Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Mobile data monitoring and reporting

    Nowadays with the amount of mobile data consumed by mobile devices only seems to increase, it would be great if Intune was able to monitor and report on mobile data usage across Mobile/Wifi and Roaming zones for each mobile device Intune manages. Windows and Android have this built into their OS's and iOS has a very good third party app you can use which works great.

    It would also be great if this was supported for both Intune only and SCCM hybrid environments, perhaps with a dashboard or at least some decent SSRS reporting.

    79 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. URL Filtering on PCs

    URL filtering on Mobile devices , Laptops, PCs

    since Intune has endpoint protection. we would like see a URL filtering function on the PCs /laptops and Mobile devices where Intune client should be able to block or allow websites defined in the policy.

    we are able block or allow website while the devices are on local network, but when it come to laptops, it is always moving with users so we don't have the control on it.

    currently url filter function is available in TrendMicro but it has limitations.

    Please consider this URL filter function for the future

    76 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Provide Intune MDM integration with Cisco AMP cloud service

    Provide Intune MDM integration with Cisco AMP cloud service. Currently Cisco supports Meraki, AirWatch and MobileIron. Our company sank good support money into two solutions and lack of simple API integration between two cloud products is very troubling.

    75 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow organizations to remove the full wipe option from non-company owned devices

    Allow an organization to define user-owned devices and remove the ability to perform full wipes on those devices.

    68 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Alert Email notification user unenroll his device

    Provide ability to create email alert when a user unenroll his device from Intune. This will allow admins to be notified and then contact the user to verify why happened.

    66 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Force Location services ON in Intune for mobile devices as applications require them to be on

    As some applications require location services always to be on can we please have a policy and or rule that enforces location services to be on all the time (forced)

    in our device compliant it states location services must be on and all the devices with location services that are off are showing as non com pliant.

    users currently have the ability to turn location services on and off and we want to be able to lock that down so location services are always on. Currently users have the ability to turn it off

    can this please be added within…

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Native support for Desktop Analytics for AAD Joined and Hybrid AAD Joined MDM Only managed devices

    There should be Native enrollment for Intune enrolled devices similar to ATP onboarding. Either a Device configuration profile, which includes CommercialID, AllowTelelmetry(with LimitEnhancedDiagnosticsDataWindowsAnalytics), and AllowDeviceNameInTelemetry. Or at least an article to onboard using a PowerShell script which can be deployed via Intune.

    Currently even if devices are manually configured with these settings they will not appear in Desktop Analytics without an SCCM collection association.

    This and similar analytics for Office 365 clients are big ticket missing items for the successful management of the Modern MDM managed devices, and the Windows/Office as a service platform.

    61 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Intune side loading of apps to Android for Work profile for development use

    With the device admin deprecation ensuring the adaptation of Android for Work the requirement to test applications within their Android for Work environment will become ever greater. Currently the only way to deploy an app to the AfW profile on Intune is by deploying via the Play Store. When developing an application it is not practical to do this for every time you wish to test your app. For testing and developing apps that make use of conditional access and security related features of Intune's protection it is important to have the ability to side load apps via USB to…

    60 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide the possibility during installation to give the Device a predefineded hostname

    In an Enterprise Devices do follow a Special naming convention. Currently it is not possible to rename the devices or give the devices a predefined Company hostname during installtion. It would be good if at least an Input field would be available to give the device a hostname. Or if the Admins could predefine a hostname during the enrollment process of the Hardware ID.

    Thank you in advance

    58 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Corporate vs Personal Device Policies / segregation

    Corporate vs Personal Device Policies / segregation - Today you can create policies for Corporate Owned and Personal Owned Devices. But if a user is part of both groups receiving Corporate Owned and Personal Owned Device policies, that user will receive most restrictive policies on his personal device as well. There needs to be a way to do this more effectively where a personal owned device should not be receiving corporate policies.

