Microsoft Intune Reviews

Our main use case for Microsoft Intune is patching. We use Microsoft Intune for patching, specifically Windows patching.

The user experience of Microsoft Intune is quite good because there's not much disturbance in the background; it's just running in the background.

The most valuable features of Microsoft Intune include remote updates. The update runs in the background, so there's no need in most cases to go on-site to do it.

Based on my experience and my team's feedback, one thing that could be better in Microsoft Intune is the file size, as it is quite large at times. Sometimes the file size is too large. The space taken on some hard disks may be too large for the patches that run on them, as we're limiting all these local storage to encourage our users to store on OneDrive rather than on local drives.

For additional functionality, I suggest that Microsoft could expand on asset management. Since the platform is there, they could develop it into a full-fledged asset management system.

I've been working with Microsoft Intune for around a year.

It's stable. I would rate the stability of Microsoft Intune a nine out of ten.

Technical support from Microsoft is quite good, especially because we subscribe to the premium services.

We are currently working with a hybrid deployment model. It's a hybrid because our Active Directory is still on-premises, but other services are online.

As for advanced Endpoint Analytics in the Microsoft Intune Suite, we are still working on it. We only completed the implementation for the basic functions at the end of last year. We are moving in stages.

I'm not sure about the pricing of Microsoft Intune because I didn't buy it. My team members bundled it together with their Microsoft solutions, including Microsoft 365 and related products.

I haven't used different solutions similar to Microsoft Intune or made any comparisons with other products at the moment. In the past, the nearest solution would be BigFix, but you cannot compare it to Microsoft Intune because BigFix was an older system, and you needed more technical knowledge to run it. You needed to know how to do scripting and related tasks.

If they could also make Microsoft Intune a full-fledged asset management system, it would be the best.

I would rate Microsoft Intune an eight out of ten.

We are a Microsoft vendor, not an Intune user. I have deployed Intune for several customers who use this product for business. Our clients use Intune for device management and data security, which gives them control over end-user devices.

Previously, we used a device manager and had a local Active Directory. However, most of our SME customers do not have a local Active Directory set up in their organization that allows them to control their devices. Intune does not require any local AD. It's a cloud application. We can directly join the user devices to the cloud, and the organization manages them. We have enterprise customers and also SMBs, but most of our clients have less than 100 users. 

One of my Indian clients previously had all their devices at the workplace. None of the devices were joined to an Active Directory, so they had to install applications on each device individually. With the help of Intune, we could push the applications to all the portal users simultaneously. 

We have to create a group, assign an application to it, and automatically install it on the user's devices. We also apply the company logo and desktop wallpaper via Intune, which a tech user can change. We can also find the exact location of the devices where the user is sitting.

We also have the option to enroll hybrid devices with Intune. We can enroll users'  devices and separate work and personal data. The devices on the local Active Directory can be joined to Intune. 

Privilege identity management helps. Let's say someone is a company administrator for five to ten days. We can create a dual administrator role for that user for seven days. I can create a PIM role and assign it to the user for seven days, after which the role will be deleted automatically. 

Intune provides routine management of user devices. Once the device is not enrolled in any domain or Active Directory, the IT person must delete every user device to change anything. Intune can work on all those things. That device can be updated and marked as non-compliant. If someone is using Windows 7 or a version of Windows that has been deprecated, we can restrict Windows 7's user ability to log in to the work environment. We can control all this over the admin panel.

If we scale 10 to 50 percent, where new customers manage all their devices. After enrolling all the devices, this work can be done with only one or two people, saving the organization money.

The best part of Intune is device control. If we need to block a user from opening something in their organization's system, we can do it from Intune. If we want to restrict the movement of an organization's data to prevent users from copying the data into Outlook, WhatsApp, or their personal Gmail, we can limit that via Intune. It secures all corporate data.

If they share the data with someone outside the organization, that external person cannot see it until an analyst provides them with access or creates a policy. 

The user experience is good. Users are happy that Intune is managing their work devices. In addition to Windows devices, we can control iOS and other mobile devices. There are good features for managing mobile devices. Work data is stored in different containers, making it easier for users to find their work data. 

In the case of application deployment, we have more services like application updates and patches that can be implemented from the Intune portal. We do not need to outsource these tasks to the device user.

