Microsoft Intune Reviews

We are currently using Intune, and we are also deploying it for customers. We use Intune to manage our mobile devices. We manage our Android and iOS devices with it, and at the same time, we also use Intune to manage our macOS and Windows devices.

During the pandemic, there were devices that we couldn't control. For example, we wanted to manage BYOD and make sure that they are secured so that when they access our corporate resources, our data, computers, users, and mobile devices are protected. We use Intune to publish some of our company applications and at the same time push down our restriction policy and configuration profiles, such as VPN.

We are a vendor, and we deploy the Intune solution. We see that our clients have benefited from this solution. They're able to manage devices that were previously not managed. They are able to secure those devices. It also improves the productivity of the users. They can work from wherever they are and leverage their own devices to access company resources. So, productivity-wise, users are more productive when it comes to Intune.

Based on my experience, I find Intune very flexible for managing Windows devices. We can use scripting, and we can make use of the self-service portal or the company portal to publish some of the applications for Windows.

I'd suggest adding more features for macOS in Intune. There should be more functionality for managing macOS. There should be a better capability for pushing things down on macOS. Currently, Intune is not capable of managing macOS at the same level as Windows.

It has been four years since I've been using Intune.

I'd rate it an eight out of ten in terms of stability because it sometimes breaks. That's mainly because Windows OS keeps on changing because of upgrades and things like that, and there are some instances where it's not supported, or it has not been tested fully on a specific version of OS.

We haven't yet gone down to the scalability part. It meets the needs of our customers. What they have right now in the cloud is sufficient and satisfies the requirements. So, scalability is not a problem.

Some of the deployments are done across sites, so there are multiple sites.

I have interacted with their support. I'd rate them a ten out of ten.

Positive

We have previously used MobileIron and Jamf Pro.

The deployment model for Intune is cloud basically, but for other MDM solutions, it's on-prem because the government and healthcare sectors prefer to use the on-prem solution.

The deployment duration depends on the project timeline and the complexity of the deployment. A fresh Intune deployment is straightforward. We just need to do the configuration and create configuration profiles. For example, for Windows OS, we can enroll 1,000 devices in a month or something like that depending on the availability of the machine. Everything is configured in the backend, so they just need to power on the device, and everything works as expected, and everything is pushed down.

The number of people required depends on how many machines need to be deployed and users' availability. The model that we're having right now is that for a new device, it's straightaway delivered to the user. So, there is no involvement of IT because it's an autopilot deployment. When a user powers on a device, the configuration kicks in. The users just log in using their user accounts, and that's all. So, one IT person is enough to configure the backend.

We implement it in-house. It does require some maintenance, but that's taken care of by another party.

It's affordable. It's cheaper if you have an Office 365, E5, or E3 subscription because everything is there.

I evaluated VMware Workspace ONE, which is similar to Intune. They both can manage multiple OSs. 

While evaluating, I'd advise evaluating each and every feature of Intune and using multiple operating systems, such as Android, iOS, Windows, and macOS. You should see the capabilities of Intune and also check how to integrate Intune with other solutions. For example, for security, there is endpoint protection, etc. You need to check that because one of the requirements is to make sure that the computers and the mobile devices are secure, but Intune cannot secure your device itself. It's just an MDM solution. It only restricts some of the functionality. It cannot do more in terms of security. You need another solution to secure your devices, and you must check that your security solution can be integrated with Intune.

I'd rate Intune an eight out of ten.

The primary use case of Microsoft Intune is for patch management and app deployment.

Microsoft Intune is deployed in a hybrid environment and we use Atel cloud.

I can see that the patch management process is much improved with the bundled patch management option available in Microsoft Intune compared to the KPI deployment required by the other deployment solutions.

Deploying an app can be a complex process due to dependencies. For example, I have a package with three files that need to run, but one of them has a dependency on another one. This can be challenging to manage with the Intune app deployment and has room for improvement.

