Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Provide the feature to deploy third-party wildcard cert or self-signed cert to Android via Intune

    Trusted certificate profiles have always been meant for Root and Intermediate CA certificates. Can we make it available to use Intune trusted cert profile to deploy 3rd wildcard cert & self-signed to devices?

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. remote wipe should not initiate under 20% battery

    If you try to reset a device on it's GUI, it doesn't let you do it if you have little battery left. Nor with firmware updates.

    The idea is to have a check box with the wipe feature, or a pop-pup asking even if the device has less than 20% battery do you want to continue, or just if it has more than 20%

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. 7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Intune Device Wipe Warning for IOS

    While implementing Intune for our IOS devices, we have noticed there is no warning when your device is about to be wiped if you have entered your device password wrong too many times.

    Would it be possible to add this as a feature Intune, warning users if they enter their password wrong one more time, that their device will be Enterprise Wiped.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Preventing Factory Wipe Loophole

    As far as I can see, there is no way to prevent users from factory wiping iOS managed devices. In our environment, we are using DEP to enroll our devices, and then have device restrictions that prevent the user from performing a factory wipe from the Settings. However, if a user puts in an incorrect PIN, the device will factory wipe. I do not see a way to turn this off, only to adjust the number of incorrect PIN inputs from 2-11. Can there be an option added which will allow the device to be locked instead of wiped?

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Dynamic Device group based on installed application

    We have a situation where we allow users to install apps from the appstore on their corporate device but a situation came up where a lot of heavy data usage apps are causing large bills.

    We want the option to be able to deploy app restriction policies and take control of an unmanaged app without having to deploy it to all users.

    Being able to make a dynamic device group based on a specific discovered app would allow us to target only those with the application installed for the restriction policy rather than having to deploy the app to everyone…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Dynamic Device Categories

    It would be nice to be able to automatically set category during enrollment based on other criteria such as the user job title, department or just by the upn.

    By doing this the user does not need to select category manually and we can automate groups and profiles based on this.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Display Inactive and Active device on the Dashboard

    I like to be able to see all device on the MDM from the dashboard and listed by last connected to the system. This would give a quick representation of how many devices we have enrolled and how many have not connected in the past 30 days.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Policy Sets should support all object types

    The policy sets are a very cool feature but do not support some object types which would be really helpful:
    - PowerShell Scripts
    - Win32 and MSI Applications
    - Security Baselines

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow sorting and editing details of Corporate device identifiers

    Microsoft Intune->Device enrollment->Corporate device identifiers

    Cannot sort
    Cannot update Details

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Force the synchronization of devices in an AAD group

    When I deploy an application to an Azure AD Group, I would like to
    Force the synchronization of every devices just with one click.
    Actually i need to synchronize each device one by one to force the sync.

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Set custom background and logos via Android Enterprise device configuration policy

    Currently setting custom backgrounds on Android Enterprise MDM devices in Intune is only available for devices that are in a kiosk mode configuration, it would be useful to enforce a custom background and logo on managed Android Enterprise devices within Intune in a non-kiosk mode configuration.

    Is this something in the pipeline?

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Notify us if a DEP MDM (eg. Apple) sync hasn't happened in 24 hours.

    Notify us if a DEP MDM (eg. Apple) sync hasn't happened in 24 hours. We have this for AD Connect we need it for Intune DEP tokens too.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. dark mode

    Please allow the ability to force light mode or dark mode in iOS. We have some LoB apps that look bad in dark mode, so we'd like to make sure they use light mode.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Show display settings in the managed home screen

    Currently the managed home screen allows the user to adjust volume settings, set bluetooth setting, and view device information. I would also like to give the device users the ability to adjust the display settings on a device.

    Features like being able to adjust the brightness of the screen, turn on and off auto brightness, set the sleep interval, and the ability to turn on and off the auto-rotation of the screen.

    We like the ability to lock down the tablets with the managed home screen, but it would be nice to give the device users the ability to adjust…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Custom Role Based Admins - Ensure custom admin roles functions matches information associated with that role

    We have the need for custom roles. One such customized role is for device configurations. Under that there is the ability to Assign, Create, Delete, Read, and Update.

    Update used to allow the ability to change the configurations (such as block or allow) in a device configuration. Microsoft changed this claiming that feature was a bug and corrected (essentially making it so the Update function cannot do anything if there is a group assigned to it...which means you cannot do updates on a production configuration since they need groups to be assigned to it).

    Microsoft says that the Assign permission…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to manage multiple device profiles for a dedicated user, also to manage profiles/policies ranking

    Most of MDM solutions are providing a way to deploy different type of devices (different profiles/policies/apps..) for a single user. Currently the only real method is to either use Category tags or dynamic device groups. Category tags are limited and is currently not supporting all types of enrollment (not working with Android Enterprise full Corporate-owned fully managed devices, using Intune app instead of Company portal, manual action by an IT required in the console to set a category tag then). Second option is dynamic device groups that are also limited in scope as some objects are user-based only and cannot…

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Save Administrator View Preferences

    The columns and views by default are not useful. What's even more annoying is when I change my view to something that's helpful to me, it is not preserved at next login, everything is reset to default. Considering Intune is a cloud service I would expect that Intune should be able to save my view preferences to be used wherever I may login from.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Wipe corporate data from apps/devices when AAD user object is disabled

    Currently there exists no built-in automated cleanup of corporate data from registered apps and/or devices when a user is terminated and their AAD user object is disabled.

    It is possible to leverage the Graph API via Powershell scripting to automate some of this.

    It would be great if it were possible to enable built in automation of this process. Ideally the call to wipe corporate data from apps and devices along with removing the devices from Intune would take place once the account disable has taken place.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Intune Device exports fewer columns

    Previous exports fielded over 30 columns. Has anything changed recently?

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base