{"id":23892,"date":"2023-09-11T17:44:54","date_gmt":"2023-09-11T21:44:54","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=23892"},"modified":"2024-12-20T13:54:54","modified_gmt":"2024-12-20T18:54:54","slug":"comparing-jumpcloud-azure-ad-intune","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune","title":{"rendered":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune"},"content":{"rendered":"\n<p>Microsoft has established itself in identity and mobile device management (MDM) markets through Microsoft 365 (M365). Many organizations, especially managed service providers (MSPs), are considering <a href=\"https:\/\/jumpcloud.com\/blog\/understanding-aad-premium-p1\">Entra ID (formerly, Azure Active Directory)<\/a> with Intune\u2122 for access control and unified endpoint management (UEM). This solution most strongly benefits the Microsoft ecosystem alongside features to support other platforms, and is a gateway to a broad portfolio of security products. Many of its capabilities are designed with enterprises in mind and implementing it can become resource intensive. M365 provides an expansive bundle of features and products.<\/p>\n\n\n\n<p>JumpCloud takes a different approach with its <a href=\"https:\/\/jumpcloud.com\/platform\" target=\"_blank\" rel=\"noreferrer noopener\">open directory platform<\/a>, which can consume identities from multiple providers and enable frictionless access into a wide variety of resources using standard protocols. The platform is designed so that small and medium-sized enterprises (SMEs) can follow <a href=\"https:\/\/jumpcloud.com\/solutions\/zero-trust\" target=\"_blank\" rel=\"noreferrer noopener\">Zero Trust<\/a> security strategies in identity and access control (IAM) by combining access control with UEM. It automates the user identity lifecycle for organizations that don\u2019t have large IT departments to implement those technologies.&nbsp;<\/p>\n\n\n\n<p>JumpCloud\u2019s <a href=\"https:\/\/jumpcloud.com\/platform\/multi-tenant-portal\" target=\"_blank\" rel=\"noreferrer noopener\">Multi-Tenant Portal<\/a> also makes it possible for MSPs to provision the best resources, from any vendor, to build out their optimal stacks to take on new clients.<br>SMEs may have a difficult time selecting the appropriate solution when Microsoft and JumpCloud both provide cloud-based IT management tools for identity management and <a href=\"https:\/\/jumpcloud.com\/platform\/cloud-device-management\" target=\"_blank\" rel=\"noreferrer noopener\">device management<\/a>. There are, however, some differences and important considerations IT teams should be aware of. This article examines how they compare and the best fit for each platform.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading1\">What Is Entra ID (Azure AD)?<\/h2>\n\n\n\n<p>Entra was created for the express purpose of extending Microsoft\u2019s presence into the cloud. It connects users with Microsoft 365 services, providing a simpler alternative to Active Directory Federation Services (<a href=\"https:\/\/jumpcloud.com\/blog\/what-is-adfs\">ADFS<\/a>) for single sign-on (SSO). There\u2019s similar nomenclature, but it doesn\u2019t replace all the features of Active Directory and lacks support for key authentication protocols including <a href=\"https:\/\/jumpcloud.com\/blog\/ldap-vs-radius\">LDAP and RADIUS<\/a> without add-ons. It provides SSO and <a href=\"https:\/\/jumpcloud.com\/platform\/multi-factor-authentication-mfa\" target=\"_blank\" rel=\"noreferrer noopener\">multi-factor authentication (MFA)<\/a> for the Microsoft ecosystem as well as some external resources.<\/p>\n\n\n\n<p>Microsoft uses a structured gated licensing model with trial subscriptions and a <a href=\"https:\/\/azure.microsoft.com\/en-us\/free\/active-directory\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">free tier of Entra<\/a> with some restrictions. For example, there are limits on stored objects and the number of apps a single user can access with SSO and group management with role-based access control (RBAC) costs extra. Microsoft also charges for MFA for external identities. Entra\u2019s features, which include some time-limited trial services when users sign up, are listed on its website.<\/p>\n\n\n\n<p>It also serves as Microsoft\u2019s approach to a multi-tiered portfolio of identity, compliance, device management, and security products. The permutations of its cloud products, and challenges of migrating from Active Directory to the cloud, have given rise to a <a href=\"https:\/\/azure.microsoft.com\/en-us\/partners\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">cottage industry<\/a> of consultants. This is due to the breadth of configurations, and resulting complexity, that many enterprise use cases require. However, some organizations may benefit from this approach. Integrations with other Microsoft services are aggressively marketed, and are oftentimes bundled together.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"198\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Intune-Comparison-.png\" alt=\"Intune Comparison\" class=\"wp-image-98107\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Intune-Comparison-.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Intune-Comparison--300x116.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><figcaption class=\"wp-element-caption\">Intune is a separate, but interwoven product that must be enabled and scoped from Entra ID<\/figcaption><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading2\">What Is Intune?<\/h2>\n\n\n\n<p>Microsoft Intune serves as a UEM solution to administer features and settings for Android<sup>\u00ae<\/sup>, iOS<sup>\u00ae<\/sup>\/iPadOS<sup>\u00ae<\/sup>, Linux, and Windows. Windows receives the deepest level of support, but Microsoft is increasing its coverage for other platforms over time. For instance, Intune supports custom\/templated profiles for macOS, compliance policies, shell scripts, Apple Business Manager (ABM), and user\/device enrollment options. Linux support has rolled out slowly and focuses on compliance policies. <a href=\"https:\/\/learn.microsoft.com\/en-us\/mem\/intune\/fundamentals\/in-development\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Microsoft Edge is obligatory<\/a> to utilize some of its features, such as <a href=\"https:\/\/jumpcloud.com\/blog\/conditional-access-policies-examples\">conditional access policies<\/a> for privileged users, extending Microsoft\u2019s overall footprint.