I have been using the solution for one month.

We have premium technical support from Microsoft.

We currently also use BigFix.

We have not yet implemented the solution but the app deployment is a bit complex.

When we add a device to the Azure domain, the activation process for Intune is simple and straightforward with no added complexity.

We partnered with Microsoft to help us implement the solution in our environment.

Intune is cost-effective as it is included in some of the Office 365 packages. GMF can be more expensive.

We evaluated Jamf Pro and will be rolling it out for Apple devices.

I give the solution a seven out of ten.

As of now, we deployed the solution onto 10,000 devices and when completed it will be 30,000 devices. The solution is used in multiple departments in multiple geographical locations.

Microsoft Intune is a Windows solution, and organizations can take advantage of its features. However, I would not recommend using iOS devices with Microsoft Intune as it is suited for Windows only.

Microsoft Intune is used for Mobile Device Management. We enrolled our mobile devices as well as the mobile device solution for corporate devices. We have a lot of policies such as the compliance policy, and the conditional access-based policies for the corporate mobile user and we use the solution to assign their  Outlook Teams and other configurations for the organization. 

We use Intune to design compliance policies that apply to corporate devices and to wipe data from devices when users are terminated. Intune is also used for mobile-based solutions, but we have recently explored its capabilities by using the Autopilot feature. With Autopilot, Windows 10 devices can be reset and new versions of Windows 10 can be deployed from Intune.

Intune has many benefits from the Microsoft perspective. This solution can manage Windows 10 devices, app management, and provide security solutions. We don't need to worry about our network connection, and we'll be more secure with regular security patches and compliance. Since everything will be deployed through the internet and users will log in using the internet only, the risks have been mitigated. Security updates, security patching, and the application will be targeted from Intune. The location tracker will be available to track where the device is and the user's location. The user will be restricted from accessing certain applications using compliance policies. Conditional access policies will be based on the reason why the user needs access to the application.

Microsoft Intune is one of the best products in the industry for managing Windows devices. The solution has more feature restrictions. The conditional access policies also eliminate the dependency on the on-prem network for the devices. The solution also manages our security settings and a lot of other beneficial features such as Microsoft Purview which gives us the compliance portion. We can manage all aspects of our device from a single console, including M365 services. This allows us to configure data classification types, such as public, private, internal, confidential, and highly confidential.

The best feature is that we don't need to worry about downtime. We don't need to worry about the network connections of our office or the virtual private network. Everything is being done through the internet. Using Intune Autopilot, we can configure and deploy everything to the devices.

We need the capabilities of the Cloud Management Gateway (CMG) to be enhanced through Intune instead of Azure. I suggest that Microsoft consider this. If the user already has a subscription to Intune, they should not need to buy an additional subscription for Azure services.

The support needs improvement. When we need support, we don't get a response within the SLA because the support has been outsourced.

I have been using the solution for five years.

Microsoft Intune is a stable product. For the configuration, we could reach out to technical support, but other than that, we need not worry about anything. If we have configured the product correctly and we are not going to enhance any additional capabilities in Intune, then we need not worry about technical support.

The solution is extremely scalable. I give scalability ten out of ten.

Microsoft has outsourced its technical support so if we raise a ticket with severity, the technical support team may not be able to respond to us within the timeframe or the standard we expect. Sometimes we get the call within four hours. Sometimes we won't get that call for a day or more. The service side is pathetic now. To get support from Microsoft, we need to have our TAMs in place and then we need to submit the ticket. If we have already aligned a TAM for the tickets, we get support from Microsoft.

Neutral

Previously we were using Microsoft Configuration Manager. The Microsoft Configuration Manager is the dedicated server for managing devices on-prem. We need to make sure the device is on the same network through which the policy is getting replicated. The dependencies with that server as well as with the network are important, and the devices need to be online on the network. Using Intune as a backup solution, if the device is not on the network or if the device owner is not in the location but it has an internet connection, then we can deploy all our physical solutions onto the devices. We are using both, the Microsoft Endpoint Configuration Manager as well as Intune, since a couple of policies are still only being managed with the Configuration Manager.

