Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Version History in Intune configuration

    Version History in Intune is needed to prevent mayor incidents if a configuration profile is adjusted by accident.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. add file to device home screen

    Some organizations would like to have the ability to have an offline file such as a PDF or and file type pushed to the device.

    something like emergency contacts or instructions in case of a disaster.

    Airwatch, and MaaS360 have this capability.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Enrollment Quarantine

    Create a Quarantine for Enrolment, where an Admin can approve or deny enrollment for a device.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Ability to Copy n Create existing policies, Profile, CA so that it will be very helpful for our testing purpose. As it would take less time.

    Okay, so we need to keep on deploying wi-fi profiles every 3 months and we have to create new profile every time, however we need to change only SSID and password. Secondly for our testing purpose we also need to test existing CA , compliance policies etc. with minor changes to test the behaviors. So if we we will get the ability to Copy and create the existing policies for above mentioned purpose that would be very helpful.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. General Enrollment Bundle packs

    Hello,
    So far, I see there is multiple solutions available like:
    MDM, MAM, Conditional Access, WIP, App Protection Policy, Azure RMS, Legacy Protocols, Modern Authentication etc.
    Would be great if we could have option to select like “Bundle Pack” for Enrollment in Device Management with Security behind, at least in Documentation level.
    As example now to setup nice MDM, but with some protection, we need go Azure, Azure RMS, Intune, Intune App Protection and everywhere we need enable something and read&search per product the description of “how to enable” this service and integrate with each other, this takes a lot…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow adjusting Device Configuration Enforcement

    When creating a device configuration, please add a section that will allow us to specificity if the policy is


    • Run Once

    • Run on Enrollment

    • Preferred - New default but user can change

    • Required - Forced setting for user/device

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Copy/Clone/Duplicate Device Configuration Profile

    When we inevitably need to create a new Device Configuration Profile for an employee with slightly different needs than the rest of the group we must recreate an entire profile from scratch for just the smallest difference, such as longer screen lockout time. If we could duplicate/clone/copy an existing Device Configuration Profile it would save time and potential errors.

    508 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    22 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Enable full management of the Windows Firewall

    Enable full management if outgoing as well as incoming firewall rules in Intune Device Configuration Profiles.
    Enabling the management of outgoing firewall rules, and providing the ability add individual exceptions would help prevent data leakage in corporate environments.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Bring the Intune Management Extension to ALL Win10 MDM managed devices

    Currently, the Intune Management Extension requires AzureAD joined; AzureAD registered is not sufficient. This limits the manageability of BYOD devices, taking Powershell script and Win32 app deployment off the table. Make it so that MDM-only devices can use this extension too!

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Assign device compliance policy to DEP enrolled devices without user affinity to device groups

    We have 50 shared iPads that has been enrolled using DEP and without user affinity.

    As it stands i am unable to get these devices marked as compliant.

    I have been told by a Microsoft Intune Support person that this this is by design because there is no user logged in.

    This is very frustrating that i am now going to have to have 50 iPads not compliant because they are without user affinity.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Run PowerShell script on a schedule

    It's great to see the Intune Management Extensions available now, but what would be even better is to extend this functionality to be able to run powershell scripts on a schedule or in a repeated fashion.

    The setting could be put under Device Configuration -> PowerShell Scripts -> [script name] -> Settings -> [script settings].

    It would be fantastic to be able to have a script execute from intune like it were a scheduled task. eg. Mon, Tue, Wed, Thurs, Fri, Sat, Sun, and a time. Or have options for "Every 1 week" or "Custom" where we can put the…

    331 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Restrict enrollment based on Device Manufacturer

    We know that there is an option to restrict the device based on the platform . But we need an option where the devices can be restricted based on the device manufacturer. There are cases in which particular manufacturer device types affected by malware. In that case we need to restrict those device from Intune until Malware issues are resolved.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Android Enterprise Device Wipe

    In a company owned device scenario we would like to manage the devices with the wipe function (they are company owned) and not require a user to log in to their google account to install applications that we deploy. Sadly as you know the Android for Work Enrollment option does not provide the option to wipe devices and the Android enrolment for personal use requires a google account to deploy software and while we could use a generic google account for this we do not want people to have access on the device to that account. Android in Kiosk Enrolment…

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Under client apps, would like to see warning instead of fail when an app is installed but a newer version is available.

    Under client apps, I would like to see "warning" instead of "fail" when an app is installed but a newer version is available. I panic when I see a lot of failure messages, and this is really a failure.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. ability to block certain device vendors from enrollment e.g. Huawai.

    ability to block certain device vendors from enrollment e.g. Huawai.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow only specific Android manufacturers for enrollment - block others

    Ability to allow only specific Android manufacturers devices for full enrollment.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. bitlocker full drive encryption setting

    Seems strange there is no setting or 'toggle' in the profile configuration of Intune to allow for bitlocker full drive encryption. The only default is for used space encryption only. can you please enable this?

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Extend Calendar Item Visibility For At LEAST 24 Months

    Can't believe I can only see 11 months into the future on my mobile device. Sitting with friends and Microsoft is coming across as old tech that should be replaced.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. exporting of intune compliance state in csv format which must contains column like settings due to which device got non-compliant

    There must be a feature to export Intune data that contains columns like
    Device name,
    State,
    last check-in time and date,
    Setting due to which device got not-compliant like - antivirus/firewalls etc
    Configuration policies - like certificate/encryption and
    Software updates - updated or not updated with KBid

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. PowerShell with Parameters

    Would be awesome if you could add the ability to pass parameters down to PowerShell scripts.

    Why?
    We have multiple customers running the exact same script, where ONE variable has to be changed according to the customer. Currently we have to create and maintain one script per unique customer. If we could pass parameters through Intune it would make this a whole lot easier and dynamic.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base