We compared Microsoft Intune and Microsoft Defender for Endpoint across several parameters based on our user's reviews. After reading the collected data, you can find our conclusion below:
Initial Setup: The user reviews for Microsoft Intune and Microsoft Defender for Endpoint show that the duration required for establishing a new tech solution can vary. Both products have users who reported spending three months on deployment and an additional week on setup, while others mentioned needing a week for both deployment and setup. The context in which these terms are used is crucial for accurately evaluating the timeframes.
Valuable Features: Microsoft Intune is praised for its seamless integration with other Microsoft products, comprehensive mobile device management capabilities, and user-friendly interface. On the other hand, Microsoft Defender for Endpoint is highly valued for its robust security measures, efficient threat detection and prevention capabilities, and effective management and reporting tools.
Room For Improvement: Microsoft Intune could improve its user interface, ease of use, and integration with other Microsoft products. On the other hand, Microsoft Defender for Endpoint needs enhancements in system performance, threat detection capabilities, and user interface.
Setup Cost: The setup cost for Microsoft Intune is considered reasonable, and the licensing process is straightforward. On the other hand, Microsoft Defender for Endpoint also has a reasonable and straightforward setup cost, with a user-friendly and hassle-free licensing process.
ROI: Microsoft Intune has shown positive outcomes and benefits according to user feedback, while Microsoft Defender for Endpoint has also proven to be a valuable investment with positive user feedback.
Customer Service: Microsoft Intune's customer service is praised for prompt and helpful assistance, while Microsoft Defender for Endpoint's support is highly praised for its promptness, effectiveness, and level of guidance and troubleshooting provided.
Based on user reviews, Intune's competitive pricing options and straightforward licensing process make it cost-effective. While both products offer seamless integration with other Microsoft tools, Intune's user-friendly interface and comprehensive mobile device management capabilities make it more intuitive and efficient to use. Additionally, Intune's customer service and support have been praised for their prompt and helpful assistance.
"I find the vulnerability management section of Microsoft Defender for Endpoint to be very useful for organizations."
"The threat hunting service is very useful for a security professional."
"It's a very complete application. I have all the controls in one site. I can track emails, attacks, and threats, and I can research information. I really like this configuration because I have all the information in place."
"I like the simplicity of the portal and the integration with Microsoft Intune. Microsoft Defender for Endpoint is easy to use and implement."
"The virus scanning capability is excellent, and it feeds all the logs into the Microsoft 365 Defender portal, making them easy to search for."
"The detection features are valuable, as is the fact that it is easier to port these logs into Sentinel. That is also useful for us. It is more comprehensive."
"For threat-hunting, I'll put some threats in a test scenario. I've downloaded known viruses that are out in the public for testing. They're not really a virus but they've got a signature. Defender for Endpoint will automatically find those, quarantine them for me, and alert me to what it did. It gives me "automated eyes.""
"The integration of Defender, Security Center, and the Microsoft compliance score, is the feature we use most to share the results with our clients and to create a roadmap together."
"Its direct integration with all the other products that we have from Microsoft is valuable. We're using the E5 license, and we have a whole wealth of different products available. It just makes it easier to have everything from one provider."
"Intune provides full visibility into all active mobile device users. If their devices are noncompliant with our security policies, I have the flexibility to update them remotely."
"It provides control over all mobile devices that are being connected to the corporate network."
"Users can make screenshots, and devices only need the minimal version of iOS."
"Its security is most valuable. It gives us a way to secure devices, not only those that are steady. We do have a few tablets and other devices, and it is a way for us to secure these devices and manage them. We know they're out there and what's their status. We can manage their life cycle and verify that they're updated properly."
"Agile and easy to deploy MDM solution that covers the maximum number of policies. Stable, scalable, and with knowledgeable technical support."
"The main advantage is that Intune performs its intended functions effectively."
"The ability to manage devices with different sets of policies is most valuable."
"On the Mac OS platform, there is no parity between Windows and Mac OS. The solution is very feature-rich and very well-integrated into Windows, and I guess baked into Windows 10 and Windows 11. Whereas, on the Mac OS platform, there is still some work there to give it a more feature-reach platform."
"The application control feature requires improvement."
"They're in the process of pulling more things together. They can continue with the integrations and provide a better way of seeing the impact of security changes, especially on the endpoint side. Before we actually flip the switch, we should be able to see the impact of security changes on the business or business applications. It would prevent breaking any business applications."
"Microsoft Defender for Endpoint can improve by providing more and different types of reports."
"The integration and effectiveness of email security could be better. It's already built-in to the solution and checks emails, scans the links they contain etc."
"It would be helpful if they offered video tutorial guides."
"Microsoft Defender for Endpoint is not as robust, and you cannot customize it much, so that's a challenge."
"They should come up with pre-built inner workflows."