    56 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. There should be REST or SOAP API with Service Now Integration(intunes with Service Now Integration)

    Hi Team,

    As per me there should be REST or SOAP API in intunes with Service Now Integration.

    Now a days its the time of automation.

    Lot of things can be performed from service now itself but for that there should be predefined functions in intunes.

    Also in intunes there is on premise feature but it can be accomplished with SCCM only,as per me inbuilt feature should be there.

    Also Geo fencing feature is missing in intunes.

    Lot of things are there which I can suggest to microsoft.

    Thanks & Regards
    Sagar

    53 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Create a folder on the mobile device for company apps

    I would like to be able to create a folder, then install all my company managed apps into that folder. Keeping all company apps in the same location makes it easier for the user to find and easier for the help desk to support.

    53 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Easily Associate Users with Devices

    With Active Directory users syncing into Intune, allow the ability to manually associate users with the devices in the Intune interface. The 'Associated User' section should be a field where I can search for any user in my AD and associate them with the device. I'm aware of the other methods to associate users to devices.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. noncompliant apps reports in Azure Portal

    When creating rule for "Restricted Apps", the tooltip says

    Device compliance can be viewed in the Restricted Apps Compliance report

    However, there is no such report available in the Azure portal as confirmed by support. In the classic console, this report is called "Noncompliant Apps Reports".

    Without such a report, the rule to specify noncompliant apps is actually useless. Please consider adding the feature to the new Azure portal to complete the migration.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. The ability to block specific dangerous / malicious applications

    The ability to block specific dangerous / malicious applications for iOS and Android. (competition can do it)

    51 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Please allow OPPO devices to be managed by Intune.

    Please allow OPPO devices to be managed by Intune.

    The below article tells that OPPO devices are not supported.
    https://docs.microsoft.com/en-us/intune-user-help/your-device-appears-encrypted-but-cp-says-otherwise-android

    Please consider these devices at the earliest.

    Thanks,.

    49 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Enable use of BitLocker authentication requiring preboot keyboard input on slates

    Hello,
    Would be good to integrate in Endpoint Protection BitLocker setcion an option for "OSEnablePrebootInputProtectorsOnSlates" (Enable use of BitLocker authentication requiring preboot keyboard input on slates),
    Else if you use Tablet, then when the Windows Recovery Environment is not enabled and this policy is not enabled, you cannot turn on BitLocker on a device that uses the Windows touch keyboard.

    But to enable this "OSEnablePrebootInputProtectorsOnSlates" need push PowerShell script to devices, as BitLocker-CSP missing this too....

    Or option via BitLocker-CSP to control this setting.

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Completely separate the "Remove company data" and "Factory reset" buttons far enough apart to avoid accidental full device wipe.

    Completely separate the "Remove company data" and "Factory reset" buttons far enough apart to avoid accidental full device wipe. Currently these buttons are right next to one another and it is very easy to accidentally perform a full device wipe (factory reset) on a user's personal device - losing all data, versus the intent of just wiping the company data. Consider putting the "Factory reset" button in the "..." more section -- away from the primary choices.

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Force Application/Policy Updates

    I need to be able to force application and configuration updates on devices, and not wait for the timers. Even through a "Sync" button was put in place, it still doesn't seem to invoke any immediate update to the devices.

    Since all of our devices are supervised and we control apps via VPP, if for some reason they don't get an app update, I have to either set the app to uninstall for the group and then reinstall, or reset the device (and then wait for the device to reconfigure).

    Optimal outcomes:


    1. A "Install Now" button that will immediately go…

    46 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Forcing a device to become non-compliant based on one or more device configurations status

    For example, if I configured a device configuration policy to block USB, and from some reason this setting couldn't execute to the device or returned with an error, the device become noncompliant and therefore will get blocked via "Require device to be marked as compliant" conditional access rule.
    The idea is to have a check box next to each device configuration policy, which lets IT admin to enable or disable this policy as a mandatory requirement for the device to be compliant.

    Alternatively it could be a good idea to let IT admin configure a custom compliance condition, such as…

    43 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base