Microsoft Intune Reviews

The primary use case for Intune is to enable user access to authorized data and applications like Outlook and Microsoft Teams, whether they are using corporate devices or their personal ones. By enrolling these devices in Microsoft Intune, users gain access to organization data, effectively turning their device into a mobile office laptop.

In our work, we have experienced the advantages of using Microsoft's services, particularly when it comes to handling certificates and inventories. Microsoft's capabilities in these areas have prompted many people to transition their operations to Microsoft.

One of the standout features of Intune is its seamless accessibility to work data, eliminating the need to be tied to an office or a desktop. Whether on iOS, Android, or other mobile devices like tablets, users can effortlessly access essential tools such as email, Microsoft Teams, and custom business applications, enhancing productivity. This capability became especially crucial during the COVID-19 pandemic, when remote work setups became the norm, making Intune a prominent solution for remote access to corporate resources.

Intune's areas for improvement, especially since its implementation in June, revolve around security and certificate management, primarily related to personal devices known as BYOD. While there are policies in place to prevent data transfer between corporate and personal apps, there is room for further enhancing security measures for devices that aren't corporate-owned but are enrolled to access organization data. Tightening security in this context is a key area in which Intune can continue to evolve.

I have been using Microsoft Intune for six years.

In terms of stability, it largely depends on how well security measures are implemented. Ensuring that devices are properly secured and monitored is crucial for stability, especially in situations like a lost device where sensitive data is at risk. Security awareness and access controls play a significant role in maintaining a stable environment. Multi-factor authentication and additional conditional access measures, such as fingerprint access, are used to verify the user's identity and protect data. I would rate the stability of the solution as a nine out of ten.

The scalability of Intune is highly rated by engineers for its flexibility. It is easy to scale, primarily due to the licensing options. You can start with a smaller scope, say, with 40-50,000 employees, who want to use corporate devices with Intune. As your organization grows, you can easily expand, going up to more than 100,000 users, and incrementally add licenses as needed, be it on a quarterly or monthly basis. This makes Intune a versatile solution for businesses of various sizes. At our company, for mobile devices and laptops, we have 30,000 users. I would rate the scalability of the solution as a ten out of ten.

The experience with Intune support has been generally positive, although there has been a learning curve for support staff. Initially, there were some challenges, with different teams involved, which sometimes resulted in less than optimal solutions. However, the situation has improved over time. On a scale of one to ten, I would give an eight out of ten rating for Intune support. It is a generally positive experience with room for further enhancement.

I would rate the complexity of the initial setup as a seven out of ten. However, if you have prior experience with MDM solutions or other MDM platforms like MobileIron, AirWatch, or IBM's MaaS360, the process may be more straightforward. Intune deployment typically takes a few weeks. The deployment involved a team of over 35 people to cater to a user base of around 30,000 in an automobile company based in Canada. The process began with testing and policy configuration over a month, focusing on aspects like data restrictions and copy limitations. After the pilot phase, Microsoft provided a pricing model, and a migration process took place over two to three months. This involved transitioning users from BlackBerry to iOS and Android and incorporating Windows Autopilot for Windows laptops, both new and existing. The onboarding process also extended to HP and other vendors.

I find the pricing for Microsoft Intune to be quite reasonable. It is available through various licensing options, including E5 Enterprise, E3 Enterprise, and as a standalone product. E5 Enterprise provides Intune as part of a bundled package, while E3 Enterprise offers it separately. Microsoft offers several licensing options, allowing organizations to choose the one that suits their specific needs. Before deploying, there is a free trial period of one month where you can test it with up to 50 devices. Once you have an understanding of your needs and Microsoft's pricing, you can choose the right model and device enrollment numbers. After the trial period, they offer a budget of around $120 for you to allocate according to your requirements. The pricing is then converted into a pro-rated monthly basis, depending on the volume of devices you need to manage, whether it is beyond fifty or a hundred. This flexible approach is advantageous for users. Overall, I would rate it as a seven out of ten in terms of costliness.