<\/p>\n\n\n\n<p>However, Intune bolsters Microsoft products such as Edge and Configuration Manager as first-class citizens. Windows administrators will be familiar with aspects of how it works, such as ADMX templates. Intune is most robust when it is used to manage Windows systems that are hybrid AD-joined, in combination with other services and security solutions. Separate license requirements and costs may impact which security services will integrate with Intune.<\/p>\n\n\n\n<p>Here&#8217;s an overview of its features:<\/p>\n\n\n\n<ul>\n<li>Cloud-based UEM to control features and settings<\/li>\n\n\n\n<li>Isolation of corporate data for certain apps such as MS Office<\/li>\n\n\n\n<li>The Intune admin center offers status updates and alerts as well as device configuration and other administrative settings<\/li>\n\n\n\n<li>Connectors for Active Directory (for autopilot enrollment) and certificate-based authentication for endpoints<\/li>\n\n\n\n<li>ADMX templates to deploy Windows policies and benchmark group policies and Graph API for scripting, when the appropriate licensing is in place<\/li>\n\n\n\n<li>Integration with Entra, Windows (Win32) LoB apps, and other Microsoft-centric services; however, these are different products with different interfaces and pop-ups in the UX<\/li>\n\n\n\n<li>Application deployments and user assignments<\/li>\n\n\n\n<li>Compliance settings creation and the ability to lock down services with granular conditional access rules based upon group memberships, location, device state, and triggers for specific application access rules (Note: Additional Microsoft products and Premium licenses are necessary to govern identities based upon risk as well as to monitor and control cloud application sessions)<\/li>\n\n\n\n<li>Reporting on apps, device compliance, operations, security, and users<\/li>\n\n\n\n<li>Device-only subscriptions for single-use devices such as kiosks<\/li>\n\n\n\n<li>Remote support is available as a premium add-on to Intune, even with an M365 E5 license<\/li>\n<\/ul>\n\n\n\n<p>What\u2019s possible to do is dependent on what other Microsoft services are being licensed (standalone or bundled), knowledge of Microsoft\u2019s administrative tools, and how invested an organization can become in the Microsoft ecosystem. Intune has morphed into a product family that&#8217;s best suited for enterprise-level compliance with enterprise-sized budgets and resources.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Are Configuration Manager and Endpoint Security?<\/h2>\n\n\n\n<p>Many admins are familiar with Microsoft Configuration Manager (ConfigMgr), an enterprise system management product for Windows systems. It\u2019s the evolution of what was once known as Microsoft System Center Configuration Manager (SCCM). ConfigMgr is included in Intune and integrates with other Microsoft cloud products as well as on-premises components when it\u2019s set up for co-management. The experience can be very confusing, because Microsoft has folded its overall suite of UEM capabilities into an interface called Endpoint Security, but aspects of managing endpoints are handled outside of it under \u201cdevices\u201d from the main interface.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"273\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Configuration-Manager.png\" alt=\"Configuration Manager\" class=\"wp-image-98109\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Configuration-Manager.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Configuration-Manager-300x160.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><figcaption class=\"wp-element-caption\">The \u201cDevices\u201d interface blade<\/figcaption><\/figure>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"273\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Endpoint-Security.png\" alt=\"Endpoint Security\" class=\"wp-image-98110\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Endpoint-Security.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Endpoint-Security-300x160.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><figcaption class=\"wp-element-caption\">Endpoint security: Several other Microsoft security products are mixed in<\/figcaption><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading3\">What Is JumpCloud?<\/h2>\n\n\n\n<p>JumpCloud is an open directory platform for small to medium-size enterprises (SMEs) that includes IAM, UEM, and more. Supported platforms include Android, Linux, macOS, iOS\/iPad OS, and Windows. JumpCloud is cloud-based and can be deployed for a <a href=\"https:\/\/jumpcloud.com\/blog\/domainless-enterprise-it-architecture\">domainless enterprise<\/a>, without the need for AD or Entra, or to extend your existing AD domains. JumpCloud is tailored specifically to the needs of SMEs.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"272\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/JC-Devices.png\" alt=\"JC Devices\" class=\"wp-image-98111\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/JC-Devices.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/JC-Devices-300x159.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><figcaption class=\"wp-element-caption\">JumpCloud offers a more approachable, unified product for identity and device management<\/figcaption><\/figure>\n\n\n\n<p><strong>IAM<\/strong><\/p>\n\n\n\n<ul>\n<li>Unlimited, <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-true-sso\">True SSO<\/a> that delivers SAML, OIDC, and password-based authentication for any web application, as well as SCIM and RESTful support to manage user onboarding\/authorization to third-party applications<\/li>\n\n\n\n<li>JumpCloud provides ready-to-consume connectors for many popular services<\/li>\n\n\n\n<li>A decentralized <a href=\"https:\/\/jumpcloud.com\/platform\/password-manager\" target=\"_blank\" rel=\"noreferrer noopener\">password manager<\/a> for when SSO is not possible<\/li>\n\n\n\n<li>Cloud LDAP and RADIUS<\/li>\n\n\n\n<li>Push and <a href=\"https:\/\/jumpcloud.com\/blog\/totp-mfa\">TOTP<\/a> MFA everywhere, including RADIUS and LDAP connections<\/li>\n\n\n\n<li>Phishing-resistant modern authentication (coming soon)<\/li>\n\n\n\n<li>Built-in MDM, without extra costs<\/li>\n\n\n\n<li>A cloud-based <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-ldap\">LDAP<\/a> directory<\/li>\n\n\n\n<li>The ability to sync with Active Directory or import users from it<\/li>\n\n\n\n<li>Integrations with popular <a href=\"https:\/\/jumpcloud.com\/blog\/how-jumpclouds-hris-integration-works\">HRIS systems<\/a> for rapid user onboarding and provisioning<\/li>\n\n\n\n<li>Pre-built conditional access capabilities that restrict access by location, whether a device is being managed by JumpCloud, and to enforce MFA for specific groups of users (optional)<\/li>\n\n\n\n<li>Federation with other identity providers (coming soon)<\/li>\n\n\n\n<li>API-based