Microsoft

Microsoft Intune Feedback

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please do not send any novel or patentable ideas, copyrighted materials, samples or demos which you do not want to grant a license to Microsoft. See the “User Voice Terms of Service” link below for more information.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Deploy unique computer certificates using Intune/SCEP/NDES

    We want to deploy unique device certificates to our Windows 10 devices using Intune/SCEP/NDES. At the moment we can only deploy user certificates.

    The story behind this idea is as follows:

    We are using shared Windows 10 devices and a wireless environment that uses certificate authentication. Because of the shared devices and the possibility that the user never logged on to the device yet, we want the wireless profile to be connected before user logon. And that requires a unique computer certificate.

    151 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      3 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
    • Allow Device Serial Number

      Allow the use of Device Serial Number when assigning devices to a Intune Azure AD Device Group. We have thousands of iPads that are DEP enrolled and assiged the User-Agnostic Attribute. We also have multiple DEP profiles. These devices do not have users names or email addresses assigned to them. They all have the same device name also, i.e. iPad. Thus, there is no way to open an Azure AD Device Group and add a specific device to it because the only attribute(s) that make one iPad different from the other is: Serial Number, IMEI, or the Unique Identifier. None…

      71 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
      • MAM support for OneNote for Android

        OneNote is a primary application in the Office Suite but deployment of a MAM policy is only supported for OneNote on iOS and not Android. We are forced to blacklist OneNote on Android as a result. Please provide MAM support for OneNote for Android.

        134 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          2 comments  ·  Mobile Application Management (MAM)  ·  Flag idea as inappropriate…  ·  Admin →
        • Migrate Intune PC management into new Azure Intune portal

          Very cool that the Mobile portion has been migrate into the new Azure Intune portal.

          But what the current PC management?
          Why does it still require the old Silverlight portal?
          Bad experience to browse between 2 portal.

          Can you guys migrate everything into the new Azure Intune Portal?

          Please Intune Team, migrate the PC management portion into the new Azure Intune Portal for the benefit of your clients,

          21 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            1 comment  ·  PC Management  ·  Flag idea as inappropriate…  ·  Admin →
          • Remove email profile from iOS Device

            It's not possible to remove an email profile from an iOS device, if it is the only email profile which is deployed to. (Regarding the information on: https://docs.microsoft.com/en-us/intune/email-settings-configure )
            "Remove an email profile
            If you want to remove an email profile from a device, edit the assignment and remove any groups of which the device is a member. Note that you cannot remove an email profile in this way if it is the only email profile on a device."

            In my opinion it should be possible, because in other solutions (Citrix XenMobile) it's possible to deploy an "uninstall" of an…

            18 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
            • Intune: Add multiple Policies / Configurations / Apps to a group

              Today it is very hard to add multiple policies / configurations / apps to groups.

              Please provide us with checkboxes to apply a set of polices to a group, instead of doing this one by one. This would be a huge improvement in UI.

              Thank you!

              With best regards,

              Thorsten

              32 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
              • Assign mobile application to user directly(not through the AD Group)

                There is the application flow:

                1. Admin uploads a mobile application(mobileAppId) as a blob to the Intune web Portal and configures it.
                2. User X(Non-Admin) using his mobile device has to install a mobileAppId to his or selected User's(targetUserId) mobile device which was enrolled as well. He(User X) should have the ability to click the button "Install". After clicking the request should be created and sent to the Microsoft Graph API(Intune) or any other(if exists) API. API should send the notification back to the targetUserId's device. After the confirmation message about starting the application installation process should be shown on…

                27 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  2 comments  ·  Graph  ·  Flag idea as inappropriate…  ·  Admin →
                • Deploy MAM Policy on apps not installed via company portal

                  We would need, that the applications which aren't installed through company portal (and have the MAM Policy deployed) are also managed.
                  For example: I've implemented Microsoft Word App with MAM Policy and this app is deployed as available.
                  If the users need Word on one of their devices, they can install it, but if they install for example word from the iOS AppStore, the word app isn't protected.
                  If they install it via the company portal, it is protected (then the users get a popup, where they can click on "manage" and afterwards the application is protected).