We are currently unable to control aspects of group policy from Teams like we can for GPO. They are still not part of Intune. Microsoft is adding this, but it's currently in preview, and few GPO features have been added to the product. 

I have worked on Intune for the last two years. 

Intune is a stable solution with a lot of capabilities. Most customers who are moving to Intune are also exploring the capabilities of the cloud. 

I rate Intune seven out of 10 for scalability.

I rate Microsoft support eight out of 10. Microsoft is good, but Intune support is delayed compared to other products. If I make a support ticket on the Intune portal, I get a reply after one or two days. For Exchange or SharePoint, I get a response after an hour, but Intune takes a minimum of a day. 

Positive

One product we can compare Intune with is Jamf Pro. Intune has limitations when managing Mac devices. You can enforce fewer policies because Apple has its own hardware and software. There are lots of limitations of control. Most of my clients use Intune for Windows and Android devices, but Jamf Pro if they have Mac devices.

Deploying Intune is a little complex but not too complicated. At the time of deployment, there is much work to do to join a device to Intune. We have to create a new Windows profile and make users log into the enabled Windows profile. We need to configure all the Office applications and copy users from one to another. It takes 30 to 40 minutes on a single device. 

Intune requires some maintenance, but the customer performs the maintenance once we implement it. We support the customers with issues while they are enrolling the device.

I rate Intune five out of 10 for pricing. It's expensive. 

I rate Intune 10 out of 10. I recommend Intune to every organization that wants to secure user data and control endpoint devices. It can manage other platforms on the market. Google has device management software, but it doesn't have the same scope as Intune. 

It's cost-efficient and cheaper than the other device management and third-party applications available. Intune can control most things, especially Windows devices. Intune has the best compatibility with Microsoft Windows.

We use it for pretty much everything related to endpoint management. We use it for bring-your-own-devices and corporate-related devices such as laptops and tablets. We have various operating systems such as Windows, iOS, and Android.

Microsoft Intune is helping to streamline operations and minimize administrative overhead.

We are using the Enterprise Application Management features of Intune Suite. It is very well designed and very well suited for Microsoft-related applications. Third-party applications can require some workaround. They do not always organically fit into the solution, but, overall, it is a great option to have visibility into what the users are using and be able to set up some policies based on that. We can allow applications or deny applications. We can manage what users can onboard. Overall, it is a great solution. We can definitely simplify and streamline some security operations.

Microsoft Intune is great for securing hybrid work and protecting data on company and BYO devices. What is more important is that it is not a static product. It is not that the product is very well established and not moving anywhere. It is constantly evolving. Microsoft seems to be spending lots of resources trying to improve and bring new features. That is great.

We are starting with Intune's Endpoint Privilege Management feature. It definitely impacts productivity. It is great and definitely helps a lot. It helps minimize the attack surface because you do not have elevated privileges accounts available all the time. It helps mitigate or shrink the potential impact or potential entry points into the network.

Microsoft Intune has helped us to manage the accounts with elevated privileges. We are a managed service provider. We sometimes have big turnarounds on the help desk. By their job definition, many of them are supposed to have access to different clients and different sensitive areas. It helps us to mitigate and manage these accounts, and, as a result, to be more secure. We can make sure that those accounts are not being distributed very freely. We have control over their actions. We have control over what they are doing. We have full visibility and accountability.

Microsoft Intune is easy to use, and it is able to enforce policies towards multiple devices. It is able to bring multiple classes of devices into the same security posture. I found that very useful.

The interoperability or communication with a different platform can be better. It is a two-way street. It is not only about Microsoft. The other platforms also have to be willing to share some information, but that absolutely can be improved.

I have been using Microsoft Intune for five to six years.

It depends on the level of access you have. We are a managed service provider, so we do have access to Microsoft. Generally, it is okay if you are able to find the right parties to talk to. It can definitely be improved.

Neutral

We did not use any other solution previously.

First of all, we do not have to deploy any third-party privileged account management solution. That is one tangible benefit. An indirect benefit is that by protecting your environment and making it more secure, you are potentially avoiding any downtime. It is hard to quantify what that downtime cost could be.