In comparison to earlier vendors like IBM, AirWatch, MobileIron, and SOTC, Microsoft Intune stands out as more flexible and user-friendly. These earlier systems were rigid and required IMEI numbers, making them less adaptable. Intune, on the other hand, is simple, similar to Azure, and excels in terms of scalability and versatility. Creating device-switching policies in Intune is straightforward and visually intuitive. It involves selecting the appropriate profile and specifying the device type (iOS, Android, or Windows). The options are readily accessible, making Intune an easy-to-use solution for managing mobile devices and endpoint management tasks.

I highly recommend using Microsoft Intune, especially in today's remote work scenario driven by the COVID-19 pandemic. It is a robust solution for managing corporate and BYOD devices, ensuring that they are properly configured and secure. Intune simplifies end-to-end device management, from pushing policies to implementing multifactor authentication, and it's the best option in the market right now. While VMware Workspace ONE and AirWatch are good, Microsoft Intune stands out, as evidenced by its popularity among clients, with more than 80% opting for it. It is definitely worth considering and conducting a proof of concept to see how it can benefit your organization. Overall, I would rate the solution as a nine out of ten.

We typically use Intune when we have workstations that we want to manage, but we do not want to connect to our legacy Active Directory. We use a combination of Intune and Azure Active Directory.

Intune is able to put together compliance and safety checks for our endpoint devices, but it is one of the protection or security solutions. We need to use other solutions as well to completely manage the security, such as Microsoft Defender or a third-party endpoint antivirus solution. Intune definitely helps with protection, but you need to make sure that you have your endpoint security software installed. Intune provides good visibility into which devices comply with your company standards and which ones do not.

Intune more or less provides full endpoint visibility and IT control across device platforms. It simplifies my work because it is easy to view which devices are compliant and which ones are not. All you have to do is establish or configure your company's device policies, and then from there, you make sure that you assign those policies to users. Intune is able to gather information about who is compliant and who is not. It saves time on security management and administration. The administrator does not have to go through all of the company devices deployed throughout the organization. It definitely saves time.

Users have a better experience because they do not have to do anything on their end. Everything is pretty much handled at the back. When they sign in to their computers, Intune kicks in, and they do not have to do anything for software deployment. It just takes a few minutes for the software on their devices to download. All the software is deployed by Intune based on their profile. It takes a few minutes. The users are happy with it because they are able to proceed to work without having to call the IT help desk to get assistance. For security and management, such as updating machines, they have control over when they can do the restart. They appreciate that their machine is being updated and looked after by the IT group. They see that policies are made personal, and they are able to seamlessly download the updates on computers.

Users' access to the company data through personal devices became more secure. It helps to segregate data from their personal devices or applications.

Intune has improved productivity. It has probably reduced the risk of security breaches by 20%. It cannot completely mitigate possible breaches in the company, but it improves the security posture for the devices being used by the users. A significant percentage of breaches rely on the users and user behavior. 

It helps us save costs, but I do not have any data. Security breaches cost a lot, and if it is able to mitigate a security breach, we have saved the cost of that breach.

The policy and compliance monitoring of devices and the software deployment are most valuable.

We have a bird's eye view of what is happening on the endpoint.

They should improve its compatibility with other operating systems such as iOS and Linux. It supports Linux but they still need to work on the iOS part.

I have been using Intune since 2019.

I have not worked with any other solution recently. 

It is easy.

We have seen an ROI.

It is reasonable for the features it has.

If you are just running Windows, it is very good. It is tightly integrated with Windows. Microsoft gives Windows users quite an experience. If you decide to deploy it for Windows, it allows you to take away the old Active Directory, and just rely on Azure AD. All of the policies and other configurable items are in there to manage security on your local machines. Of course, there are some caveats between the two, but security-wise and endpoint management-wise, it takes care of Windows from authentication and onboarding to software deployment and updates. I have very good experience using Intune with my Windows machines, but for other OS, it still needs to be improved.

I would rate Intune an eight out of ten. It lacks features for managing operating systems other than Windows.

