Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Setup a notification message for intune to inform system admins about the expiry date of Apple APN certificate.

    Allowing the Apple iOS APN certificate to expire causes a lot of headache to system Admins, the users will have to enroll devices again. so there should be a notification option to remind admins to renew. and the notification (email, SMS, popup notice,...) should occur at least a month in advance.

    13 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
    • In advance e-mail notification of upcoming password expiration for MDM

      Intune MDM needs the ability to send e-mail notifications to users when a password/PIN is going to expire within X number of days. Admin should be able to set the number of days that e-mails should be sent; 14, 10, 5, etc. days. in ADVANCE of expiration.

      13 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
      • Hardware Inventory for Mobile Devices Enrolled by Microsoft Intune and Configuration Manager

        At the moment the inventory we get from our more than 900 WP8 Phones is very limited.
        See also; https://technet.microsoft.com/en-us/library/dn469411.aspx

        Please implement a feature that we can see the following:

        Wi-Fi MAC
        Subscriber Carrier
        Phone Number (for company phones not only the last 4 digits. we need the complete number)

        Phone Number2 (for DUAL SIM phones)
        International Mobile Equipment Identity or IMEI (IMEI)
        Free Storage Space
        Total Storage Space
        Serial Number
        Model (f.e. Lumia 925)
        Manufacturer (f.e. NOKIA)
        Current Operator Name
        Data Roaming Enabled

        13 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
        • Ping feature

          Insert a feature which allows you to "ping" devices from the Intune console, so you can verify if a device is reachable (e.g. for a sync).

          13 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
          • retain Intune cached MSI with out auto delete

            We have deployed single MSI to Windows 10 MDM enrolled computer using Intune

            We can see the cache location - C:\Windows\System32\Config\SystemProfile\AppData\Local\mdm

            How can we retain the cached MSI without getting deleted automatically ?

            Is there a way to configure the cache period ?

            12 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
            • Android Enterprise Device Wipe

              In a company owned device scenario we would like to manage the devices with the wipe function (they are company owned) and not require a user to log in to their google account to install applications that we deploy. Sadly as you know the Android for Work Enrollment option does not provide the option to wipe devices and the Android enrolment for personal use requires a google account to deploy software and while we could use a generic google account for this we do not want people to have access on the device to that account. Android in Kiosk Enrolment…

              12 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
              • Be able to do all the things that Casper, AirWatch, and other MDM, MAM solution does with Intune

                There are a lot of lack of function in Intune.

                1. Able to assign and manage a share device
                2. Hard to deploy applications
                3. Can't manage app configuration
                4. Can't build app store or is not existence
                5. Reporting is not robust
                6. Can't control all Android devices effectively without Knox
                7. Not all apps are "enlighten" apps.

                12 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                • how to track SIM changes or prevent SIM changes on mobile devices in Intune

                  how to track SIM changes or prevent SIM changes on mobile devices in Intune

                  This has become a crucial requirement because other MDM solutions have it right from the beginning.

                  Thanks.

                  Rizmi

                  12 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Lync Configuration Profile

                    It would be useful to have a configuration profile which can be used to automatically fill in users details to connect to Lync on Windows phones/iOS Devices

                    Something similar exists for email already where you can set the users username as the SAM address etc

                    But nothing for Lync

                    12 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                    • General Enrollment Bundle packs

                      Hello,
                      So far, I see there is multiple solutions available like:
                      MDM, MAM, Conditional Access, WIP, App Protection Policy, Azure RMS, Legacy Protocols, Modern Authentication etc.
                      Would be great if we could have option to select like “Bundle Pack” for Enrollment in Device Management with Security behind, at least in Documentation level.
                      As example now to setup nice MDM, but with some protection, we need go Azure, Azure RMS, Intune, Intune App Protection and everywhere we need enable something and read&search per product the description of “how to enable” this service and integrate with each other, this takes a lot…

                      12 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                      • Allow to add "Contacts" and Calendar as exemption in the "Viewing corporate documents in unmanaged apps" setting under device restriction.

                        Please allow us to exempt "Contacts" and "Calendar" in the "Viewing corporate documents in unmanaged apps" setting under device restriction policy. Contacts does not sync with Native Contact apps and we do not want to disable the "Viewing corporate documents in unmanaged apps" restriction. Lots of users rely on this feature. We are even considering allowing email via activesync, which we actually do not want to do.

                        12 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                        • Only Allowed Users based on AD Group, the ability to enroll in Intune

                          It would be nice to be able to only allow users who are in a specific AD group (ex. Mobile-Access), to have the ability to enroll in Intune. All other users would not be allowed to enroll in Intune.

                          11 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                          • PowerShell with Parameters

                            Would be awesome if you could add the ability to pass parameters down to PowerShell scripts.

                            Why?
                            We have multiple customers running the exact same script, where ONE variable has to be changed according to the customer. Currently we have to create and maintain one script per unique customer. If we could pass parameters through Intune it would make this a whole lot easier and dynamic.

                            11 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                            • Bring the Intune Management Extension to ALL Win10 MDM managed devices

                              Currently, the Intune Management Extension requires AzureAD joined; AzureAD registered is not sufficient. This limits the manageability of BYOD devices, taking Powershell script and Win32 app deployment off the table. Make it so that MDM-only devices can use this extension too!

                              10 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                              • Policy conflict handling mechanism

                                Currently if a user is part of two user-groups and a policy setting conflicts, the setting is not applied.
                                For example:- A user is a part of group 'All Company' which allows camera and is also a part of group 'project ABC' which restricts use of camera.
                                The more restrictive setting should be applied irrespective whether these two groups have parent-child relationship or not.

                                10 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Enable ability to deploy internal PKI Certificates to devices via Intune

                                  Currently the architecture to deploy certificates to devices requires you to have the infrastructure in-place to do external certificates requests to the internal NDES. Typically done with multiple WAP's. Other competing products do not require this. They manage the certificate request process for you using its connection to your internal network. Intune should be able to proxy this request of do the request on behalf of the device and send it to the device as part of normal synch process. This would eliminate unnecessary hardware which is the whole reason of using cloud services.

                                  10 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                  • View/capture logs on mobile devices

                                    When I run into an issue with an application on a device there is no easy way on that device to view logs without installing an app and that device coming back to me as an administrator to troubleshoot.
                                    It would be great if there was a way to enable logging on a mobile device and capture log data to Intune to see the cause of an app failure or crash.

                                    10 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Add Location field to Devices

                                      In the device management it would be great if a location field / column could be added which we could use to add in the office / location of the Smartphone Device.
                                      This will make it easier to find out how many devices are enrolled into Intune for a specific location.

                                      9 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Description field to Intune devices

                                        You should be able to add a description to any device in Intune.

                                        Customers could use this description field to e.g. differentiate test/pilot devices, department or put some other meaningful information (e.g. asset tags) about the devices.

                                        And it would be great to have multiple fields!

                                        9 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • The status after applying the StartLayout configuration policy by Windows10 is displayed as "Not applicable".

                                          Currently, the content of XML set by StartLayout configuration policy (* 1) is reflected immediately in Windows10 device. However, we would inform you the inappropriate behavior that the status (* 2) after applying the policy does not become "Succeeded" instead of continues to be displayed as "Not applicable" when you check from the management screen.

                                          * 1 Microsoft Intune> Device configuration> Profiles> Create profile> Device restrictions> Start
                                          * 2 Microsoft Intune> Device configuration> Profiles> Created StartLayout policy> monitor> Device status> [Deployment Status] in the item list

                                          In addition, we confirmed that the event is reproduced as well by applying sample…

                                          9 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base