The initial setup is straightforward. Once we have subscribed to the license, we will receive our tenant ID and organization ID. We can then access the portal and configure whatever we want. To save the configuration, we must enable it from the portal itself. The Azure Ready Connect GUI console makes it easy to join devices to Azure and to create and deploy conditional access policies.

We have four or five global administrator access levels in our organization. The most limited level is for the global administrator, who can be limited to one person. We need to involve them to enter the password while configuring the CMG, and then the Microsoft support in case we are missing any configuration during the installation or managing Microsoft Intune.

We deployed across more than 10 to 15 countries. The solution is used in India, the US, and England.

We have seen a return on investment using Microsoft Intune. We can save money by establishing our management point and cloud distribution point in Azure. Cloud support is an additional cost. We have to pay Microsoft for the VM, which doesn't act as a management point and the cloud distribution point for the endpoint. Endpoints are the on-prem devices.

Earlier, Microsoft used to give the license using the MSDN subscription, now the subscription part uses the M365 E3/E5. Existing E5 license holders for M365, Intune, and Azure, receive a free license.

If we're only upgrading to Windows 10 for the monthly security patches, Ivanti has Patch Now. Patch Now is a solution that gives us the same set of capabilities as IBM BigFix, but Intune has enhanced capabilities. Ivanti Patch Now is another product similar to the Microsoft Configuration Manager console and we have to make sure the device is on the on-prem network itself. Intune is a cloud-based solution that does not require the device to be on-prem. Everything is in the cloud, including device tracking, writing, and initiating remote connections.

I give the solution a ten out of ten.

I manage the endpoints for the implementation strategy and use the desktops or Windows for migration. I'm not from the mobile device management team, but I can give presentations on how the devices will work in the Autopilot zone with Intune. I'm also familiar with conditional access policies and what needs to be in place for a successful migration.

We have 35,000 end-users.

Maintenance is minimal. There have been no reports of any outages from the cloud perspective, meaning that any downtime is from Microsoft itself. However, on-prem systems may experience challenges. We don't need to worry about downtime and all the systems will still be operational.

New customers are definitely going to reach out to Microsoft for purchasing all the products. Microsoft will have its own lab. They will give us the live demo from the lab, but that won't be a feasible solution. We should check and bring that solution to our environment. It would be good if we can create our own test environment and then ask Microsoft to perform all those configurations and just train our engineer about the Intune part. We will know all the legacy parts of our environment which could impact when we are moving our devices to Intune, either the legacy app, legacy hardware, whether those devices are supported, the TPM, the Tested Platform Module, the BitLocker configuration, everything we need to understand before we move our device to Intune.

I'm an IT manager contracting with a European company. We had to onboard Windows machines to the Azure AD, but they did not have an on-prem AD. I prepped the Azure AD on the cloud, and I started to migrate the laptops to Azure AD. 

Once that is done, we need to apply policies, but group policies will not run from Azure AD because there's no on-prem AD to derive the policy from. Intune comes in handy there. It has multiple capabilities. You can create your configuration profiles in Intune that apply to Windows and Mac. You can create security profiles and configuration profiles, and you can apply browser settings to some extent. It isn't a small tool in terms of size or breadth of capabilities. It's very capable. Anybody who has used SCCM will see a lot of similarities.

Intune has many components that replace third-party products. For example, Intune creates an inventory of each machine. Otherwise, I'd need a third-party asset management tool. Intune can also tell me which users are accessing a given machine because it's integrated with Azure AD.

It's easy to deploy a configuration or policy to a system, especially when you don't have Azure AD. Now we are talking to all these small and medium-sized customers who don't necessarily have an on-premise Windows Active Directory. If they have invested in Office 365 Premium, this functionality becomes available to them.