My last job was cyber defense for clients in European countries like France, Belgium, Sweden, etc. We use Intune to manage definitions for Microsoft Defender and classic corporate reasons, such as limiting the access of Active Directory users. 

My current company supports clients using Office 365. We're one of the biggest service providers in Bosnia Herzegovina. We use it to deploy enterprise applications to specific users. 

Intune is good for both the administrator and the client. You can deploy things like antivirus and applications while preventing or allowing users to do something on their PCs. 

It's possible to protect users' personal devices with access control list rules in Intune, DLP, etc. You can set different policies for personal and company devices, but it can be tricky to tell when the rule should be applied to a device.

The most valuable feature is Intune's ability to push out updates for the security and antivirus. I also like Intune's copilot and the ability to automate processes. For example, if you have 5,000 employees who are issued new PCs and you need to set them up with everything they need.  

Intune is on the cloud, so you can bring all your endpoint and security management tools together. Intune may not be the best tool in the world, but it's the most familiar. You have Microsoft, Fortinet, Cisco, etc., but I've worked with Microsoft my entire life, and it brings all the functions from SCCM to the cloud. Office 365 hase everything in one admin portal. With Cisco, everything is messy. If you are dealing with 10,000 to 50,000 employees, you must manage everything from one console.

The user experience is better from an administrative perspective. It has improved in each version, so things are easier to find. 

Setting up Intune Autopilot can be a little complicated. 

I have used Intune for six years, primarily in a lab environment. 

We were interrupted by a bug and a policy that wasn't configured correctly. In this instance, it was our mistake because we created rules that prevented Intune from pushing applications out. 

We have an SLA with Microsoft support that covers all of our products, including Office 365, Azure, Exchange, etc. If we have a problem, we contact Microsoft Global Support in India. We can call them at any time, day or night, to solve our issues.  

Positive

 I previously worked with SCCM on-prem. Intune has the same features, but it's entirely cloud-based. Everything is the same except for the console. 

The price of Intune is too high for a small company or environment like ours. 

I rate Microsoft Intune eight out of 10.

We use the solution for BYOD, MDM, and to access Microsoft applications like Teams. Microsoft Intune helps us access Microsoft applications on the road and mobile.

The solution’s most valuable feature is its ease of use.

I have been using Microsoft Intune for about three years.

Microsoft Intune is a very scalable solution. Around 4,000 users use the solution in our organization.

A third-party vendor helped us set up the solution in six months.

We have a large amount of our population using the applications on their phones. Microsoft Intune definitely helps with productivity and efficiency. The solution brings value to the money we pay for it.

Microsoft Intune has been incorporated into our Microsoft E5 licenses. The pricing is very good, as it is not an additional cost to what we already need for our organization as a whole.

Microsoft Intune brings all our endpoint and security management tools into one place for mobile. We work closely with security, which mostly implements the overall rules on what users should be able to do, how the new data is encrypted, and how secure data can't leave the Intune environment. It's easy to go into Intune and apply all of those policies and have them work for you.

I would assess Microsoft Intune very highly for securing hybrid work and protecting company data via BYOD devices. I think it's very secure. Everyone in IT has to be available during off hours to make sure that everyone can see what's going on if there's an emergency.

Since Microsoft Intune has been incorporated into our Microsoft E5 licenses, our organization has saved costs compared to using other EMM providers. Microsoft Intune is a comprehensive solution that has a lot of features and manages all your endpoints.

Overall, I rate the solution a nine out of ten.

We support other companies in managing their devices. Right now, we have multiple projects wherein we are only utilizing the Windows aspect of Intune, but for some of the other organizations, we are utilizing Android and iOS features. For most of the projects that I am working on, the use case is autopilot enrollment, and for iOS, it is through ABM.

One of the most common requests that we get is that most of the users are still on-prem. They need to be moved to the cloud, but they do not want to lose the data on-prem. The basic request that we get is to get co-management enabled for on-prem and the cloud for managing devices. The basic request from every organization I have worked with so far is to get a hybrid or the same management scenario. This is what we utilize Intune for.

