Intune & Endpoint Management Berlin | IT Experts Berlin

Intune & Endpoint Management Berlin

Unmanaged devices are one of the most common security gaps in growing businesses. Intune gives you full visibility and control over every company device — and the policy enforcement to back it up. I configure Intune from scratch or take over existing tenants that need restructuring.

What’s Included

  • Intune tenant setup — baseline configuration, enrolment profiles, and device categories
  • Windows Autopilot — zero-touch device deployment so new laptops are ready to use out of the box
  • Compliance policies — minimum OS versions, encryption requirements, and Conditional Access integration
  • App deployment and protection — managed app deployment for Windows, macOS, iOS, and Android
  • BYOD management — personal device separation using app protection policies, without requiring full device enrolment
  • Remediation of existing tenants — cleaning up legacy configurations and bringing a messy Intune environment back under control

Who This Is For

  • Companies issuing laptops and phones to staff without a central management solution
  • Businesses that have Intune as part of M365 but haven’t configured it
  • Organisations that need BYOD support without losing visibility of corporate data
  • IT teams managing a mix of Windows, macOS, iOS, and Android devices

How I Work

Intune rollouts are typically fixed-price scoped by device count. Larger environments or complex BYOD requirements are quoted after a free initial assessment.

Hourly rate: €110 / hour (Cloud & Infrastructure Projects)

Fixed-price option: Intune MDM rollout (up to 25 devices): from €690

Book a Free Consultation

Book Free Consultation →

Frequently Asked Questions

Do we need Microsoft 365 Business Premium to use Intune?

Intune is included in Microsoft 365 Business Premium, E3, and E5 plans. It can also be licensed standalone (€8/user/month as of 2025). Most SMBs already have access to Intune through their M365 subscription but haven’t activated it. If you’re on Business Basic or Standard, upgrading individual users to Business Premium is typically the most cost-effective path to full device management.

Can Intune manage personal (BYOD) devices without wiping them or accessing personal data?

Yes — Intune’s App Protection Policies (MAM without enrolment) handle BYOD correctly. Corporate data in apps like Outlook and Teams is containerised and protected; the rest of the device remains private. Corporate apps can be remotely wiped without touching personal data or applications. This is the appropriate BYOD architecture for GDPR compliance — full device enrolment for personal devices introduces unnecessary data liability.

We have a mix of Windows, Mac, iPhones, and Android devices. Can Intune manage all of them?

Yes. Intune natively manages Windows 10/11, macOS 13+, iOS 16+, and Android 10+ (via Android Enterprise). Each platform has its own enrolment method and policy set. A mixed-platform environment is the normal real-world scenario — the configuration is more involved than a Windows-only fleet, but the architecture is well-documented and the scoping call will produce a platform-by-platform deployment plan.

Book a Free Consultation →