About IntuneSentry

We built IntuneSentry because managing Intune policies across multiple tenants shouldn't mean flying blind.

The problem we're solving

Microsoft Intune is powerful, but it has significant blind spots. There's no built-in way to know when a policy drifts from your intended configuration, no easy way to deploy a standard baseline across tenants, and no simple compliance scoring to tell you where you stand.

For MSPs and IT consultancies managing dozens of client tenants, this is a serious operational risk. A silently changed compliance policy, a weakened conditional access rule, or a drifted endpoint security config can go undetected for weeks.

What IntuneSentry does

IntuneSentry gives you a complete Intune policy lifecycle in one platform. Import community baselines like OpenIntuneBaseline from GitHub, deploy them to your tenants with assignment options, then continuously monitor for drift. When something changes, you see exactly what — field by field — and can accept intentional deviations or remediate real problems.

Run security assessments to check tenants against best practices across compliance settings, conditional access, app protection, and monitoring health. Get a scored report with remediation guidance for every failing check.

Our approach

We believe monitoring tools should be simple, predictable, and transparent. IntuneSentry connects to your Microsoft Graph data to monitor policies and, when you choose, deploy baseline configurations. Changes are only made when you explicitly trigger a deployment.

Who uses IntuneSentry

MSPs & Consultancies

Monitor client tenants centrally. Deploy standardised baselines. Know about drift before your clients do.

IT & Security Teams

Import community baselines, run security assessments, track compliance scoring, and enforce policy standards.

DevOps Teams

Deploy Intune configurations from version-controlled baselines. Detect drift from intended state. Full API for automation.

Security & privacy

We take security seriously. IntuneSentry only requests the minimum Microsoft Graph permissions required to read and manage Intune policy configurations. OAuth tokens are stored encrypted at rest. Policy deployments only happen when you explicitly trigger them.

We are based in the UK. Data is processed and stored in EU-region infrastructure.

Our principles

Transparent pricing

One price, clearly stated. No hidden fees, no lock-in, no enterprise sales calls.

You control every change

IntuneSentry only modifies policies when you explicitly deploy a baseline. No automatic or silent changes — ever.

Minimal permissions

We request only the Graph API scopes we need. Nothing more.

Plain-language diffs

Diffs show you the actual field values — baseline vs current — not just that something changed.

Fast and reliable

Scans run hourly. Drift scores update automatically. Alerts fire within minutes.

Human support

When you need help, you talk to the people who built it.

Get in touch

Questions? We'd love to hear from you.

Contact us Start free trial