Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow to add "Contacts" and Calendar as exemption in the "Viewing corporate documents in unmanaged apps" setting under device restriction.

    Please allow us to exempt "Contacts" and "Calendar" in the "Viewing corporate documents in unmanaged apps" setting under device restriction policy. Contacts does not sync with Native Contact apps and we do not want to disable the "Viewing corporate documents in unmanaged apps" restriction. Lots of users rely on this feature. We are even considering allowing email via activesync, which we actually do not want to do.

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Make sure outlook is the only approved mail client

    Even though we have conditional access and MAM on all users, everyone can download Edison mail client and access their mail without enrollment.

    If we wish to restrict users from using Edison mail client, we have to disable EWS but then we lose access to other exchange online features, so we can´t do that.

    Microsoft says in their product commercials that you can restrict all other mail clients other that outlook, but I don´t see that is true since Edison mail client is able to connect. Try it yourself.

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. View password configuration on enrolled devices

    We would like the ability to query Intune for password settings of enrolled devices. Settings include:


    • simple password

    • password length

    • inactivity until screen locks

    Currently, you can query Intune for information like:
    - phone number
    - serial number
    - discovered apps

    Why not password settings?

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. NativeScript Intune support

    It would be great if Microsoft provides out of the box Intune support for apps created thru NativeScript framework.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Control and/or set default email, contacts, calendar accounts

    An issue I often see with mobile devices is that the user doesn't realize which calendar they've selected for creating an event. They think it is the corporate calendar, maybe don't use any other calendar on the mobile device. They open the calendar, create an event, send it to work associates. The people they send the event to accept, and are made aware of the meeting. But the sender has unknowingly created this event on another calendar (maybe the icloud calendar) So on their PC Outlook does not get the event. Everyone else makes it to the meeting but they…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. General Enrollment Bundle packs

    Hello,
    So far, I see there is multiple solutions available like:
    MDM, MAM, Conditional Access, WIP, App Protection Policy, Azure RMS, Legacy Protocols, Modern Authentication etc.
    Would be great if we could have option to select like “Bundle Pack” for Enrollment in Device Management with Security behind, at least in Documentation level.
    As example now to setup nice MDM, but with some protection, we need go Azure, Azure RMS, Intune, Intune App Protection and everywhere we need enable something and read&search per product the description of “how to enable” this service and integrate with each other, this takes a lot…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Hybrid Azure AD Joined Windows 10 devices do not have an owner. So, if you are looking for a device by owner and did not find it, search by

    this idea is nothing short of short-sighted and stupid. The WHOLE REASON behind an mdm is management of devices and users. If you can't look up a user and see what devices that user is assigned, that is a MASSIVE gap in feature-sets. HOW DOES THIS GO UNNOTICED? Better yet, how is this expected behavior and intentionally designed this way??? For more details, take a look at intune support request 14774920

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Description field to Intune devices

    You should be able to add a description to any device in Intune.

    Customers could use this description field to e.g. differentiate test/pilot devices, department or put some other meaningful information (e.g. asset tags) about the devices.

    And it would be great to have multiple fields!

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Policy Sets should support all object types

    The policy sets are a very cool feature but do not support some object types which would be really helpful:
    - PowerShell Scripts
    - Win32 and MSI Applications
    - Security Baselines

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Configure an application whitelist

    Provide the ability to configure an application whitelist and block the Apple App Store for a selected group of users. This has come up as a regulatory requirement for our organisation.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Dynamic device group for DEM

    Create a dynamic device group for the enrolled device using DEM account:-
    if you enroll different device platforms and os versions using device enrollment manager account up to 1000 device, you may need to group all those devices in one group so?
    Yeah you can create a group contains this account but I am talking about devices.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow only specific Android manufacturers for enrollment - block others

    Ability to allow only specific Android manufacturers devices for full enrollment.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. activation lock status

    Please display the activation lock status (i.e. find my iphone/ipad) in the Azure/Intune admin portal. This would aid our asset management team. Kind regards,
    t.e.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. End-user self wipe on Apple DEP device

    Please support self-wipe (by device user; not administrator) on iOS device that registered with Apple DEP service.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Microsoft Managed Home Screen providing ability to provide different themes or wallpaper for Android devices within Intune

    I would like the Microsoft Managed Home Screen (Google Play App) to provide the ability to manage themes and/or background wallpaper for our corporate Android devices within Intune.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add capability to customize device friendly name for MDM

    We would like to be able to set device friendly name within the Intune Portal to display a custom device entry name based on criteria we set. An example would be {userprincipalname} - {DeviceIMEI}

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Push mail profile with custoom properties to iOS and Android

    We want to deploy multiple mail profiles (native mail app) other than the users own. For example if user A is allowed to use the mailbox of user B we want to push the mailbox of user B to user A's device. Therefore we need custom user properties where these settings come from and the possibility to link these custom properties within device configuration policy.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add USBs control

    As Intune is MDM solution we should have the ability to manage USBs access in the corporate laptops. As mentioned this we should be able to only allow corporate USBs to run in corporate laptops.
    i found that it can be made by using OMA-URI with the help of windows defender APT.. but it's not convenience.
    Intune portal now have option to block or allow USBs which is good but Microsoft used to be always in the great level thus there should be option to block all USBs & only allow these USBs based on manufacture company or Serial number…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. dynamic group rules needs Management Name device attribute associated with it

    With the inclusion of the Management Name property, I believe a device attribute should be created that is associated with it allowing Dynamic Group Rules functionality. I would like to create dynamic group criteria based on the Management Name I associate with a device. For example: (device.managementName -contains "MyCustomManagementName")

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Malware protection status on Win10 MDM side (feature parity with intune client)

    As the Correct Way of Managing Windows 10 devices seems to be AAD + MDM it would be VERY useful to have at least some of the abilities the intune client has - the ability to see events related to malware.

    Viruses and Trojans are in my experience this is the most common issue with PCs... still.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base