"The reports aren't complete, and it's not easy to build custom reports. For example, Windows Autopilot isn't working well in cases where the computers don't have a good internet connection. Then the option is not good enough."
"Microsoft needs to enhance device-level security, as sometimes when using Microsoft Intune, the device's operating system becomes stuck and requires a full uninstall to remove the Intune bug."
"It's only good for a Microsoft environment."
"The security features should be improved."
"Microsoft Intune's support for Mac devices is lacking and could be improved."
"Intune's third-party patch management could be better. It should be easier for the average system admin to keep non-Microsoft applications updated."
"In the next release, I would like a feature to be able to properly lock down the device. For example, if an attacker or somebody steals the phone, you can be sure that the pin cannot be broken."
"The solution could be improved by the opportunity to connect third-party application databases, such as Chocolatey or another setup store, to Intune."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
Microsoft Defender for Endpoint is ranked 6th in Microsoft Security Suite with 92 reviews while Microsoft Intune is ranked 3rd in Microsoft Security Suite with 72 reviews. Microsoft Defender for Endpoint is rated 8.2, while Microsoft Intune is rated 8.4. The top reviewer of Microsoft Defender for Endpoint writes "You can access all your security data and telemetry from a single pane of glass". On the other hand, the top reviewer of Microsoft Intune writes "Enables you to use MDM to lock devices and push restrictions, but isn't as stable as other solutions". Microsoft Defender for Endpoint is most compared with Intercept X Endpoint, Symantec Endpoint Security, CrowdStrike Falcon, SentinelOne Singularity Complete and Cortex XDR by Palo Alto Networks, whereas Microsoft Intune is most compared with Jamf Pro, VMware Workspace ONE, ManageEngine Endpoint Central, SOTI MobiControl and AWS Systems Manager. See our Microsoft Defender for Endpoint vs. Microsoft Intune report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
In recent years Microsoft has really upped its game with Defender and Intune. As core cyber-security for an SME, keeping just to Microsoft is now a real option. The challenge is understanding the gaps / cyber security service weaknesses (if they exist) in comparison with other vendors such as ESET, Malwarebytes, Trend Micro, etc.
Azure AD Services, Defender for Endpoint, and Intune are all Microsoft products, but it is important to understand how each product works as they may not be compatible and there may be some limitations.
Devices managed through Intune may not have all of the Defender for Endpoint features. Some advanced features such as automated investigation and remediation may only be available for devices that are enrolled in Defender for Endpoint standalone.
In addition, Azure AD and Intune have different requirements for device enrollment and management. Intune requires devices to be enrolled and managed through an MDM solution, while Azure AD provides basic device management capabilities but may not support all of the features available in Intune.
Lastly, there may be limitations to how user identities and access are managed between Azure AD and Intune. Some features that are available in Azure AD, such as conditional access policies, may not suit Intune, and additional configuration may be required to ensure that user identities and access are properly managed across both services.
If anyone out there has other experiences, please let me know!
It depends on your company's infrastructure. Check with your cyber team whether you can sync your endpoints to Cloud using Azure AD as Azure Registered/ Azure Hybrid AD join/ Azure AD join, etc.
1. So, if the ask is only to enroll them in Intune to leverage defender/BitLocker services - go directly to Azure AD's join approach.
2. If you still want to manage patch management/mcm BitLocker but Defender via cloud, the approach should be Azure Hybrid AD join.
3. You can still use autopilot using both of these approaches.
I believe it is a good first step, and I would say even a requirement, but in no way is it a comprehensive security solution, even for endpoints.
There are many things that need to be addressed for security. In addition to this, there is XDR, MDR, more comprehensive AV for endpoints & Servers that stop attacks, Threat Hunting, Mitigation, PEN Testing, Security Training for end users, Multi-Factor Authentication (Microsoft's MFA is good but only for Microsoft products), Patch Management for Endpoints, Servers and Cloud Workloads, Network Access Control, Firewalls for On-Premise and Cloud server workloads, Network Segmentation, Password Management, Data Backups (3-2-1-1 Rule) with Immutable Backups, Power Backups, Physical Security, Monitoring, NOC/SOC services, and working towards a Zero Trust architecture...
But there are no single-point solutions that will make you secure, so don't get complacent. And you can outspend your profits if you do everything. Just remember it's best to have a layered approach that works together and looks at everything from a security perspective and how it integrates with your overall security plans and objectives to help identify holes and possible mitigations.
Healthcare must do Risk Assessments by law, but I recommend that all companies of all sizes do at least annual risk assessments since there is so such thing as being too small or inconspicuous to be hit with malware or have a cyber security attack since much of the delivery is automated and not just by the script-kiddies of years gone by... Nation States are actively engaging in cyber warfare daily, along with terrorists, and opportunists looking to make big money from you...