Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. allow admins to add notes to inventory

    We have tons of valuable devices and lots of "events" occur with these units.

    Some are stolen, lost, broken, loaners, unknown... all kinds of etc.

    If we could group these items and use Intune to add minor notes....

    Intune would also become a valuable inventory tool.

    8 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

      @Jamie, thanks for the heads up, I merged the requests. I personally think this request is different than the “management name” field, because I would assume a larger field for more info. But if you and @Tony feel like it fulfills what you were asking for, I can call it complete

    • Malware protection status on Win10 MDM side (feature parity with intune client)

      As the Correct Way of Managing Windows 10 devices seems to be AAD + MDM it would be VERY useful to have at least some of the abilities the intune client has - the ability to see events related to malware.

      Viruses and Trojans are in my experience this is the most common issue with PCs... still.

      8 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
      • Microsoft Intune is not able to remote wipe and reset password for managed mobile devices in China

        Microsoft Intune is not able to remote wipe and reset password for managed mobile devices in China. This is confirmed by Microsoft Support and escalation team. As per replied "This is due to Chinese government policies, this function is not fully functional in mainland China. Therefore the service cannot be guaranteed to work with all features".

        Unfortunately if a Enterprise Mobile Device Management solution cannot even effectively and reliably remote wipe a Corporate device when it is lost, which is instrumental and basic for managing Corporate mobile devices, it cannot be branded as a Enterprise MDM solution. We will now…

        8 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
        • activation lock status

          Please display the activation lock status (i.e. find my iphone/ipad) in the Azure/Intune admin portal. This would aid our asset management team. Kind regards,
          t.e.

          8 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
          • Update AD msds-isManaged flag or delete on premise device when device is remote wiped

            Enterprise customers leveraging AD Connect with Device Write back and ADFS for Access Control cannot block authentication from devices removed from Intune because it does not update Azure AD when the device is Remote Wiped.

            When a device is wiped in the Intune console, Azure AD should receive an update indicating that the device is no longer managed, this should sync to on-premise. Alternatively, the device object should be removed form Azure AD deleting the object from the On-Premise AD as well.

            This way, a compromised device cannot successfully authenticate to ADFS even though the admin has remote/wiped the device.

            7 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
            • More Compliance policy options

              To compare with other Enterprise Mobility Management product, there isn't enough option and restriction of compliance policy. For example, if a device doesn't meet the compliance policy requirement like passcode, the user can still download application from company portal and download email from Exchange. It's not flexible to control devices. If available, please add additional option for compliance policy to disable email profile, block application or enterprise wipe the device on compliance policy.

              7 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
              • allow device pairing with iTunes

                There is no option to allow device pairing with iTunes. This is a problem whe you have more that 500 iphone managed with apple DEP program and some of these device need to use Itunes...

                7 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                • CRM Online Compliance Policies

                  I'd like to see a CRM Compliance policy like there is with SharePoint and Exchange.

                  7 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Enable full management of the Windows Firewall

                    Enable full management if outgoing as well as incoming firewall rules in Intune Device Configuration Profiles.
                    Enabling the management of outgoing firewall rules, and providing the ability add individual exceptions would help prevent data leakage in corporate environments.

                    7 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                    • Supress certain hardware ID's for Bitlocker to Go Pop-Ups

                      We need to suppress certain hardware ID's to prevent Bitlocker To Go from popping up.

                      7 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                      • Create API to remote wipe Devices

                        Whenever someone leaves the company we need to develop one central application to remove access and remote wipe their device without going to the Intune portal

                        7 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                        • Control and/or set default email, contacts, calendar accounts

                          An issue I often see with mobile devices is that the user doesn't realize which calendar they've selected for creating an event. They think it is the corporate calendar, maybe don't use any other calendar on the mobile device. They open the calendar, create an event, send it to work associates. The people they send the event to accept, and are made aware of the meeting. But the sender has unknowingly created this event on another calendar (maybe the icloud calendar) So on their PC Outlook does not get the event. Everyone else makes it to the meeting but they…

                          7 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                          • Microsoft Managed Home Screen providing ability to provide different themes or wallpaper for Android devices within Intune

                            I would like the Microsoft Managed Home Screen (Google Play App) to provide the ability to manage themes and/or background wallpaper for our corporate Android devices within Intune.

                            7 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                            • Add OneDrive for Business section within Device restiction Policy

                              There is slowly becoming quite a few configs for OneDrive for Business (Auto Config, Known folders, Auto team site sync etc) that everyone will want to configure via Intune. Some of this can currently this can be done by PowerShell (applying registry), but It feels like these options now need to be their own section with the Device restriction policy for Windows 10.

                              7 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                              • reset password in windows logon computer registerd in hybrid azure ad

                                There is a great functionality in the resent release version of Windows 10 (1709) that allows in a computer registered in Azure AD Join change the password from the Windows Logon Screen, anyone knows what kind of restriction presents to doesn't allow it in a computer register as Hybrid Azure AD, When we can have this option available, waiting for your comments,

                                Recards
                                Camilo Narvaez

                                6 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Mobile Threat-Detection Remediation

                                  We are a Microsoft Partner here in the U.K. With a strong focus on EMS. Over the last few months Microsoft have introduced several new partnerships with Threat Detection companies to identify threats on mobile devices as this was an area that Intune was lacking.

                                  A new feature introduced by yourselves was to use Threat Severity levels provided by the likes of Lookout, Skycure to mark devices as non compliant (blocking them from the likes of email, sharepoint etc).

                                  Whilst this is great, this would seem only a half way house. If in the event I have malware on my…

                                  6 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                  • InTune NDES Connector - Support Group Managed Service Accounts (gMSA)

                                    Please add support for gMSA's for the Intune NDES connector. During setup, it appears a typical "domain user service account" must be used. Attempting to use a gMSA seems to be unsupported. The use of a gMSA would be a nice option for those customers who are taking advantage of this ability on premise. The gMSA improves security and reduces administrative complexity as it pertains to managing service account credentials. I have also submitted a DCR via the support portal. Thanks in advance for the consideration.

                                    6 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Ability for Intune admin to see the last run time as well as invoke a retry for all scheduled automation within Intune

                                      Currently there is a sync button that allows for an administrator to manually invoke a synchronization from the Apple DEP portal into Intune. However there are other automations that occur in Intune that ad admin does not have visibility to.

                                      I think that most actions which occur in the background on a scheduled basis that should have their run time displayed to the admins, and also should have a button to re-run the automation on an adhoc basis.

                                      6 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Manage installation of Microsoft Store apps

                                        When setting up a new Windows 10 device, a lot of unwanted apps are installed from the Microsoft Store like Code Writer, Sway Mobile, Get Office etc. Please give us a good solution to prevent installing those apps we don`t want.

                                        6 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Ability to run report on version of company portal app

                                          Considering there are versions of the company portal app out there that won't even allow the user to log in before it get updated

                                          Considering when reaching out for support for Intune one of the main questions they ask when troubleshooting is the version of the company portal app on the device

                                          For the above reasons and more it would be nice to be able to run a report or somehow determine from the admin console what version of the company portal app your devices are running.

                                          6 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base