provisioning<\/li>\n<\/ul>\n\n\n\n<p><strong>UEM<\/strong><\/p>\n\n\n\n<ul>\n<li>Application install and management on remote systems<\/li>\n\n\n\n<li>Integrated remote assistance with Remote Assist, free of charge<\/li>\n\n\n\n<li><a href=\"https:\/\/jumpcloud.com\/blog\/zero-touch-enrollment-device-deployment\">Zero-touch enrollment<\/a> and deployment for Apple devices<\/li>\n\n\n\n<li>Automated dynamic group memberships that leverage attribute-based access control (ABAC) to modernize the user identity lifecycle and enhance security, providing entitlement management maturity beyond what\u2019s possible with legacy access control paradigms<\/li>\n\n\n\n<li>Cross-OS policies and root-level CLI interfaces for centralized IT management and <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/getting-started-commands-2019-08-21-10-36-47\" target=\"_blank\" rel=\"noreferrer noopener\">commands<\/a><\/li>\n\n\n\n<li>A streamlined dashboard for IT teams and technicians<\/li>\n\n\n\n<li>Reporting for Device Insights, Directory Insights, and Cloud Insights for AWS<\/li>\n\n\n\n<li><a href=\"https:\/\/jumpcloud.com\/blog\/jumpcloud-patch-management\">JumpCloud Patch Management<\/a> for operating systems and web browsers (optional)<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"224\" height=\"269\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/JC-Device-Mangement.png\" alt=\"JC Device Mangement\" class=\"wp-image-98113\"\/><figcaption class=\"wp-element-caption\">Device management is device management<\/figcaption><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading4\">Comparing JumpCloud to Entra ID with Intune<\/h2>\n\n\n\n<p>Intune overlaps with JumpCloud on a feature-by-feature basis, and it makes sense for organizations to evaluate all of their cloud-based identity and system management options. The comparison between JumpCloud and Entra ID (Azure AD) with Intune is really about having adaptability and independent security controls versus monoculture and vendor lock-in risks.<\/p>\n\n\n\n<p>The greatest difference lies in Microsoft engineering its products for the enterprise in service of the Windows ecosystem, tooling, and its accompanying cloud services. It\u2019s a horizontally integrated stack. There\u2019s deep integrations with Microsoft products and specialized services that mostly benefit larger organizations. If you have an all-Windows<sup>\u00ae<\/sup> network, and are already implementing Azure with Active Directory<sup>\u00ae<\/sup> on-premises, then Entra ID (Azure AD) and Intune could be the right addition for your organization. Using tools created by Microsoft in a Windows environment would make sense. Mobile-heavy organizations may also benefit from using Intune\u2019s mobile device management capabilities to manage other operating systems.<\/p>\n\n\n\n<p>JumpCloud addresses needs specific to the SME market, as evidenced by how its features are packaged and implemented for ease of use. One admin can manage a deployment. It was created to address the constraints that arise when a legacy on-prem directory is modified for a new era in computing (that crosses domains). The open directory platform solves the challenges faced by modern IT professionals versus extending an existing ecosystem into the cloud.<\/p>\n\n\n\n<p>It also securely connects users to more resources without the need for additional servers or add-ons. If your organization has AWS, macOS<sup>\u00ae<\/sup>, Linux<sup>\u00ae<\/sup>, Okta<sup>\u00ae<\/sup>, Google Workspace\u2122, and other non-Windows platforms as core parts of the infrastructure, then you would benefit by choosing JumpCloud\u2019s open directory platform. SMEs can choose the vendors that are best suited for users both now and in the future as opposed to restricting flexibility and choice.<\/p>\n\n\n\n\n<div class=\"promotion-banner-small is-flex-direction-column has-items-aligned-flex-start has-items-aligned-center-tablet\">\n    <div class=\"promo-small-image is-hidden-mobile\">\n        <img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/04\/Promos_GooglePartnership_290x175-SiteDisplay_GooglePartnershipPage-aspect-ratio-160-110.png\" alt=\"JumpCloud\">\n    <\/div>\n    <div class=\"promo-small-content\">\n        <p class=\"is-type-body-tiny is-type-weight-bold is-important promo-small-title\">\n                    <\/p>\n        <p class=\"is-type-body-default is-important\">\n            Securely connect to any resource using Google Workspace and JumpCloud.        <\/p>\n    <\/div>\n    <div class=\"promo-small-cta\">\n        <a href=\"https:\/\/jumpcloud.com\/leverage-jumpcloud-and-google-together\" data-promo=\"JumpCloud and Google Workspace\" class=\"button is-primary-green promo-small-banner-link\">Learn More<\/a>\n    <\/div>\n<\/div>\n\n\n\n\n<h3 class=\"wp-block-heading\">Ease of Use<\/h3>\n\n\n\n<p>JumpCloud is easiest to implement and manage with a more intuitive administrative UI, and pricing that\u2019s based on use cases versus features. A common complaint is that Microsoft\u2019s interface changes frequently and causes confusion as more products are added into the mix. That\u2019s a consequence of bundling and frequent product family\/branding changes. This <a href=\"https:\/\/www.reddit.com\/r\/Intune\/comments\/ype3tz\/which_challenges_are_you_facing_with_intune\/\" target=\"_blank\" rel=\"noreferrer noopener\">Reddit thread<\/a> captures numerous user-reported usability problems. Here\u2019s a summary of them:<\/p>\n\n\n\n<ul>\n<li>Unpredictable time spent importing provisioning of devices, assigning profiles, and deploying apps\u2014Microsoft&#8217;s default polling interval for policy refreshes is 8 hours<\/li>\n\n\n\n<li>Simple mistakes can cause actions to fail, such as a Registry key requirement rule filtering out devices<\/li>\n\n\n\n<li>Problems with assigning available licenses to new users<\/li>\n\n\n\n<li>Configuration changes taking a long time to go into effect<\/li>\n\n\n\n<li>Debugging events and sync logs requiring additional <a href=\"https:\/\/msendpointmgr.com\/intune-debug-toolkit\/\" target=\"_blank\" rel=\"noreferrer noopener\">third-party tooling<\/a><\/li>\n\n\n\n<li>Loss of internet connectivity causing Windows Autopilot to fail<\/li>\n<\/ul>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>Testing any feature takes days to weeks because I go \u201chmm what does this do?&nbsp;<em>changes setting<\/em>&nbsp;<em>3 hours later<\/em>&nbsp;huh, still no change\u2026<\/p>\n<cite>Reddit User<\/cite><\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\">Centralized Policy Management<\/h3>\n\n\n\n<p>A key component of Active Directory is a feature known as Group Policy Objects (GPOs). GPOs allow IT admins to control the behavior of Windows systems in their environment with great precision. Microsoft\u2019s GPOs only work for Windows systems and are not applicable in the cloud via Entra ID (Azure AD). Microsoft has extended its tooling to Intune, but it\u2019s not a 1:1 replacement. It also handles compliance for non-Windows devices through Intune.