We often hear of organizations using both Microsoft® Intune & the independent solution Jamf to manage devices. On the surface, this is a bit of a head scratcher. Even Microsoft® promotes using Jamf – does that make any sense if Intune is supposed to do everything?
Using Intune and Jamf
To understand why organizations use both Intune and Jamf simultaneously, it’s best to first understand what they are and how they’ve developed.
What are Intune and Jamf?
Intune and Jamf are two of today’s top mobile device management (MDM) solutions. Both MDMs provide organizations with a way to efficiently deploy and manage smartphones, tablets and laptops, controlling security measures like screen lock and remote wipe, as well as allowing approved applications.
A master of the Windows® ecosystem, Intune also features Android and limited Apple device support, as well as some mobile application management (MAM) capabilities. Many Microsoft-centric organizations rely solely on Intune to cover their device management needs.
Jamf is the premier MDM for Apple® platforms, cloud-based but also optionally leveraging on-premises server infrastructure to manage macOS® and iOS® devices. Since it’s a point solution for Apple platforms, organizations with macOS and iOS often turn to Jamf first.
Intune + Jamf
Organizations with a blend of Windows, macOS, iOS, and Android (and a lot of them) may need to leverage both tools to effectively accomplish their needs. Doing so enables IT admins to control almost all of their organization’s devices.
The problem, however, lies in the fact that neither Intune nor Jamf provides substantial Linux® endpoint management, nor do they offer a way for admins to manage users nor their access. Often, IT departments rely on on-prem identity providers (IdPs) as the source of truth for user identities, plus additional tooling to cover systems that fall outside Intune and Jamf’s purviews. Often, Active Directory (AD) + SCCM / ConfigMgr serve those purposes (although some versions of SCCM don’t have Linux support).
So, what options do organizations have as an alternative to using both Intune and Jamf?
Alternative Device Management Options
Microsoft Endpoint Manager
The new MSFT solution is essentially a combination of Intune+ConfigMgr, providing near full device management from a hybrid cloud/on-prem tool. Although effective to a degree, Endpoint Manager locks organizations into a nearly exclusive Microsoft solution stack, limiting their options for other tools and resources.
There are plenty of top MDM solutions other than Intune and Jamf that organizations can leverage to manage their mobile devices, laptops, and other systems. Unfortunately, these still require that an organization leverages an IdP as their source of truth for user identity management. They also often require on-prem servers, professional services for implementation, and heavy integration into the existing IT management tool environment.
Cloud Directory Service
A cloud directory service, or Directory-as-a-Service (DaaS), offers the best of both worlds: remote Windows, macOS, and Linux system management as well as identity and access controls through LDAP, SAML single sign-on (SSO), and RADIUS.
Specifically, organizations can leverage DaaS macOS MDM commands for remote management of the OS, including policy enforcement and other key remote system management needs for macOS, Windows, and Linux, including multi-factor authentication and full disk encryption where applicable. For organizations that need to manage mobile devices alongside their laptops and desktops, DaaS plays nicely with Intune and Jamf for Android and iOS.
To see how you can use DaaS to either replace or supplement your Intune and/or Jamf instance(s), try DaaS for free today. With 10 complimentary users and systems at your disposal forever, you can see if DaaS will suit your needs before you scale the product across your organization. You also get 10 days of Premium Chat support to get completely implemented.