpoint compliance.

For example, I use Microsoft Intune to enforce BitLocker encryption by creating a compliance policy that automatically checks if devices are encrypted and blocks access to company resources if they are non-compliant. This ensures all endpoints meet security standards without manual investigation.

In addition to that, we are using Microsoft Intune for zero-touch device provisioning with Windows Autopilot, remote troubleshooting, and automated app deployment.

The best features Microsoft Intune offers include centralized device management, strong security compliance, application management, and the ability to easily deploy updates and control apps across all managed devices. Centralized device management, easy app deployment, conditional access, and seamless integration with the Microsoft ecosystem are particularly valuable.

Another great feature of Microsoft Intune is Windows Autopilot, which enables zero-touch device provisioning along with remote actions such as wipe, reset, and lock for lost devices, and detailed compliance policies with conditional access.

Microsoft Intune has positively impacted our organization by simplifying device management, improving security compliance, and reducing manual efforts through automation, enabling faster processes. We have seen a 30 to 40 percent reduction in manual effort. Device onboarding time has reduced from hours to under 30 minutes using Autopilot, and the compliance rate has improved to around 90 to 95 percent due to automated policy enforcement and real-time monitoring.

Microsoft Intune could be improved by making the UI more intuitive, enhancing reporting and analytics for better visibility, simplifying troubleshooting and error messaging, and improving performance and policy sync speed in larger environments.

Besides reporting and the UI, troubleshooting could be clearer with more detailed error logs. Policy sync delays should be reduced, and advanced reporting analytics could be more customizable.

I have been working in my current field for around two to three years.

Microsoft Intune is stable.

Microsoft Intune scales very well, allowing organizations to manage thousands of devices across multiple platforms seamlessly through its cloud-based architecture.

The customer support has been generally good. The support team is knowledgeable and responsive. While sometimes response times can vary for complex issues, they provide helpful guidance and proper resolutions when needed.

We previously used manual device management and basic tools such as on-premises Active Directory and some third-party solution. We switched to Microsoft Intune for its cloud-based management, better security, easier policy enforcement, and seamless integration with the Microsoft ecosystem.

We have seen around 30 to 50 percent time savings, much faster onboarding from hours to minutes, and improved team efficiency without needing additional resources. This clearly shows a strong ROI.

The pricing for Microsoft Intune is per user per month and quite reasonable. In many cases, it is already included in Microsoft 365 licenses. It is cost-effective and easy to manage, especially if you are already on Microsoft 365 licensing. The setup does not require a heavy investment.

We looked at tools such as VMware Workspace ONE and ManageEngine Endpoint Central and UEM as they are common alternatives in this space. These tools offer strong device management and automation. We chose Microsoft Intune mainly because it integrates very well with the Microsoft ecosystem, it is easy to manage, and it fits better with our existing infrastructure.

My advice to others looking into using Microsoft Intune is to make sure to plan your device management and compliance policies clearly from the start, especially if you are in a Microsoft environment. Take time to understand Autopilot and conditional access. Once properly configured, it will significantly simplify device management and improve security.

Cloud control made simple, device secured with ease, and workflow runs smoothly. Microsoft Intune is a reliable and effective solution for modern endpoint management. It simplifies device control, strengthens security, and works especially well with the Microsoft ecosystem, making day-to-day operations smoother and more efficient. I would rate this product an 8 out of 10.

My use case for Microsoft Intune is for remote access and configuration management, and it primarily serves security purposes.

The lot of time we saved at deployment. 

Overall, the best features of Microsoft Intune are its ease of management and robust security protocols, which are what I value most about it and how it stands out. Copilot helps in keeping my environment protected by offering real-time assistance with security protocols and compliance checks.

Advanced endpoint analytics in Microsoft Intune help me to detect and remediate anomalies effectively.

Areas that have room for improvement in Microsoft Intune include network dependency, among other factors.

I have been using Microsoft Intune for some time, and my experience with it is extensive.