                  In my opinion…

                  16 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  Mobile Application Management (MAM)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Intune: Filter for managed Apps

                    Hi Team,

                    please add a filter option for managed apps in Intune.

                    The actual view is confusing, especially if you have more than a few apps.

                    It would be very helpful to have filters for iOS / Android / Windows.

                    Thanks a lot.

                    Cheers,

                    Thorsten

                    27 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
                    • Option to not make VPP deployed apps "MDM Manged"

                      We need an option to deploy volume purchased apps to users without making the App MDM managed. For example if I deploy OneDrive to my users as a VPP app to their BYOD device, there should be an option to not make it MDM managed so the app doesn't get removed on un-enrollment. As it stands now if a user un-enrolls their device any apps we have deployed will get removed which may potentially cause loss of personal data. This is an option AirWatch offers that can be set on the app deployment.

                      9 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Software Management  ·  Flag idea as inappropriate…  ·  Admin →
                      • Searching ability by EMEI or Phone Number

                        We need searching ability by EMEI or Phone Number. Now, I can search by only Device Name. Changing device name is not possible under current console.

                        35 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          2 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
                        • The device unique identifier (UDID) should show up in the admin console

                          iOS device UDID is not reflecting on Intune, Have created a ticket 117062115926156] Device UDID mismatch. Device UDID shows different but have been informed that the UDID inclusion will be feature request. Please take note

                          1 vote
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            2 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →

                            Sorry, missed the feature request in this, but I’m actually not sure what the request is. You say “Device UDID shows different”. Are you asking for the device unique identifier (UDID) to show up in the admin console? Or asking for it to be displayed differently?

                          • Disallow User to Delete Device from Intune company portal

                            Actually Users can delete thier device from company portal.
                            i think that a dedicated policy are needed.

                            4 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
                            • retain Intune cached MSI with out auto delete

                              We have deployed single MSI to Windows 10 MDM enrolled computer using Intune

                              We can see the cache location - C:\Windows\System32\Config\SystemProfile\AppData\Local\mdm

                              How can we retain the cached MSI without getting deleted automatically ?

                              Is there a way to configure the cache period ?

                              3 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                1 comment  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
                              • MAM for MS Planner (Android, iOS, Windows Phone)

                                Intune MAM for the newly released MS Planner mobile application.

                                12 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  1 comment  ·  Mobile Application Management (MAM)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Folder redirection to Onedrive for Business

                                  I would like to have a Intune Policy to redirect, for example, the Documents folder of an Azure AD Joined device to Onedrive for Business of the user.

                                  7 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  PC Management  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Intune enhanced reporting capabilities for Mobile Devices

                                    We need to add a detailed software deployment reporting capabilities for intune managed BYOD & COD mobile devices. As of now, Intune reporting only provide information about software installed through company portal app like word installed on x devices and devices information. I've seen a lot of customer who would like to know the capabilities of Intune beyond this and would like to see the same level of reporting capabilities in Intune that are available for workstation that report all installed softwares.

                                    4 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Software Management  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Option to force users to accept terms and conditions each time they enroll a new device.

                                      Currently, once a user accepts the deployed Terms and Conditions across one of their enrolled devices, they will not be required to accept the Terms and Conditions again on any of their other devices.

                                      From https://docs.microsoft.com/en-us/intune/terms-and-conditions-create:
                                      "Users only have to accept updated terms and conditions once. Users with multiple devices don't have to accept terms and conditions on each device."

                                      This is a request to create the option to force users to accept deployed terms and conditions each time they enroll a new device, even if they have already accepted them on the first device they have enrolled.

                                      3 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Company Portals  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Intune SharedPC policy & profile deletion

                                        user profile deletion in the SharedPC policy works with 1703 when applied against the DEM account.
                                        while the SharedPC mode/guest mode work when applied against the Device.
                                        This means the SharedPC policy with all the above settings needs to be applied to both device and DEM...

                                        14 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          1 comment  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Permission Group for MDM management outside of being a Global Administrator

                                          We cold do with having a new or separate Permission Group to allow non GA accounts to be able to manage the MDM devices. We need our 1st/2nd line support staff to be able to do selective wipe on devices but at present I am told this is only available for GA account.

                                          22 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            3 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 46 47
                                          • Don't see your idea?

                                          Feedback and Knowledge Base