Microsoft Intune Reviews

We are using Microsoft Intune for mobile device management (MDM) to provide context-aware access to the users. Mobile device management is what we predominantly use Microsoft Intune for.

Initially, the scope of Microsoft Intune was not too good because it could only manage certain endpoints such as laptops, desktops, and mobile devices. We initially had a problem with the servers, but they started supporting servers in the last three or four years, so now, it is good. It manages virtual machines and servers, both on-premises and in the cloud. It has improved and is still improving in a lot of areas. 

It provides group policies that we had in the early days of Active Directory. That is good when it comes to applying the policies to endpoints and servers from Microsoft Intune. Initially, we did not have all group policy settings inside Microsoft Intune, whereas now, we have patching and the ability to push the policies for antiviruses, etc. We can also handle mobile device management policies. Everything can be done via a single console. It is easily manageable, and we can have a single administrator to manage all the policies. We can have one or two administrators for backup. Traditionally, we had multiple administrators for each and every console. When you are a big Microsoft shop, it is easy to manage everything.

Microsoft Intune is good for a hybrid workplace. The conditional access policy is one thing that we can use for devices. For example, we can allow access to critical data only from corporate devices and not from personal devices even if someone is using the company account. We can go even more granular where someone can access the data but cannot download it to his or her personal device. Microsoft Intune is good for handling BYO devices.

It has had a good effect on our organization's attack surface. I would rate it an eight out of ten for that. We can implement rules for attack surface reduction. That is possible when devices are managed by Microsoft Intune. 

The IT productivity in our organization is far better. I would rate it nine out of ten for that.

Mobile device management is good. I am easily able to manage devices and assets, especially laptops and desktops. 

An important feature in Microsoft Intune is the Conditional Access policy, where I can provide specific access to a specific user based on geolocations, and there are multiple options inside it. Conditional Access is its best feature.

Its user experience is very good. I would rate it a nine out of ten for that.

For Windows machines, all the features are available within Microsoft Intune, but when it comes to Mac machines, it is still improving. It is not as good as Jamf. When it comes to customizable policies and other things in Mac machines, it is a little bit difficult. It is not as good as Jamf, but for Windows, Microsoft Intune is good if you have a good budget.

Its integration with Mac and Linux devices can be better. They should provide more features similar to Windows. We should be able to manage policies within Linux and Mac machines. If we can have more granular controls for these two operating systems, it will be really helpful. That is one area where they can improve.

When it comes to automatic updates, none of the vendors are doing it so well. The expectation right now is to have everything automated and automatically upgraded to the latest version of the software. The discovery capability of Intune is good because it is Microsoft. They can do discoveries based on their internal commands and other things and pull all the information into Intune. That is easy, but doing the upgrade of third-party software is a little difficult. It is evolving, but we cannot do the upgrades of all third-party applications. A financial or banking organization allows a limited set of applications to be used. For them, Microsoft Intune is better because when you have only 15 to 20 applications, you can easily upgrade them through an automated platform like this.

It is not similar to any of the PAM solutions. It is still in the starting phase. Other PAM solutions, such as CyberArk, can do remote session management. They can handle vaulting and other things. When it comes to EPM within Microsoft Intune, I do not know whether they are planning to go with the PAM or Privileged Access Management platform, but with the current solution, we can do user account management. We can do password rotations. We can add a new user, remove a user, and provide access to a particular resource for a user. All these steps are manageable and possible, but for Privileged Session Management and Access Management, it still needs improvement.

It is very important that the capabilities of the Intune Suite are integrated with Microsoft 365 and Microsoft Security for both cloud and co-managed devices. The integration with the M365 platform, especially with Microsoft Defender for Cloud, Cloud Apps, and Endpoints, plays a big role. Intune can discover and find out the devices. The integration is still happening. It is not yet over. There is room for improvement.

I have been using Microsoft Intune for about seven years. I have been a customer for four years and then became a partner because I joined a new organization. This new organization is a partner of Microsoft. I have been with this organization for three years.

If there are any issues with Microsoft Azure Cloud, we may have issues or downtime, but they are rare. It is 99.99% available. Only if Microsoft Azure Cloud goes down, we have a problem. Otherwise, it is okay.

