Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow Admins to MANUALLY apply a profile -- or be able to manually push a group membership update so we don't wait 8+ HOURs for assignment

    I cannot express how utterly frustrating it is to import dozens of machines. Then as needed add them to the group they need for deployment and then sit and wait for a random and undetermined amount of time to see the status change from "Not Assigned" to "Updating" to "Assigned"

    If I add a device to a group, confirm it is in the group, then click sync, why on earth is it not assigning the profile? Why does it take me adding/removing/re-adding the device to the group assigned to the autopilot profile multiple times to get it to assign.

    I…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. AutoPilot Support for Windows 10 IoT Enterprise LTSC

    We're in a situation where we need to use Win 10 Enterprise Iot LTSC for a Kiosk deployment. We can't use self-deploying profiles because of a TPM device attestation bug in 1809 so we must use user-driven deployment, but we can't because of the lack of DEM support for AutoPilot. Rendering AutoPilot completely useless in our scenario.

    Support for Windows 10 IoT Enterprise LTSC is surely a must have!

    Allowing DEM support for Autopilot:
    https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/37411972-allowing-dem-support-for-autopilot?fbclid=IwAR3kRRCaCq7J9oqkduOW2yvA4Bku3avDPRDaRk0PsqmDySNf8Vk8r5DaEqk

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow using a FIDO2 key for Windows Autopilot provisioning process

    Currently it seems at the Welcome screen of a machine setup for Windows Autopilot we can't use a FIDO2 key to login, however the Authenticator passwordless feature works. Tested out the new fast ring Insider Build .ISO images and haven't seen the ability to initiate the process with a FIDO2 key, only the ability to use the key at the normal login screen. I hope for this to be added soon for further testing with FIDO2 keys, also when it is added allow the Autopilot wizard to prompt for which Azure AD account you want to provision the machine with…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  4. need the ability to set or assign AD attributes

    When deploying a Hybrid AD Domain Join computer, need the ability to set or assign AD attributes (managedby, description, etc). Most organizations assign a device to a user thus tying the computer device to the user.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disable Reboot for "Device Restrictions" Profile Deployment

    During an autopilot setup, if there is a "Device Restrictions" profile assigned, it will reboot the device to the login screen and the user must login again in order to complete the User ESP. Please make the reboot happen after the User ESP or preferably don't make the reboot happen at all. That way the user only has to sign in once.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Enrollment Status Page enabled for bulk token devices too

    Most of our devices (prior to adopting Autopilot) were added via bulk token. Devices registered with a bulk token that get redeployed are not getting the Enrollment Status Page even though they show up in the Autopilot devices list.

    If we wipe the device with a clean OS install, we get the ESP as expected. While this works for our existing devices, losing the ability to retain drivers and Intune registration is not a welcome feature. Incorporating the ESP to show for bulk tokened devices too would be beneficial.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Filter on Group Tag Windows Autopilot

    I use Group Tags for automatically assigning multiple Windows Autopilot Profiles on HW Hash Upload - Currently I can filter on Model and Purchase Order, but I think it would be useful to filter on Group Tag also

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support for variables in Domain Join Naming Conventions

    Allow for more sophisticated naming conventions for devices enrolling via Autopilot into Intune and on-premises Active Directory using Domain Join (preview). Current functionality only allows a prefix with the remaining space filled out with random characters. It would be more useful to allow for variables to give more distinct device names, i.e. %username%

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  9. prevent the autopilot device name template from setting the same name more then once

    These settings in the deployment profile will result in multiple machines having the same hostname
    Apply device name template
    Yes
    Enter a name
    W10-%RAND:4%

    For instance W10-0001 will be assigned to multiple laptops.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Intune and Autopilot time synchronization and NTP configuration

    Provide with a rollout configuration for Intune/Autopilot enrolled device to setup NTP/Time related synchronisations. this feature is currently missing whilst time is an important setting on an Operating system

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Make Intune available for Windows 10 Multi-User

    Let us manage Hybrid-Joined Windows Virtual Desktop Multi User hosts per Intune.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Office Pro Plus installation with "Show installation to user"

    After autopilot roll-out the Office Pro plus installation out of Intune does not wait for the installation to finish, but It also doesn't show status of installation to the user, so the user must wait too long before able to use the computer!

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  13. roaming/onedrive/cloud based browser favourites during user enrollment

    when users log into their Intune/Autopilot enrolled Windows PC, everything should 'just work', but one of the key things missing is their web browser favourites if they are moving from an old device to a new one.

    it's easy to train users to save all their company data to onedrive and sharepoint, but most of them wouldn't have the first clue about how to backup and restore their browser favourites so it's leaving quite a big hole in the migration process, at least for me.

    It's something that could probably be scripted as a folder redirection to onedrive, but it…

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow new user that has never logged on to set password during enrollment

    I would like to see the ability for on-prem user that is required to change the password at next logon to be able to do it from an autopilot enrolled device.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Make Order ID visible.

    Make OrderID visible through the Device Enrollment page, so we can modify this field easily, which we leverage for dynamic group population and deployment of new hybrid Autopilot devices.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  16. More options for local user account creation properties in provisioning packages

    When creating local user accounts with Image and Configuration Designer Provisioning packages there are no options to configure the accounts, such as password expiry.
    The kiosk provisioning package option allows for local user account creation however after 42 days the accounts expire. This is an issue where devices have auto-login enabled and arent managed by Active Directory.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Disable change account/local account creation in OOBE if device is Autopilot joined.

    If devices is Autopilot joined, there should not be an option to choose local account. In an EDU deployment several students manages to choose this option and the enrolment fails.

    Make OOBE more robust so autopilot dosent fail.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  18. Disable Windows Hello after Azure Join/Windows Enrollment

    We need the ability to disable Windows Hello (PIN/bio-login), and force users to log in with Password, on devices Windows already enrolled with Intune.
    If users login with PIN/Windows Hello, mapped SMB shares and printers always prompts for password.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Disable Hardware Encryption and force Software encryption During AutoPilot

    referring into MS Articlehttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180028 to force of use software Encryption it require to configure GPOs which is not applicable at the AutoPilot.

    we might be able to add the required registry values using Powershell, but the issue is that the machine is pulling the policies randomly, and there is a chance that the machine is getting the Bitlocker Policy before adding the required registry Values.

    it will be a good Idea if we can add this option into the Bitlocker configuration in order to force of using Software Encryption, or we can built dependencies for Configuration Policies in order…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  20. autopilot assign device to users in bulk

    It's very nine to be able to assign devices to Users in Autopilot. I would like assign devices to users in bulk (directly in the CSV autopilot import file och with Powershell.
    'Thanks

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base