I would rate the stability of Microsoft Intune highly; I rarely experience downtime, bugs, or glitches. The stability is very high, with minimal issues.

I would rate the scalability of Microsoft Intune as an 8 from 1 to 10.

I would rate the technical support for Microsoft Intune as a 10 from 1 to 10.

The deployment of Microsoft Intune is generally easy, although I do encounter some complexities at times, and I have had challenges deploying it. Deploying Microsoft Intune is often a mixed experience; while it is easy, I have faced challenges at times.

The return on investment I have seen is about 20%. It has saved me time and resources, but quantifying a specific amount has been challenging.

I would compare Microsoft Intune favorably with other products and vendors on the market, emphasizing its integration capabilities and user experience.

Microsoft Intune is deployed in a hybrid model. I use it on Azure cloud, and the deployment time can vary, typically ranging from days to weeks. Approximately 100 users in Capgemini work with Microsoft Intune. My clients are primarily in the medium to enterprise business sector. The solution does require maintenance, and it is complex to maintain, especially regarding updates, patching, and releases. My thoughts on the pricing of Microsoft Intune are that it is fairly priced considering the features offered. From one to 10, I think Microsoft Intune is around a 5 in terms of being cost-efficient. I would rate the pricing of Microsoft Intune as a 5, where 1 is cheap and 10 is expensive. I am using the Enterprise Application Management feature, and it has been beneficial. I would definitely recommend Microsoft Intune to other users due to its features and support. My overall rating for this review is 9.

Microsoft Intune serves as a reliable endpoint management solution for handling device compliance, deployment, and security policies across Windows, macOS, Android, and iOS devices. The cloud-based setup makes remote management easy, though policy troubleshooting can sometimes be time-consuming in complex environments.

In my day-to-day work, Microsoft Intune allows us to push compliance policies and deploy applications remotely. For example, when a new employee joins, their laptop automatically receives security settings, VPN configurations, and required apps without manual setup. This saves significant onboarding time.

Microsoft Intune has been especially useful for managing remote and hybrid users because we can enforce encryption, password policies, and device compliance without needing the devices physically in the office.

Microsoft Intune offers centralized device and security management features. The features I use most frequently are app deployment, compliance policies, conditional access, Windows Autopilot provisioning, and the ability to manage Windows, macOS, Android, and iOS devices from one console. The integration with Microsoft Defender and Entra ID also makes endpoint security much stronger for remote users.

Centralized device management in Microsoft Intune has helped our organization reduce manual IT work because we can manage all company devices from a single dashboard instead of configuring systems one by one. Conditional Access has been especially helpful for blocking any unmanaged or non-compliant devices from accessing company resources such as Outlook or Teams, which improves security for remote employees and reduces the risk of data leaks.

Windows Autopilot stood out to me as an exceptional feature because it made device provisioning much faster. We can ship laptops directly to users, and once they sign in, the device automatically configures itself with company apps, policies, and security settings. This saves considerable setup time for the IT team.

Microsoft Intune has positively impacted our organization by improving our overall security posture through enforcing compliance policies and reducing access from unmanaged devices. It has also reduced IT workload significantly because software deployment, patching, and device configuration are now automated. This freed the team to focus on higher-priority tasks and streamline support work.

After implementing Microsoft Intune, we saw onboarding time drop from several hours to approximately 30 to 45 minutes using Autopilot, and device-related support tickets were reduced because most policies and app deployments became automated. One area where Microsoft Intune could improve is policy troubleshooting and reporting. Identifying why a device is non-compliant or why a deployment failed can sometimes require longer than expected. Microsoft Intune could improve its reporting and troubleshooting experience, particularly for policy conflicts, issues, and failed deployments. The admin console is powerful, but navigating settings can sometimes be complex, so a more streamlined user interface and clearer error reporting would help IT teams troubleshoot faster.

Another improvement would be greater consistency in the admin interface because some settings are scattered across different Microsoft portals. More detailed documentation and simpler guidance for advanced policy integrations would also help reduce the learning curve for new use cases.