If an account with elevated privileges is compromised, you need to perform a lot of work. You need to change the password, disable the account, and recreate another account, so 10% to 15% of the downtime definitely could have been avoided.

We use Defender ATP and E5 licenses.

Intune was an organic choice because we are a Microsoft shop. We use everything that Microsoft can offer.

Microsoft Intune is a great solution. If you have a Microsoft environment, it is definitely the way to go. It can help you to streamline operations and simplify a lot of things. If you go into a multi-cloud environment where you have AWS, GCP, or any other cloud workloads, it may be a little bit more complicated. If you are a Microsoft shop, it is the way to go.

In terms of user experience, for the end users, it is pretty much seamless. It is more on the administrative side. If you properly configure it, it is a relatively seamless experience.

We have just started working with Microsoft Copilot in Intune. It is a very fresh solution. It has just been released, so we are setting up use cases and working with Copilot. We have a Copilot for Teams. We have a Copilot for Microsoft Office that we are utilizing. We have started playing with Copilot for some security operations. It is yet to be determined how much value it can bring. Generally, it can help you analyze and optimize some workloads and events more efficiently, effectively, and quickly. There is great potential, but we will see how it is in real life.

I would rate Microsoft Intune an eight out of ten.

I'm part of a break/fix team using Intune to support our clients. We support Android, iOS, Mac, and Windows devices and help customers with enrollment issues, Apple configuration problems, app deployment, and other issues. My clients are small-to-medium-sized.

Intune brings all endpoints and security management into one place. Through the same portal, we can manage policies and deploy apps. If we push apps through the portal, they can be deployed to all users. 

Intune makes it easier to manage devices, saving us time. It solves many challenges we face in deploying and configuring devices. When something breaks, we need to investigate, starting with the configuration. For example, the kiosks are Android-based devices. When we have issues, we need to check to ensure everything is configured correctly on the portal. 

Intune's security features for Apple iOS and Mac OS are helpful. We can check enrollment, manage public and private settings, and manage the organization's data using security key features. Like the MCM interface, the Intune portal is flexible and easy to understand.

The Cloud PKI feature helps us manage our complex certificate infrastructure across our cloud and on-prem Active Directories. We are using Copilot. The settings are controlled by Intune and SCCM, so Copilot works the same regardless of the product we use. It simplifies IT operations and helps us manage both. We can use AD Connect to integrate our on-prem Active Directory, connect with hybrid devices, and manage every device in the organization.

Intune could add more Linux security features and more integration with on-prem devices. The application deployments can also be improved. 

I have used Intune for around two years.

I rate Intune nine out of 10 for stability. 

I rate Intune nine out of 10 for scalability. 

I rate Microsoft support nine out of 10. 

Positive

We use SCCM to manage users and patches. We can push all the patches using Microsoft releases patches where we can push in a one we're using a one group and meeting one group, and then we are pushing it through this patch management.

Deploying Intune can take one to three days, depending on the configuration required. 

I rate Intune seven out of 10 for pricing.

I rate Microsoft Intune nine out of 10. I recommend Intune because it's more flexible, user-friendly, and has more security features. I work with Microsoft technologies like SCCM, Windows Server, and Intune. 

I enrolled devices with Microsoft Intune and applied policies and pushed applications. The main use cases for Microsoft Intune involve device management and policy implementation.

It excels at endpoint management and security. When managing a large number of devices in an organization, it becomes easy to handle them on one platform using Microsoft Intune. For security purposes, we can push many applications through Microsoft Intune to numerous devices in our organization, making it the best solution.

For organizations with numerous devices, Microsoft Intune's application management is beneficial because IT administrators don't need to push applications to devices individually. This makes the process easier, more time-efficient, and cost-effective.

Microsoft Intune is best for Windows devices and security in Office 365 and Microsoft-related enterprise environments. It's a nice platform for endpoint management.

Microsoft Intune lacks live location tracking capabilities. Improvements should be made in terms of MDM platforms for other devices. Microsoft Intune could be enhanced for better implementation across various device types.

I have been working with Microsoft Intune for two years.

I don't have detailed information about specific downtime or performance issues, but these issues can be there on any platform.

Microsoft Intune is a good platform for scalability. There were many challenges, but with experience, the scalability improved.