There are no issues with scalability because it is a cloud solution. It is automatically scalable.

If you are paying for support, you get good support. If you are not paying for support, you do not get support.

Technical support can be a bit of a problem when it comes to costs. They have a professional service and a normal service. With the normal service, it is difficult to find out answers from them because they are not experts. We only get experts with the professional service, so if we pay, we get support. This is something difficult for a small organization because they cannot always pay for support for every issue.

When you give a product, you should always provide good support. If you do not have technical people, what is the purpose of having a support team? It is useless. They should have at least one or two people who can technically help an organization.

We use different tools. We use Jamf for Mac and Ansible for Linux machines. We have not yet fully switched to Microsoft Intune for Mac and Linux. Very few Mac machines are with Microsoft Intune. Most of our Mac machines are still with Jamf.

Companies that are using Microsoft products go for Microsoft Intune. However, when people have more Linux or Mac machines, they do not choose Microsoft Intune for their organization. We recommend a solution only after knowing the expectations and use cases of a client. Small companies do not prefer Intune because they can have JumpCloud. Small companies with less than 500 users can also go for Google Workspace. For companies that already have a Microsoft license such as E5 or O365, going for Microsoft Intune makes sense.

Microsoft Intune improves the security posture, but because of the budget and other constraints, organizations can start looking at other vendors.

It is not complex when it comes to Windows machines. It is straightforward, but when it comes to the other operating systems, it is complex. It is not easy.

The number of people involved depends on the users. If you have 1,000 devices, for Windows machines, you do not need more than three or four people. However, for 1,000 Linux or Mac machines, you would need a ten-member team.

The maintenance is easy. You do not need extra people to manage Microsoft Intune because it is a cloud service.

I am using E5 security and compliance. It has all the Intune options and security and compliance subscriptions, so I use the full suite of Intune except the EPM module. We have not yet started using the Endpoint Privilege Management module. It is a small add-on that we have to use. Other than that, we are using everything.

There are other tools that give a similar approach but are not as good as Microsoft Intune. In terms of cost, it is more expensive than other tools like JumpCloud, Google Workspace, etc. There are multiple tools like this. Only if you are a Microsoft shop, I would recommend going for Intune. Otherwise, use some other tool and manage the organization.

Its licensing model is not complex, but it is very expensive compared to other solutions. They can bring more models and reduce the pricing. They should allow customers to select the features they want and price it accordingly. That would be a better option because not every organization needs conditional access or an antivirus solution. Some organizations that use Intune might use CrowdStrike, so they do not need Intune policies for antivirus. It would be better if they could bring more plans.

I would advise to not look at the cost first. Instead of the cost, look at the features and then list down the use cases for your organization, and then go for the consolidation of the tools. Microsoft Intune can give you a lot of features, but whether it is suitable for your organization or not is the main question. List down the use cases and then assess Microsoft Intune because it can give a lot of features that you do not want, but you cannot omit them while buying it.

We are not using Advanced Endpoint Analytics because we have Sentinel and Chronicle SIEMs in our organization. We also use SDR platforms, so we are not using Microsoft Intune for any of the analytics. We are also not using Microsoft Intune Suite's Cloud PKI.

We started using Microsoft Copilot for a small organization. It has only been two months. We are building the use cases for that organization. They have purchased the licenses, but we are building the solution design and use cases for that particular organization. They want to automate most of the things, identify the non-compliant devices, and automate whatever they find non-compliant. Our aim is to identify non-compliant devices, do some automation, and block them from accessing any of the critical data inside the organization, but we do not know if Microsoft Copilot can do that.

Overall, I would rate Microsoft Intune a nine out of ten.

We use Microsoft Intune for both application management and deployment for new users. Applications are packaged within Intune and then deployed to the end user's machines or devices, specifically targeting designated user groups.

Intune allows us to manage all our devices from one location.

The ability to manage all our devices from a single platform has significantly enhanced our security and IT operations. Previously, we relied on multiple applications, such as Ivanti and SCCM, to manage devices and security.