Microsoft Intune has been stable for us in day-to-day device management and policy enforcement. We rarely face major outages, and it handles large numbers of devices reliably, especially in Microsoft-focused environments. That said, there can occasionally be delays with policy syncs and deployments or device check-ins, particularly during large updates or back-end service changes.

Microsoft Intune scales very effectively in enterprise environments, especially for organizations managing thousands of devices across different locations and operating systems. We have been able to manage remote users, automate deployments, and enforce policies centrally without needing additional on-premises infrastructure. The cloud-based architecture also makes it easier to expand device management as the organization grows. However, at very large scale, proper policy organization and role-based administration become important to avoid complexity in the admin console.

Customer support for Microsoft Intune has been decent overall, especially for standard issues and documentation. Response quality can vary depending on the complexity of the case. For basic configuration or deployment issues, we typically receive helpful guidance quickly. More advanced troubleshooting sometimes requires multiple escalations and longer response times.

We previously used a combination of on-premises Group Policy and a basic third-party mobile device management solution. We switched to Microsoft Intune because we needed better cloud-based management for remote users, stronger integration with Microsoft 365, and a single platform for managing both security policies and devices.

We achieved solid return on investment with Microsoft Intune, primarily through time savings and reduced manual IT effort. Device onboarding became much faster with Autopilot, reducing setup time from several hours to under one hour. Automated patching and policy management reduced repetitive support tasks and device-related tickets for the IT team.

Our experience with pricing for Microsoft Intune has been fairly positive because it was already included with our Microsoft 365 licensing. We did not encounter major additional setup costs. The licensing can be somewhat confusing at first with the different Microsoft 365 and Intune plans, but once understood, it became cost-effective compared to managing multiple third-party tools.

Before selecting Microsoft Intune, we evaluated solutions such as VMware Workspace ONE and Jamf Pro. Microsoft Intune stood out because of its tight integration with Microsoft 365, easier management for Windows devices, and better overall value with our existing Microsoft ecosystem.

My advice for anyone considering Microsoft Intune is to plan your device policies and user groups carefully before deployment. It works best when integrated properly with Microsoft 365 and Entra ID, and starting with a pilot group helps avoid policy conflicts and roll-out issues later.

Microsoft Intune has been a strong solution for modern endpoint management, especially for organizations already invested in the Microsoft ecosystem. It simplified remote device management, improved security compliance, and reduced manual IT effort, making it a valuable long-term platform despite a few areas where the admin experience could still improve. I would rate this product an 8 out of 10.

We have an auto-enrollment process. There are many features in Microsoft Intune. Particularly, my expertise is with Autopilot enrollment and app deployment to workstations and mobile device management. Microsoft Intune is quite comprehensive in its capabilities.

My main use cases revolve around supporting customers who have enrollment processes for laptops that come out of the warehouses. We support that and push packages, set up conditional access, and manage their devices from Microsoft Intune. We handle reset, reboot, deploying app software and deploying apps such as Microsoft 365, any kind of third-party software, Microsoft products, and removing them from an operations point of view. We are a managed service provider for many technologies, and Microsoft Intune is one of them.

Microsoft Intune has affected IT productivity in my customers' organizations overall greatly. It has been a significant help. Microsoft Intune Autopilot enrollment plays a big part in supporting all of these machines, such as users being onboarded, provisioning computers, and mobile devices. All of that is managed from Microsoft Intune, which has simplified the process. Conditional access, determining which users get which apps, what access they have, and what privileges they need, is all handled and managed by Microsoft Intune. This is a great feature that is extensively used by many organizations and administrators.

Policies can be easily managed with Intune. As everything shifts to the cloud, many organizations will likely transition to a remote-only or cloud-only model in the future. They will be using Azure Active Directory, from which these policies will be derived, rather than traditional Active Directory group policies, similar to how organizational units function.