That's considerable savings because you get Intune with Office, and you're getting slightly more advanced Azure AD capabilities. They also get MS Defender, which is there on the Windows client. This March, Microsoft introduced Defender for Business. They activated the business subscription with the Office 365 Business Premium subscription. If a customer is looking for an antivirus solution with a centralized capability, the product is already there. 

Intune allows you to control the policy if you want to control hard drive encryption. We have third-party tools in the market that we used to invest in. Today, we have Windows-native BitLocker, and I can use Intune to manage that BitLocker encryption.

Intune can set policies on each machine. I can create rules and apply them to individual machines. It's much easier than using the Azure AD system.

Reporting in Microsoft solutions is pathetic. With Intune, I'm getting a free inventory tool, but I don't get a reporting tool. When I go to Intune, I can see one machine's entire data in terms of the hardware and the software running on it, but I cannot generate a report for all the machines in the organization. The reporting is the only feature holding back the functionality that is already there. 

All the other third-party tools are doing the same thing, whether Atlassian, ManageEngine, or Ivanti. They all install an agent on your system. Intune also has an agent on your system collecting inventory details and sending them across the central console, but Microsoft doesn't have the reporting capability there. That is the only drawback I see.

I started using Intune last year.

Intune is perfectly stable. We've had zero downtime.

Intune will scale because it's a cloud system. We are not installing anything. It's a Microsoft service. I have it running on around 200 machines.

I rate Microsoft support nine out of 10. In the past year, I've made 20 or 30 support requests on the Intune platform. Each time, it has been smooth. Usually, they sort the problem out on the first try. Once, the ticket was open for about two weeks because they had to do some backend testing on their side. 

Positive

I have used ManageEngine from a company called Zoho Corporation to do inventories and patching. Microsoft Intune lacks capabilities to patch Windows, Office 365, Acrobat Reader, etc. There is no way for me to apply and manage patches. I can create a patch configuration, but I cannot control when it has to be deployed and on which machines. If Intune adds patching, I don't need to invest in another patching tool.

Setting up Intune is pretty straightforward. There may be a few bumps in the road, but you shouldn't have much trouble if you're a system administrator or a pure IT guy. I did it by myself, and it took about two hours. You have to do the basic configuration. 

For that, you need a bit of reading to understand how your configuration is working within your overall setup. Once you do the necessary tweaking, Intune is up and running. After that, you create policies and do a test run on one or two machines. Once you verify that everything is working fine, you deploy it all. 

If you're not a techie, I could guide you step by step. It's as simple as that. After deployment, Intune doesn't require maintenance because it's a cloud product. 

We've seen a significant return on the investment. Otherwise, I would have to invest in a regular Windows Active Directory. If I were running Office Standard, which lacks this feature, I would have to buy something like Intune and pay for it annually.

Plus, I have to manage another product on the desktop. For example, if you're using a VPN client, the VPN client has to be installed and requires maintenance if something goes wrong. I don't have that maintenance cost because it's part of the Windows operating system.

We don't pay for Intune because it is bundled with the premium subscription to Office 365. It includes Intune and Defender. I don't have to buy two extra products to manage my enterprise.

I rate Microsoft Intune eight out of 10. Some functionality needs to be improved, but I believe Microsoft is working on it. They're developing the tool, and those features will be added, but I will give it an eight today.

If you're thinking about implementing Intune, you should look at what you already have in place. For example, if I wanted to bring my laptops onto Azure AD, Azure AD will do the job for me, so I don't need to invest in a regular Active Directory server.

Either I buy the server and run it on the cloud or I upgrade Office and Business Premium gives me all of the features. Business Premium is the top license. You have Business Basic, Standard, and Premium. The Enterprise equivalent is E3 and E5. 

The Business Premium is equivalent to E3. There is a limit on the number of machines. Per Microsoft's licensing model, you can do up to 300 machines on Business Premium. At 301, you have to switch to an Enterprise agreement.