Microsoft support is good. However, compared to SOTI MobiControl, Microsoft Intune needs more efficient technical support. SOTI MobiControl's technical support is superior to Microsoft Intune's support.

Neutral

I have worked with SOTI MobiControl. The choice depends on customer requirements. If the customer's needs align with the capabilities of Intune, we choose that option. Conversely, if the requirements fit better with SOTI MobiControl, we go in that direction. Ultimately, it all depends on the customer's input. Intune is best suited for enterprises using a Microsoft environment, especially for Windows devices. However,  SOTI MobiControl is more appropriate for Android devices. While Intune can also support Android and iOS, it is particularly optimized for Windows. For iOS devices, both platforms offer similar capabilities due to platform-level restrictions that limit endpoint management solutions. Therefore, we evaluate each option based on the specific needs of the customer and their device ecosystem.

I primarily work with device enrollment and am not certain about the complete initial setup process of Microsoft Intune. Device enrollment is easy. I've worked with iOS, Android, and Windows as well.

With one user base license, we can use Intune for up to five devices. However, with SOTI MobiControl, each license is tied to a single device, meaning one license is dedicated to one device only.

I would rate Microsoft Intune a seven out of ten. I find SOTI MobiControl to be the best, which I would rate a ten out of ten.

We are using Intune for managing endpoint devices with zero-trust principles. The devices are not domain-connected because most people work from home. We do not trust these computers, so we use Intune to deploy and enforce policies related to updates, software installation, and management of admin users.

When we are using Microsoft products on mobile devices, we are using Intune to enforce policies on them.

Our usage is very simple. We are using Intune to manage devices that we do not trust. We are using Windows 365, and we install all applications only on these virtual PCs in the cloud. We do not have anything on endpoint devices. Not even a simple document can be downloaded there. We just have an access point to Windows 365 machines in the cloud. We are a financial company. There are not too many enterprise applications that we can use. We prefer to use zero trust. This means no there is no data on company devices at all. It is only on the cloud machines. It is easier to control one perimeter than 10,000 or 20,000 machines. We can reduce the attack surface in this way.

Intune increases the productivity of our IT team. 

There is a reduced cost of ownership and management. We do not need a lot of additional training. Administrators can share roles because its interface is similar to other Microsoft solutions. With one or two days of training, administrators can start working with it. There are a lot of Windows specialists in the market.

We work completely in a Microsoft environment. Its interface is similar to other Microsoft solutions that we are using such as Microsoft Defender. So far, for our administrators, it is easy to use. 

At the moment, we need more flexibility. We have some offices migrating to Windows 11 remotely. Sometimes, it is difficult to manage image installation because we have to collect some information before starting image deployment. Currently, Intune cannot collect the information needed for deploying new images.

We have been using Microsoft Intune for three years. I also used it for two years in my previous work.

Intune is a stable product with no significant issues. We have standardized hardware. We do not have a wide variety of endpoints.

Intune is quite scalable. We started with 3,000 machines, and we now manage 15,000 machines. Our endpoints will probably grow.

I have not interacted with Microsoft technical support personally, but I was satisfied with their support in my previous company.

Positive

I have not used any other solution in my current company.

We are using the public cloud for access, but everything is closed. There is no public access to infrastructure. Access is only through the cloud. There is no VPN or any other way.

I was involved in the security assessment in the beginning. The initial setup was quite easy because we did not look for very complicated functions. We did face some issues with the multi-user mode but resolved them. It took us about a month.

It requires maintenance. You have to review regular policies and adjust policies when something changes in the environment or you deploy new applications. Its maintenance is mostly done in-house. Only in a very complicated situation, we involve a third-party consultant.

We performed the deployment with the assistance of a third-party consulting company, not resellers. Three engineers from our team were involved.

Cost is not my department, but the product is included in the E5 license that we already pay for every user, so no additional cost is incurred.

We have not evaluated other options because Microsoft Intune is included in our E5 licensing. I would prefer to use the VMware solution, but that is not possible because Intune is included with our existing license. Buying any other solution will result in additional costs.

I recommend doing thorough homework and testing everything in a test environment. After ensuring that everything works fine, proceed with the final deployment.

It is not the best solution. It requires a bit more effort in management, but it works. It is not so flexible, but considering it is free for us, it is okay.

