Intune Vs SCCM Pros Vs Cons


Hi, all. Just wanted to get your view on SCCM vs Intune (pro’s and con’s) in regard to Device Enrolment, Certificates, Authentication, Device Management, Application Management, Application Deployment, Application Management, GPO replacement etc.

Intune RequirementsCo-managementPros/Cons
Device enrollment
Device management
Application deployment
Application management
Hybrid Cloud printing configurations
Autopilot – with on-prem authentication
Windows 10 Edition upgrade
Endpoint configuration deployment
Endpoint configuration management – GPO replacement
Remote control
Physical Tracking on supported devices only
Endpoint protection deployment
Endpoint protection – ATP
Bitlocker encryption deployment
Endpoint compliance config/deployment
Endpoint compliance reporting
Endpoint compliance – USB restrictions

Answers ( 3 )


    SCCM is configured along with tenant-attach and CMG. Based on the table I’ve added what would be advisable in respect of shifting workloads to Intune and keeping workloads on SCCM, what works better for each technology set for example Intune makes use of CSP and on-premises GPO, there are still variable limitations on Intune in respect to policies and you cannot move all policy to Intune, making use of Group Policy analyser help identify what is fit for Intune and not and what if a business still heavily rely on GPO. In a sense, what workloads can potentially be move to Intune and what need to be left for co-management

    • It’s very difficult to say without knowing the exact use case. But if your organization strategy is to move to the cloud then… it’s better to follow that … try to move all the workloads in a pilot mode for a group of devices (pilot collection) and start testing it.

      GPO vs Intune policies comparison and implementation can take months. You need to analyze each policy even though you have a group policy analyzer

      If you ask me I will try to start testing Azure AD Join + Intune management for devices and develop from there in the reverse order

      Best answer
  1. It depends really on the use cases. If you already have an SCCM environment then you should follow IMHO

    1. Tenant Attach SCCM with MEM admin center
    2. Enable co-management for Windows 10 devices

    Because we can’t make the decision based on the functionality of the MEM products. Both the products have their own advantages and disadvantages. Also, you need to look product roadmap as well before taking any decision.

    From Microsoft’s perspective, they support both the products as far as their customers.

Leave an answer

Sorry, you do not have permission to answer to this question .