Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Lost Devices container/page

    Have s seperate page/container for Lost Devices,
    eg. I have a iPad in lost mode in the same location as other devices...
    would rather have that device some where else and able to locate it quickly in that container/page

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Under Duress Device Quick Wipe

    Initiating a device wipe process on a mobile device requires too many steps and is not inconspicuous. The ability for this process to be initiated from the device itself could use a faster less conspicuous process such as alternative fingerprint or alternative passcode or even a lock screen capability.

    The reasoning behind this is for employees traveling between areas that may be less than friendly. In these areas, we need a fast way to remove the company data & apps.

    Client-side API for Company Portal would be nice to create these alternative wipe methods. API for the 'Remove' functionality would…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add ability to see a policies apllied to a device or something similar.

    Being able to see the policies applied to a device and not just the last synch time would be very helpful from a testing standpoint and allow one to not spend time wondering whether or not the newly created policy was actually synched.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add functionality Provider/ProviderID/Unenroll OMA-URI

    Provider/ProviderID/Unenroll triggers unenroll from the MDM service. This is a useful feature so MDM providers can trigger enterprise wipe or remove all corporate software/documents/configuration when a device is compromise, such as stolen.

    However, in some scenarios, device administrators might want to ignore enterprise wipe requests. For instance, if they have already protected all their secrets and mitigated all risks for a compromised device, they might be fine with ignoring the MDM provider request to enterprise wipe the device.
    Unfortunately, Provider/ProviderID/Unenroll only supports Get and Exec commands. (Exec for issuing the unenrollment, Get for confirming it has completed). There is not…

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disallow User to Delete Device from Intune company portal

    Actually Users can delete thier device from company portal.
    i think that a dedicated policy are needed.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Ability to change time before becoming no compliant

    When changing a compliance policy a user has 60 minutes to become compliant. It would nice to be able to set this time instead.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Permission Group for MDM management outside of being a Global Administrator

    We cold do with having a new or separate Permission Group to allow non GA accounts to be able to manage the MDM devices. We need our 1st/2nd line support staff to be able to do selective wipe on devices but at present I am told this is only available for GA account.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Include Expense Management out of the box, without having to use a third party service

    Expense Management should be included right out of the box, without needing an additional paid subscription to a third party service. Intune's current offering for Expense Management is not a solution to this problem or request.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Force PIN onstartup with Intune company portal install.

    Force PIN on startup with the Intune company portal install for all phones.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    As of the March 26 updates, after a compliance or configuration policy is applied to an iOS device, users are prompted to set a PIN every 15 minutes. Users are continually prompted until a PIN is set. So, not forcing exactly, but nagging, a lot – is that close?

  10. In Office365 you can't switch off "non-trusted TLS-connections not allowed". This is only possible in a paid Intune account.

    In Office365 you can't switch off "non-trusted TLS-connections not allowed". This is only possible in a paid Intune account. Why would I pay for an Intunes account if the settings are part of O365. Either include the option in O365 MDM or remove the setting from the MDM profile.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Customers facing dashboard about the “state” of a device so that preventative maintenance can be monitored

    I'm looking for a customer facing page that I can give my customers as an admin. They can find and support their own stuff if they had information.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Simplify the onboarding process by providing config options on the different informational/disclaimer pannels.

    There is to many informational/disclaimer pannels during the onboarding process. For company managed domains, it would be nice to provide options for customization of the various pannels according to the user experience we decide to provide to our employees.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Intune central portal should be able to pull intune logs from remote connected devices

    Instead of relying on other remote connectivity software to pull logs from remote devices directly. This would allow improved and speedier diagnosis of any errors.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Increase PIN expiration option from 255 to 365 days

    Currently, the PIN expiration for iOS and Android can be configured to max. 255 days. My enterprise customers would like to see this increased to max. 365 days.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Profile Assignment Status Sortable Headers

    On the Azure Intune Portal, where you see the status of assigned policies (Device Configuration > Assignment Status), the columns are not clickable. As a result, you can't sort the profiles on this blade at all. If you go to the Profiles blade, the profiles are sortable there. This isn't a huge issue, but it does make the console feel inconsistent.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. InTune portal Quick device search for users Display Name/UPN/Primary SMTP email, not just by their device name(default - iphone).

    Currently in Intune portal(old and Azure) you can only search for a device by the device name. It would be an improvement to be able to find a device direct from the Intune devices area by searching by the users Display Name/UPN or Primary SMTP address.

    The 'device name' for many will just be a default one such as 'iPhone' so will return 1000's of results and does not make it easy to quickly find a device from the console to manage it.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Mobile Threat-Detection Remediation

    We are a Microsoft Partner here in the U.K. With a strong focus on EMS. Over the last few months Microsoft have introduced several new partnerships with Threat Detection companies to identify threats on mobile devices as this was an area that Intune was lacking.

    A new feature introduced by yourselves was to use Threat Severity levels provided by the likes of Lookout, Skycure to mark devices as non compliant (blocking them from the likes of email, sharepoint etc).

    Whilst this is great, this would seem only a half way house. If in the event I have malware on my…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Allow Intune Connector for Exchange and NDES connector to be installed on the same box

    When installing the Intune Connector for Exchange on the same box as the NDES connector for Exchange they both try to use the named pipe 'net.pipe://localhost/WIEC'.

    In a large environment there is a lot of effort/security scrutiny required to allow a host to bypass SSL inspection and permit the connectors to work. It would be helpful if both connectors could run from the same host.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. MDM Locking down for public settings

    We have a partner that is using Intune as an MDM. Some devices are locked down for public use. I am wondering if there is a way to set a pin number on a device and then lock it down to the users cannot change it by themselves… This is a little counter-intuitive based on the purpose of the MDM, if we could either;
    1. Lock out access to Settings for the device
    2. Disable password/Pin from being required and set
    3. Disable it from being reset

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Managed Endpoint Protection for macOS devices

    Please offer managed endpoint protection for macOS devices, like SCCM offers with SCEP.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base