Intune is easier to use than SCCM. As a SaaS application, its services are GUI-based, simplifying its overall complexity.

We use Intune's advanced endpoint analytics to report the number of compliant devices, apply remediation, see the reasons for non-compliance, and track the number of BYOD devices. We can integrate third-party tools like ServiceNow if we need reporting or analytics that are unavailable through Intune.

Copilot's integration with our teams and Outlook has streamlined our workflow. It simplifies tasks like drafting emails and creating Word documents or PowerPoint presentations by providing helpful suggestions. Additionally, Copilot's independent profile allows us to reference documents from our OneDrive and seamlessly incorporate them into our emails. We can even leverage Copilot to reference Intune and integrate it into our various cloud data. Although Copilot is still in its early stages, its potential is evident. As we continue to use it, it will gather more data and refine its capabilities, offering even more features and benefits to end-users. Currently, we primarily use Copilot for drafting emails, creating presentations, and similar tasks, but its future applications are promising.

Intune helps protect data on both corporate-owned and BYOD devices in hybrid work environments. Devices can be registered through the company portal, and Intune can restrict their access to local storage, preventing unauthorized data downloads.

The endpoint privilege management feature helps restrict users' access. For instance, if they are accessing Outlook, they should not be able to access their local drives, preventing them from uploading or downloading anything from their corporate email. This feature enables those types of security settings.

Intune has significantly improved our productivity. Thanks to Intune and Autopilot, tasks that previously required four to five hours of IT effort can now be completed in just one hour. This translates to a 75 percent increase in IT productivity.

Intune has significantly reduced costs from a resource perspective. Thanks to Autopilot, scripting, and automation within Intune, a junior person can now complete tasks that previously required two engineers. This efficiency has resulted in a 50 percent cost reduction.

Intune has allowed us to consolidate other tools, such as SCCM and Jamf, reducing the need for additional licenses.  

The automatic patch management feature in the Intune Suite is helpful.

Intune has all the features enabled for Windows devices but needs to be improved on iOS and Apple devices. 

I have been using Microsoft Intune for one and a half years.

The response time from technical support has increased over time. Contacting their support remains straightforward, but while we used to receive a response within one hour, it now takes three to four hours for a Microsoft engineer to respond. The quality of their response has stayed the same.

Positive

Before implementing Intune, we used SCCM. We switched to Intune because of their advancements. We still use SCCM exclusively for server-related deployments, managing server-related applications, and patching. Everything for end-user devices has been moved to Intune. As for other similar tools, Jamf, which we used for iOS device management, can now be retired or decommissioned from our infrastructure since we can also manage iOS devices through Intune.

The deployment of Intune is straightforward, as it's a SaaS-based application. We set up our Intune connector and Azure Active Directory or the Azure AD Connect server to synchronize objects to Azure. Once that's done, we can manage our devices through Intune.

I rate Microsoft Intune nine out of ten.

The integration of Intune Suite with Microsoft 365 and Microsoft Security is included in our E5 license, providing us with the Intune license at no additional cost. This eliminates the need to purchase a separate Intune license, saving us money and streamlining our licensing.

Public Cloud

Microsoft Azure

My main use cases for Microsoft Intune are to manage devices, remotely wipe lost devices, and enforce device security.

Microsoft Intune has definitely reduced management burdens. It has helped us significantly. 

Microsoft Intune has changed my customers' abilities regarding app discovery, deployment, and automatic updating. They use it extensively.

The feature of remotely wiping devices in Microsoft Intune is what I prefer the most. When employees come and go, we can remotely wipe devices. This is what we primarily use it for.

In terms of the admin experience, it is straightforward, but the Windows enrollment experience could be improved. Sometimes, for enrollment, we have to reset devices and re-enroll them. Just configuring Windows, Azure, or Active Directory doesn't enroll the devices. We need easy enrollment for Windows.

Microsoft Intune can be improved by integrating Lighthouse and making it easier for partners to manage customer devices. They have remote help in Microsoft Intune, but they charge a license for it. For partners who manage thousands of devices, they should not charge, as it could be integrated with Lighthouse to provide remote support and better help customers.