We are doing experiments with Copilot to see how we can use it. For some users, it is deployed, and we will be testing it actively. We are mainly using it to make emails, presentations, and documents better for the end users who will read them. We are an international company, and English is not the primary language for 99% of people. Copilot makes the documents more readable. We have not yet tested Copilot in Intune for security functions. We have SIEM and other security tools for insights. At the moment, we do not have a big need to start experimenting with Copilot in Intune. After we finish with the end-user use cases, we can switch focus on daily operations for IT teams.

Intune has not helped us consolidate vendors because we do the installation on the cloud. On endpoints, we have nothing.

I would rate Intune a seven out of ten because it is not so flexible.

It is being used for device management. We have a couple of clients using it at the moment. They have Windows, Android, and iPhone devices that are managed by it. We have another client with only three devices, but they are Windows SE devices with the cut-down version of Windows.

They are using the latest version because it is always kept up to date online.

Microsoft Intune pretty much brings all of our endpoint and security management tools into one place. I cannot think of the ones where it does not do what we need. Apple Mac management could be better. It makes IT and security operations much easier and much more convenient.

We use the Enterprise Application Management features of Intune Suite. That is what the data manager is set to. These features are good. So far, we have had no problems with that.

Implementing applications is easier than MaaS360. There are definitely time savings. It is a lot smoother and a lot more well-integrated with Azure AD, etc.

The integration with Microsoft 365 and Microsoft Security for both cloud and co-managed devices is very important. That is the key thing for us. Almost all of the clients have Microsoft Office 365. We have only two clients who use Google G Suite, so this whole integration is very important.

It has helped us consolidate vendors.

Its benefits can be realized within a couple of weeks. It is very good because it works. Conditional access and compliance work from anywhere, so it is very good.

For our clients, the conditional access feature along with different compliance policies that they can set is valuable.

All the remote tools you can use on the mobile are also valuable. Features such as passcode reset for the device lock are helpful, so you can set a code and get people back into the device.

The Apple Mac management is a bit basic. The mobile management is good for iPhone and iPad, but the Apple Mac management needs improvement. That is probably because Microsoft does not have low-level access to Apple Mac hardware. If you are doing basic things, it is okay, but if you want to image Apple Macs and do things like that, then Jamf is much better.

Their support needs to be improved.

I have been using this solution for about eight years.

It is stable.

It is definitely scalable.

Their support is absolutely useless. They used to be good, but now, there are separate departments. We had an issue with conditional access where the client did not like the fact that single sign-on was working and automatically logging them into everything. They found it to be a security issue. It was not a good thing. We were trying to disable that, but then conditional access would not work. Their support could not figure it out. They would say that it is Entra and then they would say that it is Intune. I found out what it was. It was a token that was coming from a single sign-on.

Negative

We use Jamf. We are still using IBM MaaS360 for some of the clients, but it is getting phased out for Intune.

MaaS360 does not integrate with all Microsoft products as well as Intune for obvious reasons. A lot of our clients want Intune for data protection, conditional access, etc. It is more about protecting their data and making sure that the devices are compliant and meeting certain policies. 

The user experience of Intune is good. It is a lot less clunkier than MaaS360. We do most of the setup, so the users are not really affected by it.

Jamf is mainly for Apple Mac management. Intune is mainly for Windows management and mobile management. Intune does not have the same level of integration with Apple Mac, so you cannot image them properly. It supports very basic imaging. Jamf is a much better tool for managing Apple Mac.

You have to use Azure because it is a part of the Microsoft environment.

I am the lead engineer involved in setting it up and configuring all the policies. It is straightforward.

From a maintenance point of view, there is no maintenance you have to do because Microsoft does it all in the cloud. You might need to tweak a few things on an app after you send it out, but those are general tweaks to make things run better. You do not have to put updates on or do things like that.

We do not use any external help. We just use Microsoft documentation.

We work in the charity sector, so a lot of our clients get Microsoft Premium licenses or Business Premium for free. They get ten licenses free, and a lot of our clients do not have more than ten staff members. They are getting the tool for free, so its cost is not an issue.

We did not evaluate other solutions.

It is good. If your clients want to protect their data and they are using Microsoft tools, then Microsoft Intune is definitely the one that they should be using.

