Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. allow two seperate on prem exchange organizations and active directories to the same intune account

    I have two active directory domains and two on prem exchange orgs. Both my companies are on my same EA agreement. There is a two way transitive trust between the two domains and they both sync to my one azure ad. I need to manage them both through intune. This is stopping the roll out of 550 global devices on windows 10 mobile to replace blackberry and 150 BYOD devices on Good.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Can you get OS X device management to work?

    I've just enrolled an OS X device into Intune and Intune isn't recognizing that it's a Mac. Strangely, a new device did show up, but the Name and Operating System fields are blank.
    As far as I can tell Intune isn't really a fully baked product which is a real bummer, even the support folks I talk to scratch their heads and are a bit clueless.
    :(

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Deploy intune Enterprise on device with their IMEI saved in O365

    When user connect to O365 to synce email, MS save IMEI of the smartphone....O365 is also able to wipe device....so does O365 can push intune portail on device registered.....
    I don't speak of "conditional access"....
    I want an automated installation of Intune portal on my devices.
    Thank you

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Enroll Black Berry Z10 devices with BES12 process but block direct device enrollment through Active Sync

    Customer Uses Stand Alone Intune for their Office 365 MDM Authority with Conditional Access with iOS and Android devices.

    Customer also has a BlackBerry BES12 MDM Authority on premise and has added the Black Berry users (who use BB Z10 devices) to their Exemption list allowing them to enroll devices with ActiveSync to access mailboxes on Office 365.

    Customer would like to see a way to enroll their Black Berry Z10 devices through the BES12 process but block direct device enrollment through Active Sync while allowing their iPhones and Android devices to still enroll through Intune added as functionality.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Adding users to Mobile Device Management Issue - Enrollment Problems

    Hi

    We are in the process of setting up Office 365 Mobile Device Management. We've created a MDM policy, created a security group and associated this group with the newly created MDM policy. We have added about 10 users to run as a pilot test.

    There has been a number of scenarios which have occurred whilst setting end user devices up.


    1. Add the user to the security group associated against MDM policy. The user receives the enrollment email, and email stos syncing with Office 365 mailbox on device until they successfully complete the enrollment process

    This is what you expect…

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Looking for Complex password setup in our organisation which includes Alphanumeric and special charcters.

    Looking for Complex password setup in our organisation which includes Alphanumeric and special charcters. Rigth now we just have strong PIN to define. Can we get this option?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Extend the possibility to control CSR Information in certificate profiles

    We need more granularity when it comes to Certificate Profiles for instance many companies have Cisco ISE on their network and depending on the information that the certificate presents to the ISE Instance the client is put in a network segment. As we only can Control common name we are not able to segment devices due to this. Adding more Templates doesnt help as the common name would be the same.

    So an example could be that you make it possible to control the the OU attribute (or any other) to make it possible to configure different attributes per Certificate…

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add ability to run a report for a specifc period of time

    Most reporting I have seen allows you to run a report for a certain period of time.

    This needs to be added. Especially when people are tracking enrollments it would allow you to run a report on a specific day, week, month, or whatever.

    This is a pretty basic part of reporting and would be great if it could be added.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Split activation time and date into two separate columns in reporting

    When running a report on all the users that have been added to Intune I see the EAS activation time column. Since that column has the date and then the time, unless you do some manipulation to the data in Excel you can't sort it by date of activation.

    This could be easily fixed by splitting the columns into EAS Activation Date and EAS Activation Time.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Option to disable renaming mobile device

    Renaming mobile devices is great for user experience, but in some scenarios it will be great that default name should be not allowed for easy recognition from administrator side.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. We would like to be able to wipe EAS profiles on devices remotely using selective wipe

    We'd like to be able to remove EAS profiles from mobile devices that are associated with the user / device that we are retiring from Intune. Currently this works only with iOS, and only if the profile was pushed down as part of policy. We'd like to be able to remotely wipe EAS profiles created by the user in the native mail app, based upon the domain name when doing remote selective wipe. Currently the only option is either the 15-step Exchange, export, delete, re-sync, block, change password option, or the full wipe, which customers will not tolerate.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Introduce MDM patterns

    I would suggest to introduce standard (settings) patterns for small customers like us (in my opinion the number of settings, the impact of each of the setting and the potential interference with other settings is much too big and too complex).
    Another option is to introduce wizards to define settings for the different types of devices by asking whether or not a device type is allowed and with what level of security (low/medium/high) predefining a number of standard settings.
    I think that will help in reducing the potential number of incidents and requests.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Remember user password when registering a device.

    When you register a device you enter your AD credentials. It would then be great if Intune could remember that password and re-use it when deploying Exchange, VPN and Wi-Fi-profiles with authentication method username and password.
    This is a feature we used in our previous EMM-solution and it was a great user experience not having to enter your password several times.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Outlook Mobile should be part of Selective Wipe

    Outlook Mobile should have company data wiped with Selective Wipe feature.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Unable to remove a user from O365 MDM

    After testing O365 MDM, we removed all policies, devices and users from the MDM group that was created for testing. However, 6 months later, the test user is still being prompted to enroll in MDM when logging into OneDrive for Business app on any mobile device. I opened a support ticket and they put the user back into the MDM group and put the group into the global MDM policies exception list. That stopped the alerts to the user to enroll but said that you cannot remove a user from O365 MDM once they have been enrolled previously. So now…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    Hi, Glen, I talked to our engineering team and they said that doesn’t sound right – if you take the user out of the group, the policy should not be applied and the user should not get prompted to enroll. (And much as we’d love you to buy Intune, we don’t want you to do it just to resolve this issue!)

    Would you be able to give me the support case number so I can look into this?

  16. Deploy a user certificate with approval

    I can deploy user certificate by using Intune, SCCM, my CA and NDES server, but my security rules determinates that all user certificates must be approved by security team. Pleas add such funkcionality.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Microsoft Intune NDES Connector with Symantec Managed PKI

    Enable Microsoft Intune NDES Connector to work with Symantec Managed PKI. This applies also for Configuration Manager NDES Connector/CRP.

    This is an imported feature request for large Enterprise customers, particular in financial industries. This request is on behalf of some Enterprise customers (25K) and Microsoft Alliance Partners

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. 2n1 devices should have policy that applies differently to each mode for that device

    With devices like the surface they are used in two modes.

    When being used in Tablet Mode, we may want to have a more mobile centric policy, such as, screen lock in 5 minutes or less.

    Whereas, in Computer / Desktop mode, we would want the timeout to be 30 minutes or less.

    The system needs to understand that these devices work in two modes and have a policy that applies differently to each mode for that device.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. LG GATE

    Is there some timeline to support all LG GATE functions like with Android for Work or Samsung KNOX?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. It would be great if all OS's behave in the same manner with app delivery \ installations.

    It would be great if all OS's behave in the same manner - ie; web apps on all devices will install as a icon on the home \ app screen. From a customer \ support \ documentation point of view - it will be confusing for users to have one experience on a Android & a completely different experience to access the same app via iOS \ WP.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base