<\/p>\n\n\n\n<p>JumpCloud offers GPO-like policies for all three major platforms\u2014Windows, Linux, and macOS<sup>\u00ae<\/sup>\u2014by using agents that also provide system management and telemetry. IT admins are able to remotely disable virtual assistants, enforce <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-full-disk-encryption-fde\">full disk encryption<\/a> (FDE), and configure system updates with just a few clicks in addition to options such as integrated remote assist.&nbsp;<\/p>\n\n\n\n<p>Enterprise Mobility Management (EMM) for Android and MDM for Apple products and Windows offer tamper-proof endpoint management by leveraging the latest platform technologies. For Windows, it\u2019s possible to toggle between agents and MDM deployment models.<\/p>\n\n\n\n<p>When a prescribed policy isn\u2019t sufficient, JumpCloud enables IT admins to create and execute their own commands and scripts on all three desktop platforms. JumpCloud also provides optional policies for cross-OS patching for systems and browsers for compliance and security.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Open Directory Platform<\/h3>\n\n\n\n<p>The JumpCloud platform does not need to fully own an identity to manage it. Rather, it can consume identities from different sources and sits in the middle to orchestrate access and authorization to resources. This simplifies IT management for SMEs by addressing the access control and security challenges stemming from having identities exist in silos. An Entra ID (Azure AD) user also won\u2019t be able to use RADIUS to access Wi-Fi without Network Policy Server (NPS) or third-party cloud service. SMEs can dramatically improve security as well as save on licensing, headcount, time, and effort by consolidating orchestration into a single directory and keeping identity independent from Microsoft\u2019s security monoculture.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Mobile Device Management Capabilities<\/h3>\n\n\n\n<p>Intune and JumpCloud have MDM services for managing <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-byod\">BYOD<\/a> and BYOC devices.<\/p>\n\n\n\n<p>Microsoft delivers cross-platform support, but Windows is the favored tenant with the capacity for zero-touch onboarding that would benefit Microsoft shops. Microsoft is also well-suited to support enterprise-level compliance use cases. JumpCloud is easier to adopt and learn. The open directory platform also adds additional value for EMM\/MDM users to import user identities from non-Microsoft platforms to centrally manage or utilize them all.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Android, Apple, and Linux Devices<\/h4>\n\n\n\n<p>Intune has Mac and iOS\/iPadOS support for the supervision of Apple devices through user login, device enrollment\/deployment, configuration management, patch policies, and software distribution. It also offers services to manage Android devices and Linux. Microsoft\u2019s full offering requires Entra, Intune, and an understanding of its Windows templates and tooling. It also has extended requirements for other Microsoft products such as Edge to be able to manage Linux users, limiting customer choice.<\/p>\n\n\n\n<p>JumpCloud\u2019s Apple and Linux UEM capabilities are extensive, beginning with a pre-built collection of policies, configuration options, security functions, and culminating in zero-touch device enrollment. Android EMM is expanding with each new release of the platform. UEM is immediately available as a core feature of the platform versus being a separate product. JumpCloud supports the most popular Linux distros and doesn\u2019t impose any browser mandates.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Affordability and Implementation<\/h4>\n\n\n\n<p>With consideration to Microsoft\u2019s extensive stack requirements and gated licensing, JumpCloud\u2019s integrated UEM is <a href=\"https:\/\/jumpcloud.com\/blog\/how-to-use-jumpclouds-tco-calculator\">more affordable<\/a> and user-friendly. It\u2019s also easier for IT teams and MSP technicians to learn and manage. Note: A junior level technician could do a lot of harm in Entra\/Intune due to the level of understanding that\u2019s required to use those products.<\/p>\n\n\n\n<p>The first thing an Intune admin will notice is that it\u2019s confusing, even if you already have a domain in Entra. For starters, it\u2019s not an integrated product experience: there&#8217;s a setting in Entra to bridge it with Intune and scope memberships. It\u2019s not automatic, and you may not even realize it until Intune doesn&#8217;t do what it&#8217;s supposed to (and you&#8217;re left wondering why).<\/p>\n\n\n\n<p>Recall the different device management interfaces mentioned above. Here\u2019s where it gets tricky:<\/p>\n\n\n\n<ul>\n<li><strong>Device configuration profiles:<\/strong> These are configured separately and easily get lost or click the wrong thing, ending up somewhere you didn\u2019t intend to be. Intune device management uses AD\u2019s ADMX templates, which are separate from endpoint management, where system baselines reside. This is the Microsoft way of doing things.<\/li>\n\n\n\n<li><strong>Configuration manager: <\/strong>You<strong> <\/strong>must use configuration manager for on-premises Windows server, apps, and devices. It enables co-management with Intune.<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Device Enrollments<\/h4>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"381\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Device-Enrollments.png\" alt=\"Device Enrollments\" class=\"wp-image-98114\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Device-Enrollments.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Device-Enrollments-300x223.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Many admins have encountered issues\/difficulty enrolling Windows endpoints that are already registered in Entra and already deployed versus being provisioned with Intune\/Entra from the start. This affects Entra users who may be upgrading licenses\/packages or haven\u2019t deployed it.<\/p>\n\n\n\n<p>Here\u2019s a scenario that an admin may encounter:&nbsp;<\/p>\n\n\n\n<ul>\n<li>The admin wants to use Intune and configures MDM\/MAM in Entra to include all users or uses scoping for a group.