It is at times slow. It takes time in the backend whenever we push out enterprise apps or reset devices.

I have been using Microsoft Intune for approximately five years.

Microsoft Intune meets my needs for scaling and is scalable.

It's good. We pay for premium support, so we receive good support.

Positive

We also experimented with Google's solution before choosing Microsoft Intune. The main difference was that Google only supports Chromebook and doesn't handle Windows, so we use Microsoft Intune for Windows.

The return on investment when using Microsoft Intune is good. It has been helpful for us and our customers. 

It's bundled with Business Premium and an E3 license, which is beneficial. If you have to pay extra, it's pricey, but with the bundled package, it's acceptable. They recently increased the Business Premium pricing, which we don't appreciate. The price increase and yearly commitment are causing some problems for us.

We considered TeamViewer. We went for Intune because it is included with our Business Premium licensing, so we don't have to pay extra for it.

I would rate Microsoft Intune an eight out of ten. To make Microsoft Intune a perfect ten, they could provide remote help for partners with Lighthouse, make it easier to enroll all devices, and make it faster.

Public Cloud

Microsoft Azure

Our primary use case for Intune has been securing our desktops. We now also use it to secure our servers, which started about a year ago.

Before, we used to reactively track down issues and fix security holes. Now, we're more proactive, stopping threats before they occur rather than reactively removing them afterward. This change helps stop the spreading of security issues.

Intune's integration with Defender and other security solutions is valuable because it offers a view into different security vulnerabilities and enables us to secure them more effectively. It's easy to use. There isn't a huge learning curve. It doesn't take long to get in and figure out where everything is. 

The application management feature's automatic updates help a lot, especially when we need to push updated scripts and apps to our desktops. We can update quickly instead of getting everybody to download and install it. 

Intune's server management could be better. If it could incorporate more features from System Center into Intune's Configuration Manager, it would be beneficial.

I've been using Microsoft Intune for about seven years.

There are no problems with Intune's stability. 

Scalability is great. We've had no issues scaling it across different environments, managing multiple Office 365 tenants and servers with no problems.

We used System Center Configuration Manager before moving to Intune. It's essentially an upgrade that allows us to manage both desktops and servers.

The initial setup had some issues, primarily with understanding scattered documentation, but it was resolved without much difficulty.

We deployed Intune in-house with our internal IT staff.

We are saving at least two or three hours a day since implementing Intune.

I don't have any information on pricing, setup costs, or licensing.

We did not evaluate other options before choosing Intune.

I rate Intune 10 out of 10.

We separate users on mobile phones from users on other spaces. 

I really appreciate the features in Microsoft Intune, including the Intune Suite Cloud PKI. 

The main benefits that Microsoft Intune provides for me include data safety.

My main pain point for Microsoft Intune is the contact part. Not all Android or iOS applications have access to integration, for example, contacts. 

Another area I would want to improve in Microsoft Intune is the pricing. 

I have been working with Microsoft Intune for four to five months as a new user.

I would rate the stability of Microsoft Intune as fairly stable.

I have no issues with the scalability and ability to expand Microsoft Intune.

I have never contacted technical support from Microsoft.

Positive

We solely work within the Microsoft environment. 

The setup of Intune is easy; however, getting used to it is not.

We purchased the solution directly from Microsoft. I find the price for Microsoft Intune too high, which represents an area for improvement in Microsoft's pricing model.

We did not compare the solution to any other vendor.

We are using SharePoint as object storage, and for file storage, we are using Azure for verification and authentication services. I would not be able to tell you more about what we are using on the back side, however, Microsoft Intune is being used.

I personally am not working with the integration of Copilot with Microsoft Intune.

I can recommend Microsoft Intune for everyone, whether they are small, mid-size, or enterprise-level companies.

On a scale of one to ten, I would rate Microsoft Intune an eight.

Intune is suitable for everyone. It's good for companies of all sizes. I'd recommend Intune to other users.

Public Cloud

Microsoft Azure

I use Microsoft Intune for endpoint management. I administer Intune for many clients, and I also use Bring Your Own Device (BYOD) application protection policies.