We are not using it to its fullest. There is a lot more we could do. I work for an MSP, so we are bound by what the client wants to do. If the client does not want to advance anything, we will not advance it.

In terms of IT productivity, it does not benefit us directly because we are an MSP, but it is a lot easier to use than MaaS360 and other ones we have tried. Similarly, it does not save us costs because we are an MSP. We charge people to implement a solution, and that is it. If we are paid to manage it, we obviously try to manage it, but it does not save us any money.

It does not affect our security because we do not use it ourselves. We just install it for other people.

Overall, I would rate Microsoft Intune an eight out of ten.

I have worked in various roles with Intune. In my previous organization, I supported Intune on a job board. Currently, I am in a consulting role, responsible for development, deployment, and other aspects of Intune. This experience has given me a well-rounded understanding of Intune's support and implementation aspects.

We implemented Intune to manage devices across multiple operating systems, including Windows, Mac, iOS, and Android. My expertise lies in device enrollment, compliance enforcement, configuration management, Autopatch, Autopilot for Windows, and application provisioning through Apple Business Manager for Mac devices.

We have clients who have deployed Intune on a hybrid platform and others who are fully cloud-based.

Intune's security management capabilities effectively meet our compliance requirements. While there may be a few unique instances where our needs are particularly complex and don't perfectly align with Intune's design, it's clear that Intune comprehensively addresses the compliance standards and policies necessary for any organization.

Intune serves as a unified platform for managing endpoint and security tools. As a comprehensive management solution, Intune allows for centralized control of various aspects of device and security management. In terms of Microsoft Defender, Intune seamlessly integrates certain features of this advanced security product, providing an additional layer of protection. This integration streamlines incident management by centralizing relevant information and tools within a single platform.

With the advancements in Intune automation, the role of IT administrators has become significantly less complex than in previous years. Tasks that once required extensive manual configuration and monitoring, such as deploying security updates to Windows machines, are now streamlined through features like Windows Autopatch. This service automates the entire process, including policy creation, deployment, and monitoring. Additionally, Autopatch offers flexible deployment options, allowing for gradual rollout to pilot groups, IT staff, and the general workforce. As a result, IT teams can focus on higher-level tasks and reduce the time spent on routine maintenance.

Intune's user experience is generally seamless, with minimal user interaction required. While some applications might occasionally conflict, causing minor disruptions, Intune's compliance and configuration policies are typically applied in the background without significant user input. As a result, the user experience is generally straightforward, with few interruptions from Intune's administrative tasks.

If implemented, Intune can significantly enhance data protection, compliance, and security. By implementing security codes, we can control user-level access to applications and ensure that only authorized individuals can access company data. In case of device loss, we can remotely wipe the device to prevent data compromise. Intune also plays a crucial role in productivity. Deploying and managing applications through Intune is straightforward, and it supports a wide range of applications, including built-in ones. These features make Intune a valuable tool for organizations seeking to improve data protection, security, compliance, and overall productivity.

Intune effectively secures hybrid work and protects data on both company-owned and BYOD devices. For company-provided devices, MDM enrollment ensures robust security. However, BYOD devices rely on MAM, requiring user interaction through the company portal or Authenticator. While most users comply, there are instances of resistance to installing the company portal app, making MAM management challenging. To address this, Microsoft could explore alternative solutions that avoid the necessity of the company portal on personal devices, accommodating user preferences.

Intune enhances IT efficiency by streamlining application deployment. Applications developed for Intune are directly accessible within the application list, eliminating the need for separate provisioning from third-party vendors. Microsoft's extensive collaborations with numerous applications ensure that features and upgrades are managed seamlessly through Intune. Overall, Intune offers a promising solution for current IT productivity needs.

Intune offers comprehensive compliance features, covering even the intricate registry aspects of Windows security. Through the settings catalog, we can configure virtually all desired settings. Existing templates can be customized, and we can delve deeper into the same settings previously configured in our on-premises environment. For those transitioning to hybrid or cloud environments, Intune provides numerous features that can be customized or replicated from on-premises, offering a seamless transition.

As an IT administrator, I appreciate Intune's ability to implement granular device-level policies for our organization's employees. This allows us to enforce company-wide regulations and ensure compliance while minimizing the risk of data breaches. Intune's user-friendly interface and straightforward accessibility make it a valuable tool for IT staff and employees.

