Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Endpoint Protection Scan Results in Admin Console

    Integrate a central overview of the last Endpoint Protection Scan Results like the Admin Console of every other EndPoint Protection product.
    In my opinion instead of only showing which virus/worm/malware type was found on a System, you should see the path to the file or blocked Connection. As Administrator i have to ask the user to check the history of the Intune endpoint protection Client to get the Information about which file and then the user will ask me if he has to do something more. it would be more convenient to have the Information and tell the user what…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add ability to reset passcode of Azure AD joined Windows Phones through InTune

    Currently phones that are Azure joined yet still managed by Intune cannot have their passcodes reset.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  3. Auto Enrollment based on Device and not user

    There needs to be a way to have your on prem AD joined Windows 10 systems be able to be auto enrolled to Azure AD / Intune with out having to login to every single system. Maybe group policy? Maybe some power shell scripts? Because right now Intune is useless to my organization if I have to login to every single 2000 systems to configure Intune.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  4. Automate "access work or school account” join

    It would be neat to have a way, PowerShell or GPO, to join devices so they “access work or school account” as this would ease the transition for many companies from on-prem to non-prem.in other words, find a way to join the devices to the cloud

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  5. Windows 10 Intune Applications - Close applications prior to install

    SCCM has the capability to evaluate running executables and close them before installing software. Can we please have this same functionality in Intune? Modifying O365 for example to add Project or Visio to a device would prove difficult otherwise, as it relies on the user to close all Office applications or the installation fails. Users in Intune would only see that the installation failed with no prompting.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  6. Set a Proxy Server/PAC-file via Configuration Policy for Windows 10 Desktop

    A few clients I work with would like to be able to set and maintain the Proxy Server for IE and Edge. Currently, they need to create an MSI which sets 2 registry keys to use a specific PAC-file.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  7. make Windows 10 Pro manageability same as Windows 10 Enterprise

    Please make Windows 10 Pro feature wise same as Windows 10 Enterprise at least from the Intune point view - Policy. I am trying to control some policies from Intune and I came to the road block such as Personalisation - Custom picture for the Lock Screen.
    Shocking to say the least.
    I cannot emphasise how much negative feedback is when after all investement (Intune Licences, whole new devices and windows licences plus office licences) we still have "crippled" product.

    Please resolved this issue.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. OMAURI Get commands for reporting against MDM Windows device family

    I want to be able to use Intune's OMAURI command structure leveraging Reporting.

    Specifically you should be able to use Intune URIs to report against a device's configurations without making any changes.

    I think Intune should have all CSP mapping per device type loaded into the system for admins to use.. because all URIs for different devices are infact different.

    An example, if I want to query this:

    DeviceStatus/TPM

    This was added in Windows, version 1607.

    'DeviceStatus' is is the Node for the TPM query.

    The Supported operation is Get.

    If I read this right, the use of GET would…

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide Support for VDI Desktops

    Please add support for VDI as it would be good to be able to do hybrid of group policies and intune policies to manage persistent desktop settings on prem or in azure

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  10. Extend app distribution for Windows devices

    Currently Windows devices most be enrolled for distributing apps.
    For IOS and Android you can already distribute apps for unmanaged devices and implement LOB app security with Intune Wrapping. Currently it's not possible to distribute apps to unmanaged Windows devices. Our developers asks this functionality a lot.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  11. Pull Powershell scripts from Git

    I think it would be nice to have the ability to select PS Scripts for configuration policies from a Git Repo Branch (such as Azure Devops and Github), so that once a pull request is completed, the scripts in the portal update, similar to the configuration within Azure Automation.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  12. qos

    QoS Marking via Intune for Windows 10.

    The NetworkQoSPolicy as featured on https://docs.microsoft.com/en-us/windows/client-management/mdm/networkqospolicy-csp is only applicable to Surface Hubs.

    There needs to be a means of managing QoS markings for Windows devices from Intune.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  13. WebSignIn as default credential provider

    Since a few insider builds, the is a new logon provider: WebSignIn.

    You can enable this provider by the following policies:
    ./Device/Vendor/MSFT/Policy/Config/Authentication/EnableWebSignIn
    ./Device/Vendor/MSFT/Policy/Config/Authentication/PreferredAadTenantDomainName

    Is it possible to make this credential provider default?
    In Group Policies this was possible, but it seems there is no Intune Policy in place.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  14. Send custom notifications to Desktops

    This article describes sending remote notifications to iOS and Android devices. How about Windows and macOS too?

    https://docs.microsoft.com/en-us/mem/intune/remote-actions/custom-notifications

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  15. Turn Windows features on or off

    I want the option to turn Windows features on or off, and assign it to users/devices, without using PowerShell script.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  16. Default Restart Times & Notifications

    Currently, if you a apply a device policy that requires a computer restart (for e.g. a firewall policy) a shutdown message appears giving the user only 10 minutes.

    A feature to enable the IT admin to control the notification time would be beneficial and avoid disruption to the end user.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  17. Login script

    We miss the functionality of login scripts to minimize the gap between classic Management and modern Management.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  18. Office 365 device based activation for K-12 customers

    Add the ability to use Office 365 device based activation for k-12 customers when deploying Office 365 ProPlus through Intune.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  19. It should be possible to search by Recovery ID in Intune to provide the Recovery Key for the end-user

    With MBAM, you could search for a Recovery Key with a Key ID. With Intune, it is necessary to know the computer name or user name of the enrolled user to obtain the Recovery Key, which may not be possible to obtain since they aren't displayed on the BitLocker Recovery screen. It should be possible to search by Recovery ID in Intune to provide the Recovery Key for the end-user or Windows should display the computer name on the BitLocker Recovery screen.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  20. Exchange Active Sync displayed as unknown operating systems

    Windows devices which are managed by Exchange Active Sync or Intune and Exchange Active Sync are displayed as unknown operating system.

    Please report the correct os.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base