All the device information is available in one place. We can see which profiles are being used and other things. If I want to get any information about a device, I just have to select it, and it shows me everything that I want about the device.

As an admin, we have different privileges to a user. In terms of user experience, it is quite easy. It is easy to understand. They have been making a lot of changes to the layout and the categorization. It is much easier and user-friendly. Overall, it has been a pleasant experience to use the portal. Everything is categorized in such a manner that it is easy to understand and navigate.

Advanced endpoint analytics are certainly used in almost all the projects that I have worked on because the security baseline is a very crucial part of configuring all those things in one single place. Apart from that, other profiles are also configured.

It is quite handy. For the general device configuration, we might have to create multiple profiles for different things. When it comes to the security baseline, multiple components are configured into a single policy. That makes configurations easier to handle and easier to change in the future if required. One thing about endpoint analysis that can be an issue is that there is an imprinting policy. Sometimes for some of the components, even if I change the policy, it would not make the change in the device. The policy gets tattooed on the device.

The Cloud PKI helps manage the complexity of certificate infrastructure. It makes work much simpler. The configuration that needs to be done is much simpler.

It makes application deployment and management easy on a device. It is easy to get them packaged and pushed out. Applications are available in the first sync itself. It is pretty easy to do that with Intune.

In terms of integration, so far, we have set up co-management features with SAPM, and it has been going well. The settings are pretty easily understandable. We can do them easily. The setup is smooth. In case of any issues, the logs and troubleshooting are very simplified. It gives pretty accurate information. The APM portal can also be very easily configured. The steps about what to do next are available in the Intune portal itself. It works well with other consoles.

I would assess Intune highly for securing hybrid work and protecting data on company and BYO devices. I would rate it a nine out of ten for this.

As an admin, Intune has made life much easier. Any information about a device is available in one console. We do not have to navigate to multiple portals to see what is going on. The console gives us the answer. Intune gives us information about the error and the possible reason for it to happen. We can see the device status and whether it is syncing. Everything is available in one single source. As an admin, it makes my life easier.

Intune has made the transition from on-prem to the cloud a smoother and simpler experience. We do not even have to make a complete transition. If we want to set up co-management where both of them are in the picture, Intune does a great job in helping out the admins to manage those devices.

In the recent upgrade, I feel the portal has become much more user-friendly. The navigation, the keys, and the settings are easy to find. It is easy to understand. As compared to the previous versions or SCCM, it is very handy. Apart from that, we have many configuration profiles. They have been introduced over the course of time. We had put in the request for them. Some aspects that were not available previously are available now. It keeps improving over time, which is beneficial.

Reporting needs to be better. Sometimes, it is way too slow, and it is not even accurate. Reporting is one aspect about which we have received a lot of complaints. As an admin, I cannot rely on its reporting.

Another feature that can be improved is audit logs. There should be more details in the audit logs.

We have been using it for almost four years.

I would rate it an eight out of ten for stability. I do not believe that any product is completely stable given the fact there is always something new that comes into the market, so it has to go through changes. You never know what those changes might be and whether a release is compatible with certain devices, etc.

We have more than 100 users. Our clients are large enterprises.

We have had a mixed experience. Sometimes we get an engineer who is extremely aware of what is going on and is very quick with the resolution. We get an answer quickly, and the ticket gets closed quickly. However, sometimes we get an engineer who prolongs the case to an unnecessary time frame. We might get an email in six to seven days. We need to keep chasing them about the update. Their support can be improved.

Neutral

I have worked with SCCM which is a Microsoft product. I have not worked on any other similar solution.

We have a combination of cloud and on-prem. We do have GPOs in the picture. We also have cloud users. We have Windows 365 devices. It is a combination of both so far.

Its deployment is pretty straightforward. They provide the details or info in the portal itself, so it is not very difficult. You do not have to go searching for the information.

