We performed a comparison between Microsoft Defender XDR and Microsoft Intune based on real PeerSpot user reviews.
Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The unified view of the threat landscape on a central dashboard is the most valuable feature."
"The best feature is threat hunting. There are a lot of other features I like, such as the alert mechanism. The chain alert mechanism has a huge impact. It combines all the alerts into one incident and automatically correlates them with AI."
"The most valuable features of Microsoft 365 Defender are the combination of all the capabilities and centralized management."
"The integration with other Microsoft solutions is the most valuable feature."
"The Endpoint Manager is incredible; it has a very straightforward interface and is exceedingly easy to use. Pulling out and deploying different tags or resources is a simple task across various departments with different levels of security. The notifications are also simple and satisfying; it's great to see the bubble informing us which devices are compliant and which are waiting to update."
"Its most significant advantage lies in its affordability."
"All of the security components are valuable including, antiphishing, antispam, and stage three antivirus."
"We can use Defender to block and monitor for security purposes without needing multiple other products to do different tasks."
"Technical support, in general, has been quite helpful."
"The most valuable includes managing everything from a single console."
"Its protection policies are most valuable. It protects mobile devices as well as individual apps. It is pretty scalable, and its documentation is also pretty good. It is also pretty straightforward to deploy."
"Mobile device management is most valuable."
"The synchronization of Intune with other Microsoft solutions is a valuable feature."
"The solution is stable."
"In terms of technical support, you will get an immediate response."
"It helps implement conditional access policies to restrict mobile users from accessing potentially dangerous emails."
"The advanced threat-hunting capabilities are phenomenal, and the security copilot enhances that, but some data elements could be better or have more context inside of the advanced tables themselves. The schemas feel a little limited to what they're building into the product. It's probably just a maturity thing. I imagine we'll see the features I want in the next year."
"The onboarding and offboarding need improvement. I work with other vendors as well, and they have an option to add a device or remove a device from the portal, whereas with Microsoft 365 Defender, we need to do that manually. However, once you do that, everything can be controlled through the portal, but getting the device onboarded and offboarded is currently manual. If we have an option to simply remove a device from the portal or get a device added from the portal, it would be more convenient. The rest of the features are similar. This is the only area where I found it different from others. I would also like to be able to simply filter with a few of the queries that are already there."
"There are other SIEM solutions that are easier to use, mainly based on the creation of rules, use cases, and groups."
"It would be highly beneficial if CoPilot could identify anomalies within the network and notify the IT team."
"There are a few technical issues with Defender XDR that can be improved. Sometimes, the endpoint devices are not reporting properly to the Defender 365 portal. When you're getting all the information from the Microsoft portal, the devices are sometimes not in sync. We have hundreds of endpoint devices, some needing to be onboarded again."
"The design of the user interface could use some work. Sometimes it's hard to find the exact information you need."
"One of the biggest downsides of Microsoft products, in general, is that the menus are often difficult to find, as they tend to move from place to place between versions."
"There could be a way to proactively monitor unusual activity ."
"There is room for improvement in integration and security as well."
"When somebody has a customized application or their own company's application, we cannot deploy that application."
"The solution could be improved by the opportunity to connect third-party application databases, such as Chocolatey or another setup store, to Intune."
"An area for improvement is the absence of seamless integration, particularly with external dashboards."
"The reporting needs to be a bit more interactive."
"I would like some integration with the Microsoft reporting platform Power BI."
"The feature that allows us to import the business application from the configuration manager to Intune is not very good at this time."
"It needs incorporation of Knox, ZeroTouch, etc."
Microsoft Defender XDR is ranked 1st in Microsoft Security Suite with 80 reviews while Microsoft Intune is ranked 3rd in Microsoft Security Suite with 166 reviews. Microsoft Defender XDR is rated 8.4, while Microsoft Intune is rated 8.0. The top reviewer of Microsoft Defender XDR writes "Includes four services and four products, which can help organizations a lot". On the other hand, the top reviewer of Microsoft Intune writes "We can manage all aspects of our devices from a single console, easy to scale, and quick to deploy". Microsoft Defender XDR is most compared with CrowdStrike Falcon, Microsoft Defender for Cloud, Microsoft Purview Compliance Manager, Wazuh and Microsoft Purview Information Protection, whereas Microsoft Intune is most compared with Jamf Pro, VMware Workspace ONE, ManageEngine Endpoint Central, Microsoft Entra ID and SOTI MobiControl. See our Microsoft Defender XDR vs. Microsoft Intune report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.