Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Custom message when locking devices

    displaying a custom message on screen when a device is locked due to it being lost/stolen. This would apply to all devices similar to how remote lock works on iCloud, FindMyPhone for android and Samsung devices
    i.e. "This device belongs to X company, please call +01 xxxx-*** to return device"

    9 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add Location field to Devices

    In the device management it would be great if a location field / column could be added which we could use to add in the office / location of the Smartphone Device.
    This will make it easier to find out how many devices are enrolled into Intune for a specific location.

    9 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Description field to Intune devices

    You should be able to add a description to any device in Intune.

    Customers could use this description field to e.g. differentiate test/pilot devices, department or put some other meaningful information (e.g. asset tags) about the devices.

    And it would be great to have multiple fields!

    9 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. The status after applying the StartLayout configuration policy by Windows10 is displayed as "Not applicable".

    Currently, the content of XML set by StartLayout configuration policy (* 1) is reflected immediately in Windows10 device. However, we would inform you the inappropriate behavior that the status (* 2) after applying the policy does not become "Succeeded" instead of continues to be displayed as "Not applicable" when you check from the management screen.

    * 1 Microsoft Intune> Device configuration> Profiles> Create profile> Device restrictions> Start
    * 2 Microsoft Intune> Device configuration> Profiles> Created StartLayout policy> monitor> Device status> [Deployment Status] in the item list

    In addition, we confirmed that the event is reproduced as well by applying sample…

    9 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    Do you think this is a bug? If so, the best thing to do is open a support case so they can check the back end.

    “Break-fix” support, and big support, is included with subscriptions to Microsoft Intune so opening a support incident won’t incur additional charges. For more information about opening a support ticket, see http://aka.ms/intunesupport.

  5. allow admins to add notes to inventory

    We have tons of valuable devices and lots of "events" occur with these units.

    Some are stolen, lost, broken, loaners, unknown... all kinds of etc.

    If we could group these items and use Intune to add minor notes....

    Intune would also become a valuable inventory tool.

    8 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    @Jamie, thanks for the heads up, I merged the requests. I personally think this request is different than the “management name” field, because I would assume a larger field for more info. But if you and @Tony feel like it fulfills what you were asking for, I can call it complete

  6. Restrict enrollment based on Device Manufacturer

    We know that there is an option to restrict the device based on the platform . But we need an option where the devices can be restricted based on the device manufacturer. There are cases in which particular manufacturer device types affected by malware. In that case we need to restrict those device from Intune until Malware issues are resolved.

    8 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Malware protection status on Win10 MDM side (feature parity with intune client)

    As the Correct Way of Managing Windows 10 devices seems to be AAD + MDM it would be VERY useful to have at least some of the abilities the intune client has - the ability to see events related to malware.

    Viruses and Trojans are in my experience this is the most common issue with PCs... still.

    8 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. activation lock status

    Please display the activation lock status (i.e. find my iphone/ipad) in the Azure/Intune admin portal. This would aid our asset management team. Kind regards,
    t.e.

    8 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Update AD msds-isManaged flag or delete on premise device when device is remote wiped

    Enterprise customers leveraging AD Connect with Device Write back and ADFS for Access Control cannot block authentication from devices removed from Intune because it does not update Azure AD when the device is Remote Wiped.

    When a device is wiped in the Intune console, Azure AD should receive an update indicating that the device is no longer managed, this should sync to on-premise. Alternatively, the device object should be removed form Azure AD deleting the object from the On-Premise AD as well.

    This way, a compromised device cannot successfully authenticate to ADFS even though the admin has remote/wiped the device.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. InTune NDES Connector - Support Group Managed Service Accounts (gMSA)

    Please add support for gMSA's for the Intune NDES connector. During setup, it appears a typical "domain user service account" must be used. Attempting to use a gMSA seems to be unsupported. The use of a gMSA would be a nice option for those customers who are taking advantage of this ability on premise. The gMSA improves security and reduces administrative complexity as it pertains to managing service account credentials. I have also submitted a DCR via the support portal. Thanks in advance for the consideration.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. allow device pairing with iTunes

    There is no option to allow device pairing with iTunes. This is a problem whe you have more that 500 iphone managed with apple DEP program and some of these device need to use Itunes...

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. CRM Online Compliance Policies

    I'd like to see a CRM Compliance policy like there is with SharePoint and Exchange.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Set DefaultApps only once with MDM Intune CSP Policy

    When setting default apps with the Policy CSP - ApplicationDefault, it's permanent.
    https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-applicationdefaults

    If a user changes default PDF reader, it will be set for that session. If user gets logged out, or reboots the machine, the default from this CSP Policy will be applied again.

    I want to be able to set default apps just once, and later let the users configure their devices as they please. Freedom of choice etc.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Device Compliance policy support Windows Edition

    Please support WIndows edition with compliance policy. Because there is no way to eliminate the Home Edition now. I would like to have access control by dividing Home, Pro, Enterprise

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Provide a way to audit EDP logs for BYOD Devices

    Provide a method to audit changes in file status from Work to Personal on MDM joined devices when Allow Override is enabled.

    The solution will be to advise the users that logging will be enabled and that only the EDP logs related to WIP management will be captured for audit purposes. We will then push syslog-NG provided by a company called Balabit. This will use a TLS certificate and an external service to receive the logs. Reports will be generated and logging events will be captured for devices.

    It would be nice if Microsoft could automate a similar process moving…

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Supress certain hardware ID's for Bitlocker to Go Pop-Ups

    We need to suppress certain hardware ID's to prevent Bitlocker To Go from popping up.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Create API to remote wipe Devices

    Whenever someone leaves the company we need to develop one central application to remove access and remote wipe their device without going to the Intune portal

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Are the Samsung Gear 3 (WATCHES) able to be Managed by INTUNE?

    Working with one of Our clients we need to have a group of Watches that can be assigned to a specific user but managed by an MDM to control assignment, set profiles and apps and report analytics.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Control and/or set default email, contacts, calendar accounts

    An issue I often see with mobile devices is that the user doesn't realize which calendar they've selected for creating an event. They think it is the corporate calendar, maybe don't use any other calendar on the mobile device. They open the calendar, create an event, send it to work associates. The people they send the event to accept, and are made aware of the meeting. But the sender has unknowingly created this event on another calendar (maybe the icloud calendar) So on their PC Outlook does not get the event. Everyone else makes it to the meeting but they…

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Microsoft Managed Home Screen providing ability to provide different themes or wallpaper for Android devices within Intune

    I would like the Microsoft Managed Home Screen (Google Play App) to provide the ability to manage themes and/or background wallpaper for our corporate Android devices within Intune.

    7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base