Microsoft Intune brings together all of the endpoint and security management tools in one place. Any endpoint security solution, such as Cortex XDR, Qualys, CyberArk, or CrowdStrike, can be deployed out of the box through Microsoft Intune during the Autopilot process. 

From a security perspective, if a device is lost, you can wipe that machine, laptop, workstation, or mobile device. That is the kind of control you have when using Microsoft Intune. You can effectively manage the device.

I wish there was a way to exclude certain applications based on groups. It is currently making it difficult as we need to keep creating new groups and add those users to that group to segregate. This creates a situation where we must specify which user gets which application and which user should not get certain applications installed. I wish there was an easier way to exclude based on user and not just devices. That is one of the downsides we are facing; we have to keep creating new groups to avoid conflict. The way the apps are getting deployed, the checkboxes for deleting previous versions are actually creating more conflicts than fixing problems. I am certain many people are struggling with that.

The best example I can provide is related to an application I use—Microsoft 365. Microsoft 365 includes a lot of products, such as PowerPoint, Excel, Microsoft Access, and Copilot, among others. However, you don't want everyone to have Microsoft Access installed on all the computers since it's quite outdated and not necessarily needed for everyone. For instance, if I have ten people and I want just one person to have access to Microsoft Access, there's no straightforward way to do that directly. The system doesn't allow me to simply select a user and give them access while ignoring the others. As a result, we often end up creating a new application within Microsoft Intune. This requires putting the user into a separate group to make them eligible for access, while other users stay outside of that group. This process creates unnecessary complexity because it adds more elements to manage. It would be ideal if Microsoft could simplify this process by allowing us to include specific individuals in a group or exclude others more easily.

I have been working with Microsoft Intune for the last six months. 

Microsoft Intune is very stable. It is hosted and managed by Microsoft. When it comes to shared responsibility, there is nothing except for administrators to manage from the operations point of view. Everything else is readily available and quite stable.

There are no real scalability limitations with Microsoft Intune. It all depends on how many E5 licenses or E2 licenses the customer is ready to purchase. The cost typically increases by $4 per computer based on how many laptops or workstations are being managed. It depends on the contracts between the vendor and the customer.

If we encounter problems we cannot solve, we reach out to Microsoft support. There are some MVPs (Most Valuable Persons) who are experts in Microsoft Intune, and we work with Microsoft support when issues become too complicated to resolve independently.

Positive

The deployment model can be either Entra devices only or hybrid. Organizations with on-premises infrastructure might opt for hybrid deployment because some group policies based on organizational units remain legacy. Not everyone can move entirely to the cloud. Customers who are consolidating everything in their data center may choose to go completely cloud-based with Entra devices. The future trajectory suggests everything will be in Microsoft Intune within the next five to ten years.

I have been involved in configuring Microsoft Intune rather than deploying it. We activate Microsoft Intune, set up the applications, dynamic groups, deployment profile, MDM profile, configuration, and encryption. When everything is set up and ready, we begin the enrollment of new devices, and out-of-the-box machines get all the apps installed, completely provisioned from Microsoft Intune. We perform this service for many of our clients.

The process is not straightforward. The process begins with assessment and requirement gathering, along with several preliminary tasks, such as pre-migration activities. For instance, we need to analyze all the group policies to determine which ones are compatible with the new system. I would consider this a project in itself. There are numerous features available in Microsoft Intune, but the client won't use every single one. Ultimately, it depends on the customer's goals and the recommendations provided by the solution architect. What the customer chooses to implement will also play a crucial role in this process.

It has helped save costs. Many people were using third-party tools, such as KACE or Quest, for patching and other tasks. However, Microsoft Intune has streamlined and automated these processes. This has significantly simplified the management of users and devices. Generally, just one or two people can efficiently handle a lot of administrative tasks using Microsoft Intune. For instance, they can ensure that workstations are compliant and manage various aspects of IT administration.