<\/li>\n\n\n\n<li>The admin enables Intune and creates a group. The user (or device to cover all users on it) is added to the group. The group is assigned to a benchmark in endpoint security.&nbsp;<\/li>\n\n\n\n<li>The user signs into Entra under accounts | Work.<\/li>\n\n\n\n<li>Nothing happens, because MDM isn\u2019t enabled at the device level.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"126\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/All-Devices.png\" alt=\"All Devices\" class=\"wp-image-98115\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/All-Devices.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/All-Devices-300x74.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>You\u2019ll then need to troubleshoot using local registry\/GPO, PowerShell, or Registry. You need local admin rights. Then, it creates a task in Task Scheduler to enroll MDM. There are entire&nbsp;<\/p>\n\n\n\n<p>web pages external to Microsoft that are dedicated to <a href=\"https:\/\/call4cloud.nl\/2020\/05\/intune-auto-mdm-enrollment-for-devices-already-azure-ad-joined\" target=\"_blank\" rel=\"noreferrer noopener\">resolving this challenge<\/a>. You may also configure a \u201ccompany portal\u201d in Intune or log into MDM from Windows settings, even if the user is signed into their Entra account. They end up signing into Microsoft twice with two different account logins listed for the same account\/identity. More options can create more complexity.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"381\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Accounts.png\" alt=\"Accounts\" class=\"wp-image-98116\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Accounts.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Accounts-300x223.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<h4 class=\"wp-block-heading\">Dynamic Groups<\/h4>\n\n\n\n<p>JumpCloud utilizes <a href=\"https:\/\/jumpcloud.com\/blog\/welcome-to-groups\">dynamic groups<\/a> by default with the capability to sort devices into the appropriate groups using rules. Attributes make it possible to provide workflows and automations to simplify identity lifecycle management. No premium licensing is required.<\/p>\n\n\n\n<ul>\n<li>Dynamically manage user group membership based upon user attribute-driven rules\u2014can be either fully automated or require review<\/li>\n\n\n\n<li>Dynamically manage device group membership based upon device attribute-driven rules\u2014can be either fully automated or require review<\/li>\n\n\n\n<li>Dynamically manage device and user group membership based upon <em>both<\/em> user and device attribute-driven rules<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"349\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/New-Device-Group.png\" alt=\"New Device Group\" class=\"wp-image-98118\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/New-Device-Group.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/New-Device-Group-300x204.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>In contrast, Entra only permits dynamic groups in Premium 1 tier or above. It\u2019s opt in and for users only, and admins must create expressions to make them work. JumpCloud enables dynamic groups to help categorize users and devices by default at no extra cost.<\/p>\n\n\n\n<p>The admin experience is very different. You must specify device types in Intune by creating a device category and adding scoping tags (optional), and then you must create a security group back in AAD with the \u201cdeviceCategory\u201d attribute. Admins will have to bounce back and forth between Entra and Intune in order to do this.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Patching<\/h4>\n\n\n\n<p>JumpCloud optionally includes cross-OS patching and supports the patching of leading browsers in a unified interface. Admins may fully manage Chrome by enrolling in Chrome Browser Cloud Management. EMM and MDM policies will configure mobile device update settings.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"477\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Policy-Mangement.png\" alt=\"Policy Management\" class=\"wp-image-98119\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Policy-Mangement.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Policy-Mangement-300x279.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Intune has disparate offerings for OS and browser patching, and some have unique technical quirks. Windows AutoPatch is an Intune feature that\u2019s only available for Windows. It uses Windows Update for Business and requires Windows Enterprise E3 licensing. There are several other service components involved with making all of that happen. Separately, you may also designate an update band for Windows under the Endpoint Security interface blade.<\/p>\n\n\n\n<p>Azure Update Center (in preview) is another option, and its status as either an add-on for Intune or included feature is unknown. It\u2019s intended to become a \u201cunified service to help manage and govern updates for all your machines. Monitor Windows and Linux update compliance across your deployments in Azure, on-premises, and on other cloud platforms from a single dashboard. Make updates in real time or schedule them within a defined maintenance window.\u201d<\/p>\n\n\n\n<p>Browser updates are impacted by the Microsoft model. For instance, some ADMX files have dependency prerequisites. To import Mozilla Firefox ADMX and ADML files, you:&nbsp;<\/p>\n\n\n\n<ul>\n<li>Import the mozilla.admx and mozilla.adml files<\/li>\n\n\n\n<li>Import the firefox.admx and firefox.adml files&nbsp;<\/li>\n\n\n\n<li>Then you configure it with configuration profiles in Endpoint Security<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Software Management<\/h4>\n\n\n\n<p>JumpCloud features software management for Android, Apple, and Windows (using Chocolatey). A private repository will be available soon. Admins will soon be able to upload, deploy, and update private Windows and macOS apps using a private repository.&nbsp;<\/p>\n\n\n\n<ul>\n<li>Files are scanned for integrity on upload and controlled versioning&nbsp;<\/li>\n\n\n\n<li>File size limits are removed for custom macOS apps<\/li>\n\n\n\n<li>Extended fee-based storage is available if it\u2019s needed<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"266\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Software-Mangement.png\" alt=\"Software Mangement\" class=\"wp-image-98120\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Software-Mangement.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Software-Mangement-300x156.