The most valuable feature of Microsoft Intune is its scalability. It helps reduce hands-on IT support, especially with remediations. Since it is a cloud solution, there is no need for on-premises infrastructure to support endpoints. Endpoint Analytics is considered very useful, although it can be slow. Endpoint Privilege Management greatly increases productivity by allowing admin rights to be assigned to individual applications.

The platform is incredibly slow and could be more responsive. Specifically, when making changes to security policies, I would like to see those changes take effect more quickly.

I have used Microsoft Intune since more than 2019, so approximately three years.

For me, the deployment is not complicated, but it is a complicated process overall.

Microsoft Intune is generally stable but slow. I would rate its stability at eight out of ten.

I would rate Microsoft Intune's scalability ten out of ten. Being a cloud solution increases its scalability.

The technical support for Microsoft Intune is slow to respond and not great. I try to avoid using it because of its slowness. If you can get through to technical support, it is great, but the triage process is lackluster. I would rate their technical support five out of ten.

Neutral

I previously used Symantec Altiris. I switched to Microsoft Intune for native cloud support, as Altiris was not native at the time with cloud support.

Using Microsoft Intune saves costs by reducing the need for hands-on IT support. It has improved our ROI by lowering licensing costs due to the consolidation of vendors.

I rate Microsoft Intune eight out of ten because it is improving all the time. The biggest lesson is that all solutions must be integrated, especially in the journey to the cloud. It is important to keep up-to-date with changes in Intune to ensure all adaptations are utilized.

Public Cloud

Other

We use the solution for Autopilot. The company uses it for onboarding to Autopilot. We're using it mainly for mobile devices as SCCM cannot handle mobile devices. It works great for iOS, iPads and MacBooks. We do use it for Windows as well. 

If a user wants to purchase any application, they have to do it manually. However, we are now able to purchase the apps for the user and the user can access the apps without having to purchase themselves manually. When we use a VPN, we can utilize a protection policy where we can create rules around certain apps so that no data can be copied to an unmanaged device, for example. The device will be deactivated based on a threat to compliance. 

Intune allows us to deploy legacy policies and future policies for our devices. We can create policies for pushing Windows updates. 

The user experience is mainly for mobile devices, and it's very good for protecting personal devices. It helps us control company data, even on personal devices. Overall, the user experience is good. 

We are using Microsoft Copilot. We've very recently started using it. If you have a Copilot license, it can show policies for each device. It's a very useful feature. We're just starting to test it with our pilot groups. However, so far, it's given us the complete details of policies installed on individual devices. It will help us simplify our security operations. For now, we're working with our security and compliance teams to put it into place fully. 

If any user tries to access company data, it directly interacts with the conditional access policy. This helps us protect our data and set the criteria for how data can be accessed and shared. 

The enterprise application management feature for app discovery deployment and automatic updating is very useful. If you want to use a managed application in Intune, it needs to be authorized in Azure. This is an extra protection that ensures only proper applications are used. 

Intune can reduce the manpower needed on the IT side. By pushing customized policies, we can manage everything via the cloud or on-prem, and everything is seamless as it offers hybrid endpoint management capabilities for all devices.

With Intune, we can now manage both Windows and iOS devices under one solution. It's saving us a lot of costs by streamlining the management platforms needed.  We've been able to consolidate vendors. Since everything is now with Microsoft, the enterprise cost is different. The licensing is very easy.

From SCCM, you can control the complete patches of the Windows device. Either it's a future update or a critical update. Otherwise, it's just a security update. However, when it comes to Intune, we have no option to defer the policy. We can defer for 60 days; however, apart from that policy, everything needs to be deployed from Intune.

If you wish to block any App Store application, there is no way to do so. I have no app-blocking policies. If any user installs an application, the complaint policy will check it. Eventually, the device will remove any non-compliant devices. However, it will take time. There is no rapid, pre-emptive way to block the application directly from the App Store.

Intune doesn't bring all of our security management into one place. Windows patching isn't very visible in Intune. 

We need to manually add in serial numbers of the hardware. It would be ideal if the solution could offer a seamless enrollment option.