Microsoft Intune not only saves costs by reducing the number of personnel needed but also offers a comprehensive solution for managing laptops, applications, security, individual access, and enrollment. My customers have greatly benefited from these capabilities.

I would rate Microsoft Intune an eight out of ten.

The purpose of using Microsoft Intune is to provide security for all company devices and company data. 

As an Intune Consultant, the role involves suggesting ideas for implementation.

I use Microsoft's Copilot in Microsoft Intune. It helps tremendously. I work as an architect and consultant in Microsoft Intune, and it assists majorly in developing new scripts and customizations which do not have built-in templates in Microsoft Intune. We can customize our requirements using Copilot, which helps significantly in that aspect.

The Enterprise Application Management feature in Microsoft Intune helps tremendously with deployment because one of the strongest points is pushing out customized applications as Win32. Even without a package, deployment can be done as a PowerShell script. Customization in deploying applications can be managed using application protection policies, which provide control of company data even on personal machines, such as iOS or Android, without interrupting privacy.

I particularly appreciate the features for Windows machines because it's a Microsoft product that specializes in developing Windows machines and can manage them effectively. Any data on machines or devices can be monitored professionally and completely while securing the data. The security implementation has been developed brilliantly over the past few years, and its cost is very efficient compared to other MDM tools.

Microsoft Intune is very easy to understand for anyone. 

Certificate management within Microsoft Intune's Suite is still under development. It's not very reliable compared to other certificate tools, though it has made good progress within a couple of years. Microsoft Intune could provide more features in certificate management, delivery optimization, patching, and technical support. These areas have scope for significant improvement.

It has been around four years.

Nothing is perfect. Microsoft Intune deserves a rating of nine out of ten. It performs very well with no downtime at all.

Microsoft Intune is scalable but still has scope for improvement.

Our clients are large enterprise businesses. In my organization, there are many users specializing in Microsoft Intune, but in my project, I'm the main one. Overall, the company supports nearly 1,000 clients, but I'm not exactly sure how many Intune administrators we have. However, I can say there are quite a few.

The technical support of Microsoft Intune rates at seven out of ten. Having worked for Microsoft support previously, providing answers to organizational tickets, the experience was good. Many employees had great knowledge from their experience working at Microsoft. However, due to workload, organizations sometimes find it difficult to get timely answers when they reach out to Microsoft support.

Neutral

We have a hybrid deployment method for Microsoft Intune. One client was using SCCM previously, and we migrated all policies and related configurations to Microsoft Intune. We have already had machines set up, so all the previous machines are in a co-managed or hybrid state, you could say. But right now, we are enrolling all our machines with Autopilot, meaning they are all cloud machines.

It doesn't require much maintenance. If you have a subscription, your license takes care of everything. You don’t need to worry about updates or anything else; it updates automatically without user intervention or admin approval

It saves time, money, and resources. When there was a local liaison, managing everything was a significant challenge. Without utilizing any MDM tools, handling all the organizational units (OUs) was quite difficult. It has become much easier. I would estimate it to be around 60% to 70% easier. It is very beneficial. In terms of reliability and ease of use, it excels.

Microsoft Intune is very cost-efficient, which is a major reason for its rapid growth compared to other tools in the industry. Additionally, its ability to integrate configurations and collaborate with services like Copilot and recent offerings from Microsoft makes it stand out, allowing it to grow at a faster pace compared to other MDM tools.

Microsoft Intune is recommended for Windows management specifically. However, it's not recommended for managing iOS devices or Mac devices, as Apple products don't have many configurations within Microsoft Intune. Other MDM tools such as Jamf are superior for Apple products, though not as good for Windows, which is why organizations often use both tools together.

I would rate Microsoft Intune an eight out of ten.

Microsoft Intune was used by the organization that hired me. Microsoft Intune allows organizations to manage all devices. It is a cloud-based service that helps organizations manage and secure their devices such as laptops, smartphones, and iOS devices. We primarily used it for managing applications through mobile application management (MAM) and mobile device management (MDM). Device enrollment is another purpose of Microsoft Intune which automatically configures devices within the organization with their work accounts.