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Intune\u2019s Mobile Application Management (MAM) configures, monitors, pushes, secures, and updates mobile apps. \u201cIntune Protected Apps\u201d such as MS Office secure corporate data. The Windows interface under \u201capps\u201d has different features to assign apps to groups of devices. Many of its features are intended for enterprise deployments, as opposed to SME use cases. It also has the capacity to inventory and \u201cdiscover\u201d apps on registered Windows endpoints.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"264\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/11\/Apps-Overview.png\" alt=\"Apps Overview\" class=\"wp-image-98121\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Apps-Overview.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/11\/Apps-Overview-300x155.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Customers have said that Intune software deployment and polling works on Microsoft\u2019s schedule, creating management \u201cunknowns.\u201d The workflow is as follows: upload an MSI, create a package, apply it to a machine \u2026 and it will install at some point. This procedure, coupled with a confusing interface, creates a learning curve.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Platform<\/h3>\n\n\n\n<p>Microsoft has devised an extensive cloud services productive portfolio in service of its enterprise customers. It\u2019s a stepwise architecture that enlists adjunct services to build out a broad stack. The Microsoft ecosystem is as comprehensive as a Microsoft shop needs it to be. Reskilling your existing team and\/or obtaining external resources is necessary. You should also consider the cost of raising salaries to match market levels for cloud roles as more and more M365 features are implemented, even within Intune. All of this could change organizational structures and procedures in order to fully implement all of the products that Microsoft packages together.<\/p>\n\n\n\n<p>JumpCloud is specifically designed for what SMEs need, and sheds the complexity of Microsoft\u2019s ecosystem. It offers far more functionality through one solution for identity and devices (even network), rather than purchasing the entire Microsoft IT stack and everything else required for modern offices to manage users. SMEs that adopt JumpCloud for UEM are more likely to benefit from this integrated approach as well as its streamlined administration.&nbsp;<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"heading5\">Microsoft 365 and Google Workspace Sync<\/h3>\n\n\n\n<p>With <a href=\"https:\/\/jumpcloud.com\/blog\/sso-with-g-suite-o365\/\">Microsoft 365\u2122\/Google Workspace sync<\/a>, organizations can access either productivity platform at will with JumpCloud credentials. The open directory platform imports attributes that decorate users with entitlements, streamlining admin workflows, increasing the accuracy of user profiles, and delivering smooth onboarding. IT admins can also manage groups in Workspace. Google has <a href=\"https:\/\/jumpcloud.com\/blog\/jumpcloud-google-workspace-partnership\">partnered with JumpCloud<\/a> for IAM\/UEM and recommends it for SMEs.<\/p>\n\n\n\n<p>You can add Google as an identity provider within Entra ID\u2019s B2B collaboration. Specifically, federation with SAML\/WS-Fed identity providers for guest users. You may require knowledge of how access packets are used to provide entitlements to members of external organizations in addition to the appropriate identity governance licenses.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"heading6\">Non-System Needs<\/h3>\n\n\n\n<p>When evaluating which identity management provider is right for you, you also want to consider your non-system needs. For instance, if you are interested in LDAP, RADIUS, Samba, SSH, and other protocol support, you might consider JumpCloud\u2019s protocol-level hosted services. JumpCloud also implemented MFA for its LDAP and RADIUS services, which is significant when highly regulated industries like cyber insurance companies require MFA to be enabled for network devices. Otherwise, additional servers and services may be needed to be compliant.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Vendor Lock-In<\/h3>\n\n\n\n<p><a href=\"https:\/\/jumpcloud.com\/blog\/why-azure-ad-is-lock-in\">Vendor lock-in<\/a> is an important consideration for MSPs and IT organizations alike. Microsoft is financially motivated to keep you on the Windows and Azure platform track, which includes its ecosystem of administrative tools and templates. Often, you need a number of additional Microsoft tools on the Entra ID (Azure AD) and Intune path. Most organizations with Entra also use AD on-prem, Azure AD Connect, Azure Active Directory Domain Services (Azure AD DS), or even third-party tools to create a holistic IAM and device management approach. That\u2019s a deep investment in budget and training that builds a deep dependency on Microsoft.<\/p>\n\n\n\n<p>Intune belongs to an evolving family of IAM products that have undergone multiple re-namings and repackaging. Growing with Intune means licensing Intune as well as other complementary services for security and system analytics. Note that the selections are in flux, making direct comparisons with alternatives more challenging. Buying Intune sinks organizations deeper into the Microsoft stack, which limits their ability to purchase solutions outside the Microsoft domain and customize their stack for their needs. It also introduces some unpredictability in budgeting.<\/p>\n\n\n\n<p>JumpCloud\u2019s open directory platform allows for greater flexibility and shopping around for services, such as adding best-of-breed XDR integration from <a href=\"https:\/\/jumpcloud.com\/blog\/jumpcloud-and-crowdstrike-are-better-together\">CrowdStrike<\/a> or Sentinel One to secure identities and endpoints, versus a monolithic supply chain from Microsoft.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Total Cost of Ownership<\/h3>\n\n\n\n<p>Microsoft\u2019s legacy requirements frequently mandate a hybrid infrastructure configuration. A hybrid infrastructure adds complexity, and complexity correlates to bigger budgets. Managing and licensing your <a href=\"https:\/\/jumpcloud.com\/blog\/microsoft-server-core-licensing-costs-more\">physical servers<\/a> is expensive (people, hardware, facilities, maintenance, and utilities), and the increase to your potential cyberattack surface area are all factors to consider. These factors combined raise the <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-total-cost-ownership-it\">total cost of ownership<\/a> for Entra.<\/p>\n\n\n\n<p>A common refrain is that \u201cMicrosoft stuff works well together.