The initial setup does not take time. Setting up an account for the organization rarely takes five minutes or so, but the time taken for doing the setup for the entire organization, which includes setting up policies and other things, would vary. It depends on the number of activities that need to be performed.

It does not require much maintenance from our side. Over time, they provide new releases that fix the issues that have been stated in our health control section.

Based on the features that it gives, it is cost-efficient. It is not necessarily on the expensive side of the scale. It provides a hefty number of features that any organization would want. It is in a good price range.

Intune does not necessarily bring all of the endpoint and security management tools into one place because there is a role of connectors in Intune that need to be enabled in order to get other accesses. Things like Defender, Compliance, and Purview need to be managed in the device in itself. I do not necessarily see it bringing everything into the same picture, but it does act like a mediator with those connector options.

With the projects in hand, we are mainly focusing on applications and Windows. I have not had an opportunity to explore it much when it comes to iOS and Linux. We are not using the Enterprise Application Management features of Intune Suite. We have done the configuration via Azure.

We are testing out Microsoft Copilot in Intune. We have not had many opportunities to use it.

To a colleague at another company who wants to know what I think about Microsoft Intune Suite, I would say to definitely go for it. I have seen multiple portals, and Intune goes way far. In terms of features and interface, Intune is much superior to any other console that I have seen so far. It is easy. It has many configurations. It is easily understandable. Everything is good about it, and it is growing with time. Within a span of a few months or weeks, you might see a new update, a new configuration profile, or a new system that could be managed. Some kind of new feature is always coming up.

I would recommend Intune to others. If anyone comes to me with any questions or concerns, the first thing I ask is how they are managing their devices. If they are using anything apart from Intune, my suggestion is to use Intune.

Overall, I would rate Intune a nine out of ten.

We are using it for software deployment. I am able to push any software within minutes. For example, if I want to install Google Chrome for all the users, I can push Google Chrome through Microsoft Intune. Within five to ten minutes, all the users will have Google Chrome. 

We also use it for device management. We can easily register a device. It is very easy. It is helpful for BYOD.

I am happy with Microsoft Intune because Windows updates are easy. There is no need for SCCM. You can push an update, and wherever a system is available, it gets updated. Windows updates are very easy with Microsoft Intune. For Windows systems, endpoint management is very easy with Microsoft Intune as compared to other technologies.

It is user-friendly, and the performance is also good. It is a convenient product.

Sometimes, updating a client policy is very difficult. This needs to be improved.

Their support also needs improvement.

I have been using Microsoft Intune for about three years.

It is very difficult to get support from Microsoft. They are not able to troubleshoot some of the issues. They have support, but it is very difficult to get support.

We were using the SCCM server. It is a Microsoft product.

It is easy. It is not difficult.

It is cheap, but as compared to Google, it is costly. Google is cheaper, but quality-wise, Microsoft Intune is better.

I would recommend Microsoft Intune. It is a good product. 

I would rate Microsoft Intune a seven out of ten.

We use Intune for Windows computers, and we also have iOS phones.

Intune simplifies mobile application management. It is very good. Its console is perfect. I am satisfied with it.

Intune works well with Microsoft Defender. Intune brings all of our endpoint and security management tools into one place. It is very good. We can manage the firewall and other things. It is very good for the security of computers.

Intune provides full endpoint visibility and IT control across device platforms, but we need to have RBAC for the IT. We have to assign appropriate roles and manage the scope based on, for example, the country and division.

We can use Intune for computers on the cloud, and we can also use it for a hybrid setup with on-premises and cloud computers. We can use Microsoft Endpoint Configuration Manager to manage all the hybrid devices.

We have a lot of reports for data. There are reports related to Windows where we can see whether all the computers have required updates or not. We can also do an inventory of all applications on the computers. We can also do application installation across the company.

Intune works with Log Analytics for Azure. It is a tool for monitoring and analyzing log data.