We'd like to have more visibility on endpoint security, specifically around antivirus and disk encryption. You can configure the firewall, however, it would be ideal if there was a single portal where we could manage all security efforts - from encryption to antivirus to firewalls - anything related to the network.

I've been using the solution for almost six years. 

The stability of Intune is very good. We don't need to take care of the network or anything since it's not on-prem. It's completely stable in the cloud. 

We have about 50,000 Windows devices and 25,000 iOS devices using Intune.

We haven't faced any limitations when it comes to scalability.

We've very rarely had to reach out for support. We had to in June for an update across iOS applications; however, beyond that, our need for them is very rare. You do need to be at an enterprise level in order to get complete support from Microsoft. 

Neutral

Previous to Intune, we were supposed to use only the WatchGuard devices with Citrix since we did not have any SCCM setup. Citrix completely managed the devices. And even if any user wanted to access something from home, the user had to log in first, sign in to VPN, then sign in to any virtual machine related to Citrix, and only then could they use OneDrive or whatever. There was the added cost of getting virtual machines and then having everyone utilize some more bandwidth. Using Intune helped the company streamline access and reduce bandwidth.

We also had a different process for iOS versus Windows products. For iOS, we had people accessing via AirWatch. Intune allows us to have one single type of license for all devices. Plus, Azure's Microsoft Defender offers security. 

The initial setup is not complex. If you are simply setting it up for a mobile device, it's very easy. It will redirect users for conditional access to ensure compliance. How many people you need to deploy is based on scale. However, even with thousands of devices, you only need two or three people as they would need to set up the groups. 

The tool is easy to maintain. 

We've witnessed a very good ROI by consolidating all of our platforms under Windows. A single license can cover five devices. You can sign in and gain access to all sorts of Windows applications from 365 to Excel. 

The licensing is very reasonable. With a single enterprise or EMS license, you can manage the Teams-certified device, and you can manage Windows as well as mobile devices. You can use Azure and get security. You get everything with a single vendor, which helps save costs by 30% to 50%. 

I'm working as an Intune engineer. I'm an end-user.

By moving to Intune, companies can control more DLP. The data loss protection is all right there. Users gain more visibility with Intune. 

I'd rate the solution seven out of ten. 

Public Cloud

Microsoft Azure

We use endpoint management, both SCCM and Intune, so it is a hybrid model that we use in order to manage applications, patching, updates, and operating system deployment with Intune. We also use Autopilot for deployment.

Intune has been effective in managing various mobile devices. It would be Apple Business Manager for Apple devices, the iOS tray. It's easier to manage from Intune compared to Android. I've recently heard that Android devices will no longer be managed from Intune. The MDM part is moving away.

Intune's app management feature for supporting business operations is very easy and seamless for an admin to package applications on Intune. It's also very easy to track logs on the end-user device to understand deployment or push failures. Application management works really seamlessly with Intune.

Moreover, Intune has made it very easy to package and deploy LOB apps like MSI and MSI X applications available on the Microsoft Store. This is very helpful.

Intune brings all of the endpoint and security management tools into one place. Microsoft has integrated all its cloud platforms, like Defender for Endpoint and Intune for endpoint management. We can easily manage the Defender part from the Defender portal for endpoints, and it's very easy to track vulnerabilities on the Defender portal as well. 

It's just a matter of installing the Defender client on a device, and we can easily see all the scan results from that device on the portal. So it's very easy and simple, and the security information is all on the dashboard, ready to be presented to the client.

Automatic updating can be challenging for apps not available on the Microsoft Store. We need to package and download those apps, and it's not just pushing them; we need to create scripts to uninstall previous versions. That's a caveat compared to SCCM, where we can integrate third-party tools to manage third-party applications. I hope they will soon integrate something like Patch My PC. Apart from that, it's good.

We don't use the advanced endpoint analytics but, we use the basic features available on the dashboard. We have various data sources and get a lot of reports from there.

We also don't use Intune PKI as of now because we manage PKI from our on-prem environment. But we have seen that BYO CA (Bring Your Own CA) is now available on Intune. We can bring our own CA to reduce the load on the on-prem infrastructure. That's one of the features we need to test.