Based on my experience, I would recommend Microsoft Intune to organizations looking for management of a large number of devices and enterprise environments. 

I would suggest Microsoft Intune because it is a better platform since it can handle Windows, iOS, and other Linux systems. If an organization is looking to manage only Apple devices, I would prefer Jamf, as it is one of the better tools for handling Apple devices.

I haven't had any limitations or performance issues with Microsoft Intune since it has been a cloud-based tool. We haven't experienced many issues with performance as it is always up and running.

In my additional experience with Microsoft Intune, although it is a cloud environment, it still has some flaws. Microsoft might be aware that it cannot handle much load capacity, such as multiple deployments at the same time. While these deployments are possible, there will be some load balancing issues. The load handling experiences slow network fluctuations.

Thank you for the opportunity to provide feedback about Microsoft Intune. On a scale of one to ten, I rate Microsoft Intune eight out of ten.

I use it for deploying software and managing devices.

Microsoft Intune brings all of our endpoint and security management tools into one place. I can log into only one console and jump from one system to the other system seamlessly.

It is easy. When I hand out a new device to new users, I ask them to enter their email address and password. They just need to give the device 15 to 20 minutes, and it is done. Users can then start working on their devices.

It just works. I do not have to run after the software to see if it is the latest update. It just runs. It is setup-and-forget.

Microsoft Intune makes it easy to secure hybrid work and protect data on company and BYO devices. Once you have set up all the rules, it just works. You cannot mix personal data with company-related data. Also, no data can be extracted from the business aspect to the personal one.

Microsoft Intune's Endpoint Privilege Management feature enables us to enforce the least privileged access. For me, it is a big advantage to only have the rights I need and not the ones I do not need. For every specific case, I just request the required role for it, and afterward, I deactivate the role. From the security aspect, it is at a very high level.

It helps reduce data loss. It helps with data loss prevention. We also use multifactor authentication and block unknown devices and unknown users. Any external attacks are blocked via a lot of mechanisms. We can use our privileged roles only inside a closed network and with PKI-based authentication.

Microsoft Intune has affected the IT productivity in our organization in a positive way.

It is very important for us that its capabilities are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. This feature was one of the major things when we started digitalization.

The ability to work from all over the planet is valuable. You just need a functioning and working Internet connection. You can enroll devices by binding the hash values in Intune. You can enroll them from wherever the person is. It makes no difference if he is sitting at home or office or is on vacation.

They are always rolling out updates. You get more and more possibilities to enroll devices and configure their settings and security. I have confidence in the setup they have provided so far. I, as such, do not have any specific inputs or needs. However, there is always room for improvement when it comes to scalability.

I have been using Microsoft Intune for almost six years. I am always using the latest version. It is a cloud platform, and it is updated almost every month with new features.

I would rate it an eight out of ten for scalability. There is always room for improvement when it comes to scalability.

Their technical support is great. We always get an answer from Microsoft.

Positive

We were using Microsoft System Center Configuration Manager. We did not use any other vendor.

Using Microsoft Intune did not help us consolidate vendors. Our strategy is to not mix up too many different vendors and have just one. The best thing is that if you want to use Microsoft Azure and Intune, you can use the features out of the box. You do not need big modifications. You can take the default and build everything around your needs, and it will work.

This is the platform for every enterprise. It is easy to manage all devices such as Windows, iOS, and macOS in one place. You can also manage Android devices.

Overall, I would rate Microsoft Intune an eight out of ten because there is always room for more modifications and improvements.

Our organization utilizes Microsoft Intune to safeguard company data on employee laptops and cell phones that might be used for remote work.

We use Microsoft Intune to ensure compliance on devices, both on and off-site. Intune enforces settings like requiring a screen lock and allows us to remotely wipe lost devices to protect sensitive company information.