We can configure Intune for compliance settings. It provides a method to know if a computer is compliant or not. We can use conditional access to allow or block connections. For example, we can set a condition where if a computer is not hybrid, we do not allow the connection to Azure or we block the Office access for that computer. We can configure a compliance setting to know if a computer is compliant or not. We can also block access if a computer, for example, is not encrypted. There are many settings that we can configure, and we can generate reports to see the compliance.

For application deployment, there are a lot of methods that we can use. We can do it from the company portal from Microsoft. It is very easy for IT to configure. We can package, for example, an SAP application in three seconds. We have the possibility to use the automatic detection rules and package our internal application. We have a lot of possibilities. We can use the applications from the store, or we can package our internal applications. I find it very rich.

It is easy to use Intune. We do not have to work with agents. We do not have issues related to agents. With SCCM, we had to use an agent, and there were certain requirements. For example, we had to use a local administrator account, whereas, with Intune, we do not need to do all this. It is all cloud. It is very simple and easy to use.

It is very easy to configure deployment policies. For example, we can deploy something just for Windows 11 and not for Windows 10. It is very rich when it comes to deployment and configuration profiles. Intune is now much better than before.

Configuration profiles, remediation, scripts, and auto-pilot features are very good.

The user experience of Intune is very good for me. The user interface and navigation are very simple and clear. It is very easy to use for managing Windows, iOS, and other environments. People at IT level one and level two will find its console very simple to use. It is very useful.

There can be more logs. I do not have any other requirements. I am very satisfied with it.

I have been using Intune for six years.

It is stable.

It is very scalable. I would rate it a ten out of ten for scalability. 

Our clients have a lot of users. We have 16 or 17 people working with this solution.

I opened a lot of tickets. Their team is responsive, and they respond quickly to help users. I would rate them a ten out of ten.

Positive

For remote access, we are not using Intune, but in my previous company, we used Intune for that. It worked very well. We did not have any problems with it. For managing remote devices, we are using Bomgar.

We have a lot of departments. We are using Intune only for the production computers. For others, we use SCCM. We have a hybrid environment.

It is a cloud solution. Its deployment took about 40 minutes.

It does require maintenance.

It is not expensive.

We trust Microsoft. They are a big and good company. Microsoft is working very hard on security. We do not have any problems with Microsoft.

I would recommend Intune for all companies. It is a very centralized and good solution.

I would rate Intune a ten out of ten.

It is good data protection - protecting your endpoints, information on those endpoints, and information stored centrally in Office 365. It focuses on endpoint protection, configuration, and visibility. 

You need to know what you have and where it is before you can consider protection. As an MDM umbrella covering all mobile devices, we can instantly see across all of them and centrally manage policies.

The most obvious example of improvement is full hard drive encryption. You want all your endpoints encrypted, and if a device is lost or stolen, you want to be able to wipe it remotely or disable it remotely. MDM allows all of these features. 

We can ensure all devices are encrypted, check instantly and get reports, reset them, wipe them, or block them remotely at any time from anywhere in the world. These are powerful and crucial tools for incident management and data and information governance. You need to be able to protect what you need to protect.

It's very powerful for onboarding employees. It's also powerful for integrating other software applications or pushing out solutions. For example, we use Intune, or sometimes MDM, to ensure all our computers have CrowdStrike installed. MDM automates the installation process, and we get reports confirming its success.

We can also use it to push out other important security software and see any unauthorized software present on the machines. Although we primarily use CrowdStrike for that purpose. CrowdStrike can scan every computer, identify potential threats, and prevent the installation of unauthorized software in the first place. 

So, MDM is great for integration in terms of onboarding new staff remotely and securely. It confirms the computer matches all our policies and flags any non-compliance issues. Based on compliance, we can even stop non-compliant devices from connecting to our network through conditional access policies. It's all very automated within Office 365. It integrates everything together, by design.

It's excellent. Top-class product. 

Fundamentally, MDM is the ability to centrally manage all of our endpoints in terms of the policies applied to them, along with all the actions we can perform on the devices themselves. 

We need to harmonize policies across all machines, update them in real time, and get reports. So, all endpoints constantly communicate with Intune, allowing us to view, disable, restart, and push new policies at any moment. It's this centralized control over a distributed network of endpoints that's crucial.