The enterprise application management feature in Intune Suite for app discovery, deployment, and automatic updating is well-suited for Windows devices but is premature for Android and iOS. From an administrator's perspective, managing Windows apps with Intune is relatively straightforward. However, for Android and iOS, the feature requires further refinement due to their third-party operating system nature. While Android devices pose fewer challenges, iOS devices often necessitate using Apple Business Manager as an intermediary, complicating the management process. This is particularly evident when considering Apple's role as the primary manager of iOS devices.

Intune could be enhanced by automating application upgrades, similar to how it automates operating system upgrades. This would streamline the process and reduce manual effort, especially for organizations with multiple applications requiring regular updates. Additionally, the tenant dashboard could be more user-friendly by providing more customizable options and charts for monitoring various aspects of the Intune environment. This would allow administrators to easily access and track key metrics without navigating through multiple menus.

I have been using Microsoft Intune for three years.

I would rate the stability of Intune eight out of ten.

I would rate the scalability of Intune eight out of ten.

Regarding the frontline support we contact, they could be more responsive. While the support is essentially the same for all users, Intune customers' response times, reservation times, and overall service are influenced by their license agreement. There is room for improvement in this area. Ultimately, we use the same product and license, but premium customer service comes with an additional cost. For instance, clients with premium licenses and support add-ons typically have issues resolved within three to four days, compared to seven to eight days for those without premium or unlimited customer service.

Neutral

I have experience with Jamf and NBF solutions. While Jamf offers robust capabilities for managing iOS devices online and is user-friendly, it surpasses Microsoft Intune in its features for Mac devices. However, Intune remains a better choice for Windows devices.

The initial deployment of Intune can be improved by automating enrollment processes for Windows Autopilot. This would streamline the process and reduce the number of options IT admins need to manage. Additionally, automating the initial Intune procedures performed by IT would further simplify Windows Autopilot deployment.

The deployment time varies depending on the operating system. For Windows, it can take around ten hours. Android deployment takes 15 to 20 minutes. iOS deployment requires more time due to intermediaries between the device and Apple Business Manager. Setting up a connector between Apple Business Manager and Microsoft Intune, creating profiles on both platforms, and procuring licenses for the device on both ends are necessary steps for Mac deployment. Windows deployment is simpler, and methods like Windows Autopilot are less time-consuming.

The cost of the license and the features are justified for myself as a technical person.

I would rate Microsoft Intune eight out of ten.

The Microsoft Intune Suite is a valuable tool for companies seeking a reliable MDM solution. Given the current structural and developmental trends in businesses, Intune has become essential for ensuring data security, protection, and compliance. It's a user-friendly platform that's relatively easy to learn, even for those with limited IT experience, such as support staff. For individuals aiming to enhance their skills and explore cloud technology, Intune offers a solid starting point before delving into Azure. By beginning with Intune and gradually expanding their capabilities, users can effectively leverage the Microsoft cloud ecosystem.

Our clients are medium size organizations.

Intune necessitates regular maintenance. To ensure optimal performance, we generate quarterly reports that inform our planning for the following quarter. These reports enable us to identify areas for improvement in compliance, non-compliant devices, configuration issues, and security and application upgrades. By addressing these concerns proactively, we can enhance Intune's overall effectiveness.

With co-managed devices, integrating the Intune Suite can be challenging due to the interplay of on-premises and cloud environments. Determining which controls have precedence—cloud-based or on-premises Active Directory features like organizational units or first levels—is crucial. Cloud-based management simplifies this process as Microsoft handles many aspects automatically, reducing the need for extensive customization. Creating user-level profiles in Azure Active Directory is essential for backend operations. On-premises management often requires more manual tasks compared to cloud-based solutions.

Intune is a viable solution for those seeking a mobile device management tool, especially if they primarily use Windows devices. However, if a Mac environment is the primary focus, Jamf offers more comprehensive capabilities and features. For organizations with a mixed device environment, including Windows, Mac, Android, and iOS, Intune is a strong recommendation. Additionally, individuals aiming to enhance their skills in cloud technology can consider Intune as a valuable starting point.