Overall, Intune provides a more secure and easily monitored environment, with live and native support, unlike other tools. For example, we might get data that is seven days old with other tools, but with Intune, we get data that's only eight hours old. This helps us understand what applications run on a particular machine and which operating system is installed. Intune has saved us time and provides valuable features.

The best features are application and update management. In the context of updates, it's very easy to manage device updates through Intune because they pull updates directly from the internet. We don't have to select and push updates as we do with SCCM. 

For application management, we have many options for packaging applications. 

The overall user experience of Microsoft Intune a ten out of ten. There are certain limitations, but I would still rate it ten out of ten compared to Jamf, Tanium, and BigFix. I find Intune far better and easier to use.

I also tested the enterprise application management feature. The way we are packaging using Windows 32 apps and LOB apps. These are pretty simple to manage.

We recently introduced Copilot on Microsoft 365 portal to help draft emails. We were highly dependent on Grammarly before, but Copilot has replaced it and saved us the licensing cost. That's one way we use Copilot.

Copilot won't protect our environment. It's just an AI tool. Defender is responsible for protecting our environment. Copilot can answer our questions quickly, without needing to browse through Google or a browser. It's integrated into almost every application. We can click on it and ask our questions.

Copilot has reduced the load of typing. We can just give it a brief instruction, like "draft an email to my manager regarding a new joiner," and it generates a draft. This saves us time and typing effort. We just need to proofread it.

We've only seen Copilot so far. We haven't tested any other AI tools in Intune yet. Copilot is very useful, and it's a Microsoft product.

The challenge we experience is with Mac management. We find Intune not capable enough to handle Mac devices, configurations, or operating system deployments. However, it's easy to manage Windows devices. Mac itself has a lot of restrictions. Linux and Mac operating system compatibility need improvement. Also, they need to work on making GPO (Group Policy Objects) compatible.

Microsoft needs to work on Autopilot and make it simpler at the end-user level.

We also face challenges managing group policy. Many group policy objects that we can manage from on-prem Active Directory can't be managed through Intune. That's something Microsoft needs to work on, and I'm sure they will.

I have been using it for more than four years. 

It is a stable solution. I would rate it a nine out of ten.

Everyone in our organization uses this solution. But, for the project I am involved in, just 15 people use it. 

We have medium to enterprise businesses as our clients. 

I would rate the scalability an eight out of ten.

The customer service and support are average. Sometimes I feel they don't even know about their product. 

Neutral

I can compare it to Tanium. When I was doing a POC in place of Intune, we needed to compare other tools as well. Tanium is a good tool, but I can't find any other tool that can replace Intune with so many features.

I like the user-friendliness of Intune's GUI and the fact that we get so many features under one roof has attracted our attention.

The deployment of Intune depends on the environment in which it is being deployed. In our case, it was pretty simple because we didn't have much insight. However, depending on the requirements of a different environment, it can become complex.

The deployment takes a couple of months would be a good estimate. You need to plan everything and then execute, and migration is involved.

Intune works seamlessly with Microsoft Defender. With other security solutions, we see a lot of challenges. It depends on the complexity and scale of the environment. But it's really compatible with Defender and Intune integrates well with other security solutions.

Intune requires maintenance. It requires internet access because we need to manage certificates, check on the DMF file, and clean up stale devices.

It has helped admins immensely in order to manage those endpoint devices. With other tools, the device needs to be on the office network or VPN. Intune removes this dependency. 

We can manage devices through the internet, and we won't miss any devices that are offline.

It has saved 60% of our time. I can't put an estimate on cost savings, but it has saved a huge cost because we don't have to manage infrastructure anymore.

It's a little expensive, but it's worth having.

Compared to other tools in the market, Intune is a good tool to go with. It's a little expensive, but it's really good because we have almost everything under the same umbrella. The features that Microsoft offers are not available in BigFix, Tanium, or Canvas. But it also depends on your budget.

I would definitely recommend it. We get promoted features, and it's easy to use. The ease of use is really attractive for admins, especially compared to other tools.

Overall, I would rate it a nine out of ten. 

Hybrid Cloud