In the Microsoft Intune company portal, there is an option to develop and deploy applications that are trusted by the company. 

Additional use cases include compliance, conditional access, and endpoint security. To summarize, the main purposes are MDM for laptops, mobiles, and iOS devices; MAM; device enrollment; app deployment; compliance and conditional access; and endpoint security. I had access to compliance and conditional access, endpoint security, device enrollment, MDM, and MAM. App deployment was not part of my responsibilities.

Microsoft Intune provides valuable functionality for locating lost devices. Through the Endpoint Management Admin Center within Microsoft Intune, we can find the last seen location of enrolled devices that may have been stolen or misplaced. This requires device numbers, serial numbers, usernames, or IMEI for mobile phones.

Another excellent feature is the ability to enroll devices and set compliance status. Notifications can be pushed from the Microsoft Intune Admin Center to users' portals, informing them when devices are not compliant and providing steps to follow company policies.

Microsoft Intune saves approximately 20% of time and resources through automated features that enable quick resolution and guided SOPs. It reduces troubleshooting and support time by 30-40%. The security compliance capabilities make it widely adopted across organizations. The user experience is robust, and the pricing model is budget-friendly. Its integration with Azure AD and Microsoft 365 applications adds significant value.

Microsoft Intune could be improved in several key areas. Policy and app deployment should be faster, as it currently takes between minutes to hours to apply, with an average of one hour. This could be enhanced by adding real-time sync or faster push intervals for critical changes. When users transition between devices, the process takes 45 minutes to one hour, which could be optimized.

The error reporting system needs improvement, particularly for automatic retry of failed installations. In the Microsoft Intune company portal, when application downloads fail, users must manually reinitiate the installation process. An automatic retry mechanism for failed installations would enhance the user experience.

I have been using Microsoft Intune since 2019.

Microsoft Intune demonstrates excellent stability with a rating of nine out of ten, providing a very stable experience.

In my role as an IT administrator, I have overseen Microsoft Intune implementation for approximately 10,000 users across multiple organizations. My previous organization had 7,000 plus users, and my current organization has between 3,000 to 4,000 users.

When comparing Microsoft Intune to alternatives such as Unified Endpoint Management solutions, VMware Workspace One, and Google Endpoint Management, each has distinct strengths. For Microsoft environments, Microsoft Intune rates five out of five, while Ivanti (formerly MobileIron) rates three out of five, and Google Endpoint Management rates two out of five.

For iOS environments, Microsoft Intune rates three out of five due to compatibility issues, MobileIron Ivanti rates four out of five, and Google Endpoint Management rates 3.5 out of five. Regarding user interface and ease of use, Microsoft Intune scores five out of five, Ivanti three out of five, and Google Endpoint Management four out of five.

In security and compliance, Microsoft Intune achieves five out of five, Ivanti four out of five, and Google Endpoint Management three out of five. For budget-friendliness, both Microsoft Intune and Google Endpoint Management rate five out of five, while Ivanti rates four out of five.

Microsoft Intune provides an excellent experience for both employees and IT administrators. While the user interface requires some initial guidance for new users, it is straightforward for IT administrators to navigate. The platform ensures device compliance effectively, earning a five out of five rating for user-friendliness.

Maintenance requirements for Microsoft Intune are minimal compared to on-premises applications such as SCCM or Active Directory Certificate Services. Required maintenance includes policy and app management, monitoring and troubleshooting, OS and app updates, and license and user management.

I recommend Microsoft Intune to other users and companies due to its password policies, seamless Microsoft system integration, multi-platform support (Windows, iOS, Android, macOS), simplified device enrollment management, cost-effectiveness, and smooth user experience. It represents a future-proof investment for companies.

Regarding Mobile Application Management, I have worked with MAM policies including conditional launch, PIN encryption, data encryption within apps, and copy-paste restrictions.

Overall rating: nine out of ten.