Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allowing DEM support for Autopilot

    Currently you are unable to use the DEM account with Autopilot devices. Annoyingly as a IT admin you don't want your own account as the user who enrolled the device into Intune. Currently the only way to enroll the device as a end user is to know their login credentials.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow Azure Hybrid AD Domain Join to use %SERIAL% or %RAND% variables for the Domain Join Intune Device Configuration Profile

    Currently, Azure AD Hybrid Domain Join (In Preview) does not allow the use of variables such as %SERIAL% or %RAND% but only allows the use of a simple prefix such as WIN10- for the computer name. This is an important feature that does currently exist for standard Azure Domain join but not Hybrid where customers need to ensure the device enrolls in Autopilot in Intune, but also in the local network AD domain.

    I wrote a blog post about this issue in more details here.

    https://www.moderndeployment.com/intune-hybrid-domain-join-error-80180005/

    Most customers use a standard Computer naming convention with the serial number OR asset…

    252 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Purchase Order field in AutoPilot can only be filled in by Resellers only

    Purchase Order field in AutoPilot can only be filled in by Resellers only. It would be great if admins can fill-in the Purchase Order fields as well.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Register Devices From AAD Device List

    We have a lot of Windows 10 devices and we can see them in Azure AD.

    And we just started using Intune. Since the Auto-enroll was not on, those devices need to go to "Access work or school" once again and input their username and password.

    This is affecting our user's experience. Hopefully one day in the future we can directly enroll devices from AAD's device list.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  5. change device owner without reset/re-enroll

    once you have enrolled a device with autopilot for a user and then want to hand out that device to a new user you need to reset or re-enroll it apparently or the new user will not be the device owner (although i don't see any other issues for the new user)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Hybrid AD join Computer naming standard

    According t odocs the naming standard on hybrid joined computers:
    'Computers are assigned 15 characters long name. Specify a prefix, rest of 15 characters will be random'
    https://docs.microsoft.com/en-us/intune/windows-autopilot-hybrid

    Please make it possible to configure your own naming standard, as you can to if it is on Azure Ad join devices over autopilot

    76 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Enrollment Status Page enabled for bulk token devices too

    Most of our devices (prior to adopting Autopilot) were added via bulk token. Devices registered with a bulk token that get redeployed are not getting the Enrollment Status Page even though they show up in the Autopilot devices list.

    If we wipe the device with a clean OS install, we get the ESP as expected. While this works for our existing devices, losing the ability to retain drivers and Intune registration is not a welcome feature. Incorporating the ESP to show for bulk tokened devices too would be beneficial.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Proxy Support for AutoPilot

    Windows AutoPilot should prompt for proxy configuration if after establishing a connection there is still no internet access. This would allow enrolling AutoPilot devices on the corporate network and use hybrid join.

    I think this feature should be implemented really quick as there are a lot of enterprises waiting for that.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Deploy BitLocker encryption without user intervention also for Azur AD synced accounts

    I have the need for Zero Touch deployment of Windows 10 on Laptops with AutoPilot. This also includes to enable Bitlocker remotely without user intervention by using Intune policies. Currently it is not possible to do this with synced user accounts only with Azure AD accounts.
    Please extend this functionality also to synced user accounts.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Reset this PC should revert back to Enrollment Status Page if it is enabled

    If a device runs through Autopilot using the Enrollment Status Page, this ensures that the Intune Management Extension and Required apps are installed before the user logs in.

    However, if the same device runs through Reset this PC the user experience is different. The device lands at the login page and lets the user log in without the Enrollment Status Page. This can be confusing for the user while they wait for the Intune Management Extension and Required apps to install in the background.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Azure hybrid domain join with remote user login

    I would like to be able to deploy new computers to remote users with Azure hybrid domain join. Currently this isn't possible because after the hybrid domain join process runs, the user can't login to the computer because the (local) domain is unavailable. If you could cache the 1st time login, it would circumvent this issue.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Support VPN Connectivity for Autopilot Hybrid Enrollment

    From the requirements here:
    https://docs.microsoft.com/en-us/intune/windows-autopilot-hybrid
    "Have access to your Active Directory (VPN connection not supported)."

    This requirement breaks the concept of having a device that could be shipped anywhere directly to a user. Large enterprises still have, and will continue to have applications that rely on domain connectivity for authentication. Many of these enterprises build their devices onsite and ship to users that never see the corporate network. Autopilot could never work in this scenario without users disclosing their credentials.

    The feature we would like is a secure means of establishing an AAO VPN tunnel during enrollment that would allow…

    221 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  13. Synced from Active Directory Accounts cannot show Full Name in Windows Pilot (Azure AD Joined)

    Only In Cloud Accounts are shown Full Name in Windows AutoPilot at the end of the deployment via Azure AD Joined. Can it be made possible that Synced from Active Directory Accounts also shown Full Name after Deployment and not only Company name?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add validatio for null Azure Intune Device Enrollment > Device Categories

    Currently, within Azure Intune, you can add in null Device Category values programatically via the Graph API. You cannot however, add these Device Category values manually via the Portal, as it validates.

    If you add null Device Categories into Azure Intune, then the Intune Company App on Windows 10 crashes when the user launches the app and it attempts to log in, due to the null value Device Category present. This needs to be fixed and validation added so that if the null value is introduced via Graph, it will stop the value being added (as it currently validates using…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support for variables in Domain Join Naming Conventions

    Allow for more sophisticated naming conventions for devices enrolling via Autopilot into Intune and on-premises Active Directory using Domain Join (preview). Current functionality only allows a prefix with the remaining space filled out with random characters. It would be more useful to allow for variables to give more distinct device names, i.e. %username%

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  16. AutoPilot OOBE Enrollment separate language and region setting

    Please allow separate language settings for Windows AutoPilot OOBE.
    One for display language,
    and one for region.

    We have a multilingual company. Where we set OS-display-language to English US and Region settings to Dutch.

    27 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow editing of AutoPilot entries (OrderID)

    Allow editing of the OrderID field in an AutoPilot entry.
    As this is the given method of dynamically assigning a Deployment Profile it would be useful to be able to edit this in the event that you need to change Deployment Profile for the device at any point in its life without having to delete and reimport the HWHash.

    176 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  18. don't give users the options to skip org sign in and register with local admin

    intune/Autopilot seem to do a good job of locking down a computer and keeping the user from creating local admin accounts. But this only happens after the user sign in with the organization account. but before the sign in process, the user is given an option to skip the organization sign in and register the device with a local admin account. i understand an admin needing this backdoor but it shouldnt be available to regular users.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Make Order ID visible.

    Make OrderID visible through the Device Enrollment page, so we can modify this field easily, which we leverage for dynamic group population and deployment of new hybrid Autopilot devices.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  20. autopilot assign device to users in bulk

    It's very nine to be able to assign devices to Users in Autopilot. I would like assign devices to users in bulk (directly in the CSV autopilot import file och with Powershell.
    'Thanks

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base