\u201d In practice, transitioning on-premises Microsoft solutions to the cloud isn\u2019t always straightforward. For example, AD groups don\u2019t all automatically sync over to Entra. One Intune administrator recently recounted how his organization, which is invested in Microsoft, was experiencing difficulty transitioning to Entra and Intune from AD FS and Active Directory.<\/p>\n\n\n\n<p>In this example, consultants were brought in to set up Intune. The consultants attempted to turn on \u201cfull blown Entra\u201d for the environment. That decision resulted in downstream problems with Virtual Desktop Infrastructure (VDI), because only persistent virtual machines (where every user\u2019s personal desktop settings are set for each virtual desktop) are supported in on-premises ADFS.&nbsp;<\/p>\n\n\n\n<p>This scenario may seem arcane, but it illustrates that even migrating to Microsoft\u2019s latest and greatest services isn\u2019t always straightforward. Microsoft has a multitude of legacy components for SSO that tie back to AD, which introduces difficulties that are unique to its ecosystem.<\/p>\n\n\n\n<p>The Intune administrator summed it up as: \u201cI need to focus all my time [elsewhere] but can\u2019t because I get pulled in every direction [due to the complexity of Microsoft\u2019s ecosystem].\u201d Simply put, if your infrastructure\u2019s a mess, everything\u2019s a mess \u2026 and costs more than is necessary. The more an organization sinks into Microsoft, the less flexibility it has to go elsewhere.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Service Licensing<\/h4>\n\n\n\n<p>Cost of ownership is a key differentiator between Entra + Intune and JumpCloud. Entra is initially a great value \u2014 if you\u2019re a heavy user of the Microsoft stack \u2014 but costs mount as use increases and third-party services and non-Windows devices are added to your infrastructure. Navigating Microsoft\u2019s complex gated licensing scheme is another driver of <a href=\"https:\/\/jumpcloud.com\/blog\/intune-pricing\">rising subscription costs<\/a>.&nbsp;<\/p>\n\n\n\n<p>For example, organizations that are considering M365, which can bundle Intune, must assess the differences of all of its license variations. Some consultants even specialize in demystifying Microsoft\u2019s licensing options. Basic tiers are only the price of admission. There are additional costs involved simply to obtain a few fundamental capabilities, such as federated identity, in Entra to securely access resources outside of Microsoft\u2019s stack using SSO. That\u2019s the real-world starting point for modern IT versus the sticker price, before Intune or other subscriptions factor in.<\/p>\n\n\n\n<p>In contrast, JumpCloud\u2019s foundation supports expanding capacity to accept and incorporate other identities into workflows through directory synchronizations or federation.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">IT Infrastructure Consolidation<\/h4>\n\n\n\n<p><a href=\"https:\/\/jumpcloud.com\/resources\/it-sprawl-problem\" target=\"_blank\" rel=\"noreferrer noopener\">IT tool sprawl<\/a> is just one of the many unintended consequences of today\u2019s remote-first workforce. Adopting a consolidated stack is beneficial to avoid overlapping feature sets from many different software products. A Microsoft shop may not need to look elsewhere to meet compliance, IAM, IT management, and highly advanced security requirements with its stack (assuming they have the budget). However, there are downsides.<\/p>\n\n\n\n<p>Smaller organizations may find themselves overextended by the breadth and complexity of Microsoft\u2019s components and services that form its hybrid architecture. Buying, operating, and supporting a datacenter is just the start. It\u2019s very likely that IT teams will have to employ external resources to assist with Entra + Intune implementations. Those decisions involve a substantial and costly long-term commitment.<\/p>\n\n\n\n<p>Azure works best if organizations are fully incorporated into a Microsoft tech stack environment, but not outside of Microsoft\u2019s cloud infrastructure (i.e., it can\u2019t be used to manage non-Windows servers hosted in Amazon or Google clouds).<\/p>\n\n\n\n<p>JumpCloud\u2019s open directory platform enables IT teams to assemble a stack of best-of-breed solutions that are secure, on managed devices, and available through the identity provider of their choosing. Optional products assist with security, IT hygiene, and password management without extensive management overhead or mandates to deploy them successfully.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"heading7\">What\u2019s Best for Your Shop?<\/h2>\n\n\n\n<p>If you are locked into Microsoft solutions, are a heavy Windows user, have strict compliance mandates, or if you have corporate-owned mobile devices, then Azure solutions may be the most acceptable fit. However, its platforms are intended for the enterprise and extend broadly through products connected via gated licensing. Alternatively, if you are an SME that\u2019s invested in other non-Windows platforms and non-Microsoft services and identities, and wish to (or see a path to) consolidate IT resources, then you should consider JumpCloud\u2019s open directory platform. A third option is to use both to obtain the greatest value for your organization.<\/p>\n\n\n\n<p>JumpCloud centralizes user and system management, regardless of platform or where identities reside. This includes our <a href=\"https:\/\/jumpcloud.com\/platform\/multi-tenant-portal\" target=\"_blank\" rel=\"noreferrer noopener\">Multi-Tenant Portal<\/a> (MTP), designed specifically for MSPs to manage multiple client organizations from one pane of glass. JumpCloud offers <a href=\"https:\/\/jumpcloud.com\/resources\/cross-platform-gpo-like-capabilities\/\" target=\"_blank\" rel=\"noreferrer noopener\">cross-platform GPO-like capabilities<\/a> to manage fleets of systems with policies, including local admin system controls, full disk encryption with FileVault 2 and Bitlocker, screen lock regulations, and more. MSPs also won\u2019t have to turn away business from organizations that opt to use Google Workspace.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>JumpCloud offers more immediate actions for commands and policies than Intune.<\/p>\n<\/blockquote>\n\n\n\n<p>For MSPs, <a href=\"https:\/\/jumpcloud.com\/blog\/understanding-an-it-consolidation-strategy\">consolidation<\/a> gives you the chance to proactively manage and monitor your clients\u2019 tech with fewer providers. It decreases your monthly expenditures without sacrificing efficiency or usability, and frees you up to spend more time helping your clients reach their goals. IT consolidation has many benefits for MSPs and their clients, including cost savings, a streamlined user (and management) experience, and an increase in client trust.