Because our endpoints were remote-first, not centrally located, how else would you manage a large network of computers scattered across individual homes? An MDM solution is the only way. That's why it's so valuable. 

We can manage and standardize security across your environment, identify problems, receive alerts, and so on. That's its purpose, and that's also why it's so good.

The reporting is excellent. You can draw what information you want in the reports. So, that's also excellent. I would rate the rating capabilities a ten out of ten as well.

It's hard to point to an area of improvement because, like most Microsoft cloud services, they're constantly evolving and adapting. Keeping up with the changes can be more challenging than finding features that are missing.

The only thing to consider is complexity. Think about Excel. It can do everything imaginable, but it's not necessarily the easiest software to use. You need to know how to use it.

Similarly, while Intune might have all the functions you need, finding or configuring them can be difficult, especially for new users. The key is user experience, making essential features easier to find. It's easy to get lost in the complexity.

However, I've never found a crucial function missing in Intune. It just can be challenging to navigate sometimes. They're always working on making it more user-friendly, but it's a difficult task for something so complex. So, improving user experience would be my suggestion for improvement.

In future releases, I would like to see better integration with Apple products. While they integrate reasonably well already, it's never quite as seamless or up-to-date as it is with Windows. That would be helpful because many companies have a mix of devices. So, better integration with macOS.

 I have been working with this product since the beginning, forever.

When I joined the company, everything was already in Office 365. No physical network, and no domain controller. All devices are connected by the internet, not a physical office network.

I've never had any issues with stability. I'd rate it a nine out of ten because I rarely give anything a perfect ten. But it's very stable. I haven't experienced any stability issues.

It's perfectly scalable. I'd rate the scalability a ten out of ten.

There are around 200 end users using it in my company. 

The customer service and support are excellent. 

Positive

We use a family of products. We don't want to put all our eggs in one basket. For example, we use software from other providers for security awareness training, phishing protection, and so on. 

However, as a Microsoft Gold Partner, we're heavily integrated with Office 365, Microsoft Defender for Security Center, and everything that goes along with Azure and Office. We essentially have a suite of different tools depending on the specific need.

For our Endpoint Detection and Response (EDR) or physical endpoint security on laptops, we also use CrowdStrike. Our approach involves leveraging different options depending on their strengths.

Some vendors like CrowdStrike claim they can do everything, but we prefer specialization. We want different providers to handle different aspects of our security.

We have Microsoft Defender, which provides access to threat intelligence and also offers endpoint protection. While Defender is a competitor to CrowdStrike, we avoid using its endpoint protection functionality to maintain our distributed security approach. However, we utilize Microsoft Intune for Mobile Device Management (MDM).

And through Intune, we can push out policies that enforce specific security standards on all our computers, such as encryption.

We leverage it for managing device security policies. Additionally, all our devices access Office 365.

We use Microsoft security features within Office 365, SharePoint, and OneDrive. 

As with everything in IT, once you reach a certain level of complexity, which Intune does, the rule is: everything is easy when you know how, and everything is difficult when you don't.

Especially with something as complex as MDM, if you don't know everything, it can be very difficult. But if you do, it can be easy. So, it depends. There are very few people who know absolutely everything.

So, there is a difficulty there, but once you know how to do it, it's easy. Like user experience is not necessarily intuitive.

The pricing is not cheap, especially with inflation. They've had to increase their prices. It's not excessive, but alright. So, it's reasonable, but it would be better if it were lower.

In my experience, it would be difficult to find a competitor. It's kind of the gold standard because it's Microsoft dealing with Windows. They have an inherent advantage.

If a third-party vendor tries to offer a competing MDM solution, they're always a bit behind the curve. They don't have first access to all updates or the roadmap for future developments. There's always an element of catching up. 

On the other hand, Microsoft can bake these changes into the product as they make them. So, on that basis, it's quite simply the best.

Overall, I would rate the solution a nine out of ten.