Microsoft AzureAD, Intune and Defender for Endpoint
Short description of this page.
Independence from the on-prem network by using Azure AD for user management, Intune for device management and Defender for device and app security.
What is AzureAD
Azure Active Directory (AAD) is Microsoft Cloud Version and is used to manage users and their rights. This can replace an existing OnPremise Active Directory. Employees from office or home office can log on to AzureAD using the usual username and password. Both Active Directories can be connected together with AzureAD Connect.
User data is replicated from local AD to AzureAD. This makes it possible for users and groups to continue to be managed locally. Users use the same credentials for AzureAD too.
During the installation of Windows 10, it is possible to decide whether the device is prepared for AzureAD. You can also connect to AzureAD at any time under Settings/Account.
Device management with Endpoint Manager
With Endpoint Manager (formerly Intune) Windows, iOS and Android devices are managed centrally. Windows 10 will receive security updates, advanced functions, firewall and virus protection settings.
When a Windows 10 device connects to AzureAD, it can be automatically rolled out in Intune or Endpoint Manager, through MDM service (Mobile Device Management).
Endpoint Manager can also be used to protect apps for Windows 10, Android and iOS devices at the application level using MAM (Mobile Application Management). E.g. You can set that Outlook email data is not passed on to other uncontrollable apps e.g. on Facebook app.
An administrator can create an app collection with apps that can be installed in the background on all company devices or device groups. A company portal with software can be available to all users. This allows users to optionally install the prepared software if they are authorized to do so.
Intune Apps availability via company portal
AzureAD and Intune cost
Below you can see 2 tariffs that include Microsoft AzureAD and Intune. Office 365 E3 and Enterprise Mobility + Security E3 belong together, must be combined. Other Combinations are also conceivable with Intune, Endpoint Manager
are conceivable, contact us for other individual tariffs.
MS.Preis: 16.90 € Our price from
MS.Preis: 19.70 € Our price from
Office 365 E3 includes Office 365 E1
and additionally: Desktop Apps (offline) and Exchange P2, SharePoint P2 and OneDrive P2 with 5 TB
MS.Preis: 9.00 € Our price from
Enterprise Mobility_+_Security E3 includes AzureAD P1, Intune, Cloud app security, Azure Rights Management, AIP P1, MFA
Note our Microsoft Office 365 prices
. You can buy licenses up to 10% cheaper, with a minimum contract period of 1 month. This offer is directed to companies only.
I do not know which plan is the best for my company's business, I also find the terminology complicated. If you also feel the same as many others, then write us
Microsoft Defender Advanced Threat Protection (MDATP)
Microsoft Defender Advanced Threat Protection (MDATP) was recently renamed to Microsoft Defender for Endpoint. This refers to the Defender Server as a SaaS service that provides antivirus, firewall and other complex threat protection.
When devices are connected to Endpoint Manager, it can be set to automatically be rolled out in MDATP (Defender Server). Defender Client, which provides virus and firewall protection, is already running on Windows 10 systems.
MDATP also offers protection for Windows 7, 8.1, Android, macOS, Linux. MDATP is available in Microsoft 365 E5 or Windows 10 Enterprise E5.Microsoft Defender for Endpoint
or MDATP is available as a standalone product or as part of Windows 10 Enterprise E5
AzureAD, Office 365, Endpoint Manager, Defender ATP
For some other versions it is possible to get MDATP as a standalone product. For these and other questions about AzureAD, Endpoint Manager, write us via Jira ServiceDesk
, an efficient and transparent method for customer support, see a an example ticket
. You are welcome to write us an email or use Contact