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">The Choice Is Yours<\/h2>\n\n\n\n<p>However you choose, all options present benefits to an organization. To learn more about JumpCloud versus Entra ID (Azure AD) with Intune, <a href=\"https:\/\/jumpcloud.com\/contact-sales\" target=\"_blank\" rel=\"noreferrer noopener\">contact us<\/a> or <a href=\"https:\/\/community.jumpcloud.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">join our community<\/a> to engage your peers in conversation. And, as always, <a href=\"https:\/\/jumpcloud.com\/get-started\" target=\"_blank\" rel=\"noreferrer noopener\">signing up for a platform demo<\/a> is completely free.&nbsp;<\/p>\n\n\n\n<p>Sometimes self-service doesn\u2019t get you everything you need. If that\u2019s how you\u2019re feeling, <a href=\"https:\/\/jumpcloud.com\/guided-simulations\" target=\"_blank\" rel=\"noreferrer noopener\">schedule a demo<\/a> to discuss options for implementation assistance, migration services, custom scripting, and more.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.<\/p>\n","protected":false},"author":150,"featured_media":47134,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[2321,2652,2484,2811,3117,2809,2467,2810,2651],"collection":[2778,2779],"platform":[],"funnel_stage":[3014],"coauthors":[2535],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Comparing JumpCloud vs. Entra ID (Azure AD) and Intune - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune\" \/>\n<meta property=\"og:description\" content=\"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-09-11T21:44:54+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-12-20T18:54:54+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"520\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"David Worthington\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"David Worthington\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"19 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\"},\"author\":{\"name\":\"David Worthington\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\"},\"headline\":\"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune\",\"datePublished\":\"2023-09-11T21:44:54+00:00\",\"dateModified\":\"2024-12-20T18:54:54+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\"},\"wordCount\":5084,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg\",\"keywords\":[\"Active Directory\",\"Azure AD\",\"device management\",\"entra\",\"Entra ID (Azure AD)\",\"intune\",\"mdm\",\"MEM\",\"Microsoft\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\",\"url\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\",\"name\":\"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg\",\"datePublished\":\"2023-09-11T21:44:54+00:00\",\"dateModified\":\"2024-12-20T18:54:54+00:00\",\"description\":\"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg\",\"width\":780,\"height\":520,\"caption\":\"two laptops against each other\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\",\"name\":\"David Worthington\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"caption\":\"David Worthington\"},\"description\":\"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.\",\"sameAs\":[\"https:\/\/jumpcloud.com\/blog\",\"david.worthington@jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune - JumpCloud","description":"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune","og_locale":"en_US","og_type":"article","og_title":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune","og_description":"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.","og_url":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune","og_site_name":"JumpCloud","article_published_time":"2023-09-11T21:44:54+00:00","article_modified_time":"2024-12-20T18:54:54+00:00","og_image":[{"width":780,"height":520,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg","type":"image\/jpeg"}],"author":"David Worthington","twitter_card":"summary_large_image","twitter_misc":{"Written by":"David Worthington","Est. reading time":"19 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune"},"author":{"name":"David Worthington","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e"},"headline":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune","datePublished":"2023-09-11T21:44:54+00:00","dateModified":"2024-12-20T18:54:54+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune"},"wordCount":5084,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg","keywords":["Active Directory","Azure AD","device management","entra","Entra ID (Azure AD)","intune","mdm","MEM","Microsoft"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune","url":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune","name":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg","datePublished":"2023-09-11T21:44:54+00:00","dateModified":"2024-12-20T18:54:54+00:00","description":"Learn about Entra ID (Azure AD) and Intune and how JumpCloud compares to and complements those services.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2018\/11\/comparing-jumpcloud-azure-ad-intune.jpg","width":780,"height":520,"caption":"two laptops against each other"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/comparing-jumpcloud-azure-ad-intune#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Comparing JumpCloud vs. Entra ID (Azure AD) and Intune"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e","name":"David Worthington","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411","url":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","caption":"David Worthington"},"description":"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.","sameAs":["https:\/\/jumpcloud.com\/blog","david.worthington@jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/23892"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/150"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=23892"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/23892\/revisions"}],"predecessor-version":[{"id":119193,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/23892\/revisions\/119193"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/47134"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=23892"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=23892"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=23892"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=23892"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=23892"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=23892"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=23892"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}