Microsoft Defender offers a built-in Intune dashboard that simplifies our workflow. While reviewing security information in Defender, we can easily see non-compliant devices flagged by Intune, eliminating the need to switch between applications.

The Intune user experience has become significantly easier. While in the past we required detailed instructions for app installation, recent versions of the Intune app guide users through the process, eliminating the prior challenge of users struggling with installation.

Intune's biggest benefit is its seamless integration with existing Microsoft products in our organization. Since we're already a Microsoft shop, Intune leverages our familiar environment for a straightforward implementation, offering centralized control for our SOC clients. We likely saw the advantages quickly, as with other Microsoft products.

Microsoft Intune effectively secures our BYOD program. If we have employees who need to work from home for some time, we make sure to install Intune on their laptops first.

Microsoft Intune has improved our IT team's efficiency by allowing a Bring-Your-Own-Device policy and facilitating work-from-home options.

The most valuable feature of Intune is the ability to reset a lost device and remove all the data.

I have been using Microsoft Intune for almost four years.

The technical support gets the job done.

Neutral

I would rate Microsoft Intune seven out of ten.

A selling point for us was that Intune reports back to the Microsoft dashboards that we already use.

We are using Microsoft Intune for personal devices, specifically for mobile devices with Android, iOS, and Windows. We have applied the policies over there for device restriction and compliance. We also have a few policies related to Microsoft Defender.

At the security level, it has done wonders. We can easily differentiate between applications. For example, there are a few applications that are only related to the organization's work. We can deploy those applications.

It is very effective. Since the pandemic, we have been in the remote work scenario. We are managing people working from the office and home. Microsoft Intune has been helping us with most tasks we are doing, such as deploying applications and resetting passwords. We are also enrolling the devices. It has saved lots of time and money.

It did not take us long to realize its benefits. We just put our scenarios, and it took us a month or two months.

Microsoft Intune integrates well with other Microsoft solutions. It collaborates well with Defender and Cloud PC. We will see a few more collaborations in the future. It will work with other features of Microsoft as well.

The reporting of Microsoft Intune is very good. They have been introducing new things as per the requirements of customers. It is quite granular compared to other MDM solutions.

The feature I like the most is that we can perform remote tasks. If we want to retire or wipe out personal data or corporate data from a device, we can use Microsoft Intune remotely, and with the click of a button, data is removed automatically. Nothing needs to be done from the end-user side.

The App Protection policies are very effective. With these policies, we can separate the corporate data and personal data. We can block the sharing of information from personal data to corporate data and vice versa.

There are lots of areas. The backend of Microsoft Intune needs to be improved. We have seen a little bit of delay as compared to other MDM solutions. That needs to be improved. A little bit more granularity should also be added.

I have been using Microsoft Intune for 3 years.

Its stability is great. I would rate it a ten out of ten for stability.

It has great features. It has a good amount of scalability.

They have been great. They have a team that works granularly on the issues. They also have unified support for this. They also have 24/7 support. We get good support from Microsoft. I would rate them a nine out of ten.

Positive

I have only used SCCM which was provided by Microsoft and was totally on-premises. I have not used any MDM solutions from them.

In my organization, it is a hybrid deployment. I was not involved in its initial deployment, but I know that it is a little bit complex for people who are using it from scratch. You need at least an experience with SCCM.

It is deployed at a single location. In terms of maintenance, it does not require any maintenance from our side. Everything is handled by Microsoft.

We have seen an ROI.

I am not that aware of the pricing, but as compared to other MDM solutions, Microsoft is providing a lot of things at the organizational level. So, it is quite reasonable as compared to other MDM solutions.

I would recommend Microsoft Intune to others. If you have any plans for having remote work in your organization, Microsoft Intune has the capability. In the future, you will also see Microsoft handling everything related to Active Directory, which is the backbone of an organization, from Microsoft Intune itself. 

I would advise learning Microsoft Intune as soon as possible because this is the future.

I would rate Microsoft Intune a nine out of ten.