Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Optional Personalisation for Wallpaper Setting

    The Device Restrictions > Personalisation CSP > Desktop background picture URL (Desktop only) is great idea to set a wallpaper, but it would be even better to have a tick box that made it optional, so that a new corporate device had a wallpaper set but still allowed the user to change wallpapers if they want.

    45 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  2. Read out the SIMcard number in the Intune portal.

    Read out the SIM card number(s) in the Intune portal for Windows 10 Phone.

    45 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  3. Azure Intune Personalization policy applicable for Pro devices

    Wallpaper is not applied on Windows 10 Pro clients and we hope this will be done without any customization via Azure Intune.

    38 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow remote wipe for Windows 10 laptops with BitLocker enabled (always fails)

    Remote wipe is a big reason I want to use Azure AD join and Intune to manage our small company's laptops. I've tested a few scenarios and it seems to fail whenever I have BitLocker enabled. Drive encryption and remote wipe are both must-have features to protect the information on our laptops in the event the laptop is lost or stolen.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  5. apply policies immediately on-enrollment

    We have identified a gap with Intune and policy application. For our use case, we have a device restriction policy that restricts access to the public store. We also have WSfB apps synced with our tenant and assigned as uninstall to remove all the bloatware. While the apps get uninstalled, the policy to restrict public store does not apply right away. As a result, the user can go into the public store and re-download the apps that were uninstalled.

    We should have the capability to select which policies we’d like to apply at on-enrollment to close this gap. I’m sure…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  6. Provide "Show/Hide/Not configured" options instead of "Block/Not configured"

    With Group Policy, you have always three options (Show/Hide/Not configured) to choose from to the settings. With Intune, you have mostly only two (Block/Not configured) options.

    This is problematic if you need to recover from a bad setting. If you first select Block for some setting, and later find out that you need to Allow the setting for some devices, you have to:
    1) figure what is OMA-URI for the setting
    2) create a custom setting
    3) deploy the custom setting to the devices.

    This is too complicated.

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  7. allow exceptions for windows defender smartscreen

    allow exceptions for windows defender smartscreen

    Currently certain wix functions are blocked by smartscreen

    Since there is no way to add exceptions, I had to disable, reducing my security

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. Autolaunch Win32 apps Full Screen in Kiosk Mode

    If you have configured Windows 10 Kiosk mode and your Kiosk Application is a Win32 application, the application will not launch full screen if added to the startup folder.

    The application is launched, but minimized, so human involvment is required to make it full screen.

    As most retail Kiosk devices only run a single application, and this is usually an in-house developed Win32 program, the ability for it to automatically launch full screen is a major requirement.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  9. HEIF & HEVC

    HEIF Image Extension & HEVC Video Extention Codec needs to view the iPhone live photos on the windows 10 machine. This is becoming a major issue as in an enterprise environment where companies use VMware horizon VDi machines like Geraldeve LLP where windows 10 is the main OS and iPhone is the main mobile device and users want to download there picture on the windows 10 machine but they cannot view the live photos. As 3rd Line Engineer, I have worked out and find the solution which I want to suggest to Microsoft to fix this issue as soon as…

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  10. Unable to clear running/queued remote tasks. Some have been pending for over two months in our portal as the PCs are unreachable.

    We have several workstations that have been offline for a while, some are remote and some could be in storage.

    There are still remote tasks attempting to run against them (running/queued) that I cannot clear. So when they do finally come back online some may have a pending restart or full malware scan that is not longer needed.

    30 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →

    Yup, you are right. And the good news is, we have a bug fix coming. The bad news is, the bug fix will prevent this from happening after we roll it out, but it won’t undo the state you’re already in. Sorry about that!

    I’m hearing that the engineers aren’t able to fix this on the back end at this time. I’ve pinged the product team again on this to see if there’s anything we can work out to fix anything that was there prior to the fix.

  11. Allow ability to Disable Bitlocker that is currently active on Azure Joined/Intune devices

    Allow ability to Disable Bitlocker that is currently active on Azure Joined/Intune devices through Intune policy

    30 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  12. Want every File to be encrypted when any one creates in EMS enrolled system

    Not an Idea..! but Instead a Business Requirement: Want every File to be encrypted when any one creates in EMS enrolled system.

    It is happening with Office Version 16.0.6965.2117 Deferred Channel (MSO (16.0.6925.1049).

    Later it has been removed. Please vote for this requirement as whole of our business is based on this feature.

    29 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  13. Improve Intune MDM deployment configuration parameters for Windows

    In our case customers have mainly Windows 10 platform.
    Based on our investigations there is no configuration parameters currently available in Azure Intune Portal to
    set retry interval or manage forced reinstallation. We found out that Intune sets some registry values regarding these though. For example "EnforcementRetryCount" and "EnforcementRetryInterval".

    Any plans/road map that Intune users are able to configure these?

    29 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  14. Windows 10 IoT enterprise support in InTune.

    It would be great to have the ability to manage windows 10 IoT builds with InTune as an MDM solution

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  15. End user experience after device is been deleted

    When device is deleted or retired from Intune, the end user cannot login there anymore which is excelent feature but it should be more informative. Current text on Windows 10 login screen still is:
    "The Password is incorrect. Try again."

    ..then user calls Service Desk and everyone is confused...

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  16. Intune Device Lock Policy

    The "Password" section of the Device Configuration Policy 'Windows 10 Device Policy' If the'password' is set to 'not configured' and 'Maximum minutes of inactivity until screen locks' set then the policy still applies.

    In order to fix this I had to toggle Required for the Password Field then I could access the Field "Maximum minutes of inactivity" and set it to Not configured.

    This seems like a bug. If the Policy is set to Not configured then it shouldn't configure anything but it was clearly configuring the maximum inactivity timeout still.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  17. Report on Windows SKU in Intune

    Make it possible to inventory Windows SKU - so we can see if Windows is Pro/Enterprise - Pro Education/Education
    So it is possible to report on Windows SKU and be able to take action if Windows subscription activation is failing.
    Be able to create dynamic AAD groups so it is possible to target Intune profiles that only applies to Enterprise SKU

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  18. Enable enrollment status page for device groups

    Please add feature to add ESP not only for users but for groups of devices as well.
    This is needed when creating different client types and dont want to require push on all application on all types
    i.e. pushing specific applications to kiosks and other to user enrolled devices (where we often choose too add a very small amount of apps during ESP)

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add additional language in Windows 10 using Intune

    I'd love to see the feature where I can add an additional language keyboard for all the Windows computers that are joined to Azure AD in Intune.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  20. Integrate Duo Two-factor into enrollment status page for user sign-in on Windows

    Allow for Duo-Two factor authentication at the enrollment status page during initial user sign-in. Currently the two-factor login page is hidden by the enrollment status page. The current workaround is to allow users to get to desktop during the account setup portion of enrollment.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base