Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support enrolling a device under MDM for two different organizations

    Contractors/Service Provider employees generally have multiple companies they work for. One the company that pays their salary, another the company that they do the work for (clients). Intune currently do not allow enrolling a device with both the companies MDM. The user need to sign out of one MDM to enroll in another and this is a painful process. Should have a easier way to enroll the device under multiple MDM

    648 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    38 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Make it possible to Azure AD join/synchronize device (computer) objects to multiple Azure AD tenants from a single forest AD.

    Some companies hosts multiple sub-customers in a single forest Active Directory.
    Each sub-customers users and machine objects are organized in their own OUs.
    Present configuration would be one AAD Connect server per customer OU – which synchronize the user objects to their respective individual Azure Tenants and they license all their sub-customers AAD Users with M365 licenses.

    Some would like to enable Automatic AAD Join (Hybrid Azure AD Join) for their sub-customers Windows 10 Enterprise devices via GPO.
    They want to manage the sub-customers domain-joined devices with Intune, and use device-based conditional access.

    AAD Device Registration (DRS) requires a Service…

    189 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Include a prompt to the end-user during enrollment if it is a corporate/personal device

    Include a prompt to the end-user during enrollment if it is a corporate/personal device. So we later can deploy different certificates/wi-fi profiles, apps e.t.c to only corporate owned devices.
    Also make it possible to set this in the Company Portal

    160 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Azure AD Hybrid joined Windows 10 Devices should recognize a device owner through Intune.

    Azure AD Hybrid Joined Windows 10 Devices does not list a device owner for Windows 10. This could perhaps be made available through intune. If a device is Azure AD Joined and Intune joined, then the owner in Intune could be set as device owner in Azure AD? Great if this option was available or at least if admins got to turn it on by choice.

    125 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Provide Intune MDM integration with Cisco AMP cloud service

    Provide Intune MDM integration with Cisco AMP cloud service. Currently Cisco supports Meraki, AirWatch and MobileIron. Our company sank good support money into two solutions and lack of simple API integration between two cloud products is very troubling.

    62 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Enrolling WIndows 10 without Admin privs (No SCCM, Existing devices)

    I need an Enterprise solution. I understand that we need Local Admin account to enroll Windows 10 devices to Intune. But i have 800+ devices, Domain joined (AD and Hybrid Azure AD). We do not use SCCM.
    These are existing devices so i cant even use Autopilot. I need a solution or way or a feature in Intune which allows me to enroll Windows 10 devices without giving them the Administrator privileges. Please respond to this request ASAP

    60 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Provide the possibility during installation to give the Device a predefineded hostname

    In an Enterprise Devices do follow a Special naming convention. Currently it is not possible to rename the devices or give the devices a predefined Company hostname during installtion. It would be good if at least an Input field would be available to give the device a hostname. Or if the Admins could predefine a hostname during the enrollment process of the Hardware ID.

    Thank you in advance

    58 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Windows Autopilot Hardware ID "on the box"

    Windows Autopilot Hardware ID "on the box"

    This might not be a 100% Microsoft issue, but gathering the Hardware ID of a device to enroll it into Intune for Autopilot assingments is still a pain.

    The Problem is, that if you do not use just your one Standard Supplier, or the MIcrosoft online store gathering the Hardware ID is quite a pain.

    Example,
    there is a user somewhere in Kuala Lumpur... and Needs a new device, somehow they happen to have a Surface Laptop in a shop there. Now it would be easy to set this up as a Autopilot…

    53 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Proxy Support for AutoPilot

    Windows AutoPilot should prompt for proxy configuration if after establishing a connection there is still no internet access. This would allow enrolling AutoPilot devices on the corporate network and use hybrid join.

    I think this feature should be implemented really quick as there are a lot of enterprises waiting for that.

    46 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow Azure Hybrid AD Domain Join to use %SERIAL% or %RAND% variables for the Domain Join Intune Device Configuration Profile

    Currently, Azure AD Hybrid Domain Join (In Preview) does not allow the use of variables such as %SERIAL% or %RAND% but only allows the use of a simple prefix such as WIN10- for the computer name. This is an important feature that does currently exist for standard Azure Domain join but not Hybrid where customers need to ensure the device enrolls in Autopilot in Intune, but also in the local network AD domain.

