Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Conditional Access days enforcent warning

    When a condition is enforced. Such as operating system version. Allow a count down of days till the condition is enforced. The end user should get a message stating that in 10 days, if they do not meet minimum os requirements, they will be unable to access o365. This can be enforced on various requirements and allows the end user time to resolve the issue before enforcement.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Corporate device identifier custom fields and pre configuration

    We are currently running a MDM by another vendor and are migrating Intune. On our current MDM we can take a CSV and fill it full of custom columns. Then we query that list to have it automatically assign to groups, configure device names, and run actions against.
    Having this greatly reduces the amount of ongoing maintenance that is required by the system as most devices are pre-configured and assigned whatever they require. It would be great if this was built into the “Corporate device identifier” function.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Assigning Default Enrollment Profiles based on Platform

    Now that Intune can assign a default enrollment profile (https://docs.microsoft.com/en-us/intune/device-enrollment-program-enroll-ios#assign-a-default-profile), we need a way of:

    a) creating different enrollment profiles based on platform type

    b) assigning these profiles (or not) to those specific platforms as default

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Need to apply policies with a generic account, allow sign-on with different creds to get additional features, logout back to basic account.

    The idea is a layered approach to policies and user access. We have a lot of devices that are shared between users, so we want to have a generic account for them to use on the device. In some occasions, a person will need to sign in with their credentials to access additional applications or policies. Once they are done, they need to sign out and have it go back to that generic login.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. OS X screensaver activation time is set wrong


    1. OS X 10.11, OS X 10.11.2 (at least)

    2. Apply policy that sets screensaver activation time to 1 (or 5)

    3. Apply policy that sets password lock time to 1

    4. Ensure Password Policy is downloaded (Settings -> Profiles -> Password ..)

    5. Go to Settings -> Screensaver

    6. Screensaver activation time is greyed out and shows "20 min"

    7. Wait for screensaver to activate.......

    I can reproduce this with at least two OS X 10.11.x devices I have for testing.

    Not to sound like a douche but I have currently 6 different tickets open with MS Support regarding various policies which do not apply correctly,…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Wipe corporate data from apps/devices when AAD user object is disabled

    Currently there exists no built-in automated cleanup of corporate data from registered apps and/or devices when a user is terminated and their AAD user object is disabled.

    It is possible to leverage the Graph API via Powershell scripting to automate some of this.

    It would be great if it were possible to enable built in automation of this process. Ideally the call to wipe corporate data from apps and devices along with removing the devices from Intune would take place once the account disable has taken place.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Woudl like the service to automatically select custom Terms & Conditions based on the language used on the device.

    We know that we can have customized Terms & Conditions, and we know that we can assign these by user groups. What we want is to query the language used on the device and automatically select the appropriate, pre-loaded language. This would overcome any risk of the wrong language to be displayed if IT doesn't properly assign the right T's & C's based on the language used.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    Kevin – are you asking for this for standalone Intune, or hybrid (ConfigManager+ Intune), or both? It’s definitely something we’ve been interested in doing. Configuration Manager currently does something similar with apps, where you can have metadata in multiple languages for the same app, and the client OS picks the right one. Intune standalone doesn’t have any type of language infrastructure. So I was curious which configuration you were most concerned about.

  8. Lost Devices container/page

    Have s seperate page/container for Lost Devices,
    eg. I have a iPad in lost mode in the same location as other devices...
    would rather have that device some where else and able to locate it quickly in that container/page

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Alert functionality whe device is wiped or retired

    Mail Alert Generation when single device or multiple devices are wiped by any Intune administrator

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Profile Assignment Status Sortable Headers

    On the Azure Intune Portal, where you see the status of assigned policies (Device Configuration > Assignment Status), the columns are not clickable. As a result, you can't sort the profiles on this blade at all. If you go to the Profiles blade, the profiles are sortable there. This isn't a huge issue, but it does make the console feel inconsistent.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Configuration Profile installed on device

    It would be nice to know when a configuration profile has successfully installed (configured) this profile on the device. The results/status shown in the Intune portal are not correct (Intune - Device Configuration - Profiles - Select Profile - Device Status shows succeeded but when you look on the device the profile in fact has not actually installed or configured. When you look at managed policies under work/school account - info - managed policies it does not list all managed policies that are derived from the configuration profile within Intune.

    Just looking for consistent results so that appropriate planning and…

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Intune PC enrolled as Mobile device - Unable to Generate Harware Information, Updates information and Malware Information.

    I know Microsoft still has not rolled out feature for PC enrolled as mobile device in Intune to Generate Hardware, Updates and Malware Reports. We need this data as part of compliance and status check. Currently we are only using Intune and we would like to know when this feature will be rolled out for end users. Checked with Microsoft support team and they do not have an ETA when this feature will be available. Please keep us posted on when this feature will be available.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. A policy to retire device linked to group membership

    A policy that would retire a user's device when the user is moved to a certain OU. For example when our user's leave their account automatically moves to an OU called "Expired".
    It would be good to retire their device automatically as soon as they move to "Expired"
    At present we have to do this manually.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. office 365 integration for full intune managment

    As a company we use Office 365 and Intune. (Hybrid environment) It would be great if the enrollment process for management was as simple as a user connecting to email with a device and the integration would then kick in to full intune to configure and install all policies and applications required. This would including nifty things like checking the office 365 licensing and installing all apps that the particular user is licensed for rather than waiting for an admin user to allocate applications. This would also be great if it could install cortana, onenote, onedrive etc. I want to…

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Notification when deleting group attached to a deployment

    It would be useful to have a notification before deleting a group that is attached to a deployment before you are able to delete it.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Remember Multi-Factor Authentication Per User or Group

    Allow administrators to configure remember Multi-Factor Authentication per user or group. Multiple clients of mine desire the ability to set this feature per user/group versus globally. Some users require more/less time than others.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. My Apps

    If you configure the "My Apps" application on iOS and you close and reopen the App; you need to reconfigure everything again

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Wipe multiple iOS, Android or Windows 10 devices simultaneously (with schedule option).

    Mark multiple devices and wipe simultaneously. Also have the possiblity to add a schedule.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. 2n1 devices should have policy that applies differently to each mode for that device

    With devices like the surface they are used in two modes.

    When being used in Tablet Mode, we may want to have a more mobile centric policy, such as, screen lock in 5 minutes or less.

    Whereas, in Computer / Desktop mode, we would want the timeout to be 30 minutes or less.

    The system needs to understand that these devices work in two modes and have a policy that applies differently to each mode for that device.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Add the possibility to run custom-actions before wiping/retiring an company owned device

    Please look in to adding the possibility to run custom-actions, maybe in the form of a powershell script, prior to wiping/resetting an company owned device. Making it possible to remove biossettings or other none-OS configuration/branding.

    This would be a great functionality to simplifying offboarding of old devices.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base