top of page
Search

Microsoft raises the bar: Intune Suite now in Microsoft 365 E3 and E5

  • Writer: HybrIT Marketing
    HybrIT Marketing
  • 3 days ago
  • 4 min read

In December 2025 Microsoft announced a major update to Microsoft 365 that significantly increases the capability of the platform for organisations of all sizes. Many advanced Intune Suite features along with a range of security and endpoint management enhancements are now being included directly in Microsoft 365 E3 and E5. These additions strengthen identity, security and device control at scale while reducing the need for separate tools or extra licensing.



This update sits alongside Microsoft’s broader shift toward a more unified platform that blends productivity, AI driven insight, endpoint control and modern security into a single environment. Microsoft also confirmed that updated pricing for Microsoft 365 will come into effect from July 2026 although the expanded feature set arrives well before that point.


New Intune and Microsoft 365 features included in E3 and E5

The changes Microsoft has introduced mean that organisations receive far more capability within their existing licences. The additions are especially significant in the area of endpoint management and security.


Feature

Description

Intune Remote Help

A secure remote support tool that allows IT teams to troubleshoot and resolve issues directly on user devices regardless of location. This reduces time to resolution and improves support coverage for remote and hybrid workers.

Intune Advanced Analytics

Provides deep data on device performance health and reliability. IT teams can identify degrading performance early carry out proactive maintenance and predict where issues may occur.

Intune Plan 2

Extends core Intune with advanced management of a wider range of devices including speciality equipment and more complex configuration controls. This increases centralised governance across a mixed hardware estate.

Speciality device management and firmware over the air updates

Support for devices such as smart screens meeting room systems AR and VR headsets with the ability to push firmware updates remotely. This helps maintain compliance and functionality for technology that previously sat outside traditional management.

Intune Endpoint Privilege Management

Allows secure elevation of privileges for standard users when needed without granting full administrative rights. This supports least privilege access and reduces risk in day to day operations.

Intune Enterprise Application Management

A hosted catalogue for deploying updating and maintaining enterprise applications across the entire device estate. This improves consistency and security around software lifecycle management.

Cloud Public Key Infrastructure

A cloud based certificate authority that manages certificates for Wi Fi VPN and application authentication. Cloud PKI strengthens identity based access removes reliance on on premises certificate infrastructure and simplifies certificate lifecycle management.


What these changes mean for organisations


A unified platform for endpoint management and security

Organisations can now centralise device management identity management application lifecycle control and security enforcement within Microsoft 365. This removes the need for multiple standalone tools and simplifies operations.


Stronger support for remote and hybrid working patterns

Remote Help and cloud managed device controls mean support teams can resolve issues for users anywhere. Mobile application tunnelling and certificate based access control mean users can securely reach internal resources without complex configuration.


Wider device coverage with consistent security

With Intune Plan 2 and speciality device management the estate that can be regulated and secured is far broader than before. This includes mobile devices shared equipment front line worker devices and specialist hardware used in collaborative spaces.


A stronger Zero Trust security posture

Endpoint Privilege Management Cloud PKI and advanced analytics all contribute to a more robust identity first security model. These tools support conditional access controlled elevation of permissions certificate based network access and improved detection of anomalous device behaviour.


Reduced operational overhead

With more capability included in core licensing organisations can consolidate vendors streamline administration and reduce costs associated with maintaining separate platforms.


Planning considerations for organisations

The introduction of these features means organisations should review their current endpoint management approach and consider where consolidation or improvement is possible.


  • Confirm which new features are available based on current Microsoft 365 licensing and enable them where appropriate

  • Review device onboarding processes and ensure Intune enrolment is enforced consistently across all device types

  • Evaluate legacy tools such as existing mobile device management VPN solutions on premises certificate services and remote support software which may now be replaced

  • Update internal governance policies to incorporate certificate based access privilege elevation controls and centralised app deployment

  • Consider the upcoming pricing changes in 2026 and use the new capability set to optimise licensing strategies

  • Consider enablement packages through experts like HybrIT to maximise product features.


HybrIT expertise in Intune and modern endpoint management

HybrIT has deep experience delivering Intune across complex enterprises from diverse industry sectors. Our teams work with device estates that include Windows macOS iOS Android and speciality hardware and we design environments that maximise security performance and operational efficiency.


HybrIT offers Intune jumpstart packages that help organisations adopt these Microsoft 365 capabilities quickly. These packages establish best practice configuration enable new features such as Cloud PKI privilege management and advanced analytics and align device management with modern Zero Trust principles.


With the expanded set of Intune features now included in Microsoft 365 E3 and E5 organisations have an excellent opportunity to strengthen security reduce complexity and modernise their device management approach. HybrIT can guide the entire process and ensure every benefit is realised.


To get in touch and enquire which Intune jumpstart packages are available, or you would just like to explore whats possible from your existing M365 Licensing, please contact our team and we'll put you in touch with our expert team of Modern Work consultants.


Tel: 0333 015 6701

Comments

hyblogo for social square.png

UK Head Office

Building 3, Royal Ordnance Depot

Weedon Bec

Northamptonshire

NN7 4PS

Something for you to consider:

01010111 01100101 00100000 01110111 01100001 01101110 01110100 00100000 01110100 01101111 00100000 01110111 01101111 01110010 01101011 00100000 01110111 01101001 01110100 01101000 00100000 01111001 01101111 01110101 00100001

​0333 015 6701

hello@hybrit.co.uk

  • LinkedIn
  • Facebook
duck copy.png
hybrit hope smile.png
NHS SBS - FWA Supplier RGB B-W - 1000pxw.png
Approved Everything ICT Supplier Logo
ISO 27001 Certification Mark
ISO 9001 Mark White Certification Number.png
SafeContractor__All White.png

© Copyright 2025 HybrIT Services Ltd. All rights reserved. Registered in England and Wales No. 10479291

bottom of page