    I wrote a blog post about this issue in more details here.

    https://www.moderndeployment.com/intune-hybrid-domain-join-error-80180005/

    Most customers use a standard Computer naming convention with the serial number OR asset…

    37 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Alert Email notification user unenroll his device

    Provide ability to create email alert when a user unenroll his device from Intune. This will allow admins to be notified and then contact the user to verify why happened.

    33 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Secure corporate enrollment with user enrollment later

    Add the ability to enroll a device with no user affinity and then at a later time allow the user to enroll the device for user affinity without the need to wipe or remove MDM. This would allow the ability to send a device to a user with the Intune agent on it and then allow the user to enroll with their username and password.

    32 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Assign Intune device category through Autopilot

    It would be great if we could assign Intune device category through Autopilot, without having to do it manually once the device is enrolled.

    31 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Please allow OPPO devices to be managed by Intune.

    Please allow OPPO devices to be managed by Intune.

    The below article tells that OPPO devices are not supported.
    https://docs.microsoft.com/en-us/intune-user-help/your-device-appears-encrypted-but-cp-says-otherwise-android

    Please consider these devices at the earliest.

    Thanks,.

    24 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Windows Enrollment restriction and Corporate Device Identifiers

    A lot of customers have O365 and their users like to use O365Pro Plus or configure their mail account at home on their personal devices. With that they are asked to add the Account as "Work or School Account", which registers their personal devices automatically in Azure AD. That is ok, but if the customer then buyes EMS licenses and assign them to user, all the devices are enrolled to Intune. Even more worse is, that with that you will no longer be able to target anything to users. Because if you for example would like to deploy Windows 10…

    22 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Application installation order during enrollment

    It would be great if there would be a possibility to decide the app install order during the enrolment or at least to define dependencies between applications. If we need .NET or adobe as a prerequisite for another app, currently there is no way, neither during enrillment nor after, to define this dependency and have the software installed in the right order.
    I know that Task sequence is a tabu word in Intune as you don't want to replicate the complexity of SCCM, but a light version of the TS for being able to execute some simple actions like "Install…

    20 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Automatically Assign AutoPilot Profile to New Devices

    It would be great if we could assign a default AutoPilot profile that is automatically assigned to all newly imported / registered devices.

    So that a device does not have to be manully managed in Intune ( profile assignment ) before the user starts it up.

    20 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  18. MDM mail profile management, no duplicate password prompt/remove app password requirement

    When a mobile device (specifically iPhones tested at this point) is enrolled into 365 MDM, you have the option to control the mail profile on the device.

    When this option is ticked, after enrolling the device through the company portal app, we would expect the mail profile to be complete and require no further interaction from the users.
    This however, is not the case, and the user is prompted for a password from the native mail app on the phone.

    When MFA is not enabled on the account, the standard account password works.
    When MFA is enabled on the account,…

    19 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →

    Hi, James, I see your comment. I sent you mail out of band using the UserVoice “contact subscribers” feature, but that doesn’t show up in the conversation on the public site. But if you’re having problems reading that mail, here’s what I said:

    Have you already opened a support case on this? If so, can you reply to this mail with the support case number so I can look at the case notes? If you haven’t opened a case, that’s what I’m going to suggest next, so they can look into what’s happening.

  19. Add already joined devices to autopilot for reimaging

    It would be nice to be able to add already joined devices into Autopilot program (like a writeback or sync) for re imaging purposes. This would make re-purposing hardware simple and easy for users and admins alike.

    I cannot gather the hardware ids through AzureAD (cloud only) with no WMI capabilities and limited AAD attributes being available.

    17 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →

    As of the release the week of Oct 1, 2018, you can apply Autopilot profiles to enrolled Win 10 devices that have not already been registered for Autopilot. In the Autopilot profile, choose the Convert all targeted devices to Autopilot option to automatically register non-Autopilot devices with the Autopilot deployment service. Allow 48 hours for the registration to be processed. When the device is unenrolled and reset, Autopilot will provision it.

    Does that get you what you want? If not, what’s missing?

  20. Support Web Enrollment into Intune

    Essentially, providers such as MobileIron support web enrolment which means they are able to hit an endpoint and enrol without having to create an AppleID for just downloading the company portal. Because of this when business’s want to move to Intune they have to create thousands of AppleID’s (which they haven’t needed to do before) just to download one app. This is both time consuming as the business may have over 20k users in their current MDM and pointless as it’s possible to onboard using a web URL.

    16 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6
  • Don't see your idea?

Feedback and Knowledge Base