Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Native support for Desktop Analytics for AAD Joined and Hybrid AAD Joined MDM Only managed devices

    There should be Native enrollment for Intune enrolled devices similar to ATP onboarding. Either a Device configuration profile, which includes CommercialID, AllowTelelmetry(with LimitEnhancedDiagnosticsDataWindowsAnalytics), and AllowDeviceNameInTelemetry. Or at least an article to onboard using a PowerShell script which can be deployed via Intune.

    Currently even if devices are manually configured with these settings they will not appear in Desktop Analytics without an SCCM collection association.

    This and similar analytics for Office 365 clients are big ticket missing items for the successful management of the Modern MDM managed devices, and the Windows/Office as a service platform.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Mix User Groups assignment and Device Groups exclusion

    We need a solution to configure Intune policies and software deployment for a large customer who has users with registered AND AAD, who have connected W10 devices that we both like to manage with Intune.

    We want to apply (mainly security related) policies to the registered devices (BYOD) and policies and software to the AAD connected devices (corporate devices). Now that we apply the configuration to user groups, how can we say that we keep the software packages away from the registered devices and apply them to the connected devices for the same users?

    We tried to apply the configuration…

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Force Location services ON in Intune for mobile devices as applications require them to be on

    As some applications require location services always to be on can we please have a policy and or rule that enforces location services to be on all the time (forced)

    in our device compliant it states location services must be on and all the devices with location services that are off are showing as non com pliant.

    users currently have the ability to turn location services on and off and we want to be able to lock that down so location services are always on. Currently users have the ability to turn it off

    can this please be added within…

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Auto update the enrolled devices ownership based on corporate device identifiers

    The corporate devices identifiers listed before devices enrollment allows them automatically flagged as owned by company : Ownership = "Corporate".

    The enrolled devices ownership are also well flagged for devices enrolled by using Apple DEP, Samsung Knox or other corporate programs.

    Update the enrolled devices ownership is a manual task and can only be performed for devices one by one (no bulk capabilities) unfortunatly.

    A soft-match capability between "listed corporate devices" and "enrolled devices details" will be very helpfull and a good improvement from Intune.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Enable use of BitLocker authentication requiring preboot keyboard input on slates

    Hello,
    Would be good to integrate in Endpoint Protection BitLocker setcion an option for "OSEnablePrebootInputProtectorsOnSlates" (Enable use of BitLocker authentication requiring preboot keyboard input on slates),
    Else if you use Tablet, then when the Windows Recovery Environment is not enabled and this policy is not enabled, you cannot turn on BitLocker on a device that uses the Windows touch keyboard.

    But to enable this "OSEnablePrebootInputProtectorsOnSlates" need push PowerShell script to devices, as BitLocker-CSP missing this too....

    Or option via BitLocker-CSP to control this setting.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Please allow OPPO devices to be managed by Intune.

    Please allow OPPO devices to be managed by Intune.

    The below article tells that OPPO devices are not supported.
    https://docs.microsoft.com/en-us/intune-user-help/your-device-appears-encrypted-but-cp-says-otherwise-android

    Please consider these devices at the earliest.

    Thanks,.

    36 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Improve the basics

    First of all, I like Intune but there are a few things that are truly irritating. My number one issue is time delays. Time delay has worked against me for the following:
    1. Device in Intune (iOS) DEP enrolled, unable to add to a Azure AD security group because the device name has not updated from Intune to Azure AD. Azure AD will call my iPads "iPad" for some random amount of time, where as Intune call the iPads "iPad-SERIAL". But when you add a device to a group it has to be the Azure AD name and if there…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Naming Devices by setting terms and conditions

    Prompt users to change their device name during or after enrolling the device in Intune i.e. It is very tedious task for administrator to change the devices name enrolled in bulk so I think there must be some condition which admin can trigger from the portal which prompt user to change their device names and the same should get reflected in Azure AD devices list.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Push mail profile with custoom properties to iOS and Android

    We want to deploy multiple mail profiles (native mail app) other than the users own. For example if user A is allowed to use the mailbox of user B we want to push the mailbox of user B to user A's device. Therefore we need custom user properties where these settings come from and the possibility to link these custom properties within device configuration policy.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Change registereed owner for corporate owned devices

    We shouldnt have to reenroll a device everytime a device changes owner. Please can you make it possible to change the device owner for corporate devices so we can propally audit without additional software? Kinda the purpose of an MDM

    1,681 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    125 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Priority settings for Intune device configuration settings

    It would be nice if it is possible to configure multiple settings and give the configuration profile a priority. For example;

    Default configuration - Win10 device restriction ( for all users)
    Custom configuration for a specific department ( for a specific group of users) Example, for the custom startpage of a specific window setting.

    It would be nice if it possible to give a priority to the device configuration profile. With this you can deploy always the default group to the user, when there is an additional deployment with a higher priority it is applying and will override the default…

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow User Name in Device Name Template

    Under an enrollment profile, you can set a device name template to rename all devices being added. I'd like to have the option of adding a username in the front of the device type. This way, instead of seeing "iPhone" in my device list, I'll be able to see something like "JSmith iPhone"

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add an identifier to MFA text that allows user to match with MFA screen

    We receive multiple MFA texts and screens at the same time or within a very short time frame. Can something be added to the pop up screen and the text to be able to match the correct code with the correct screen?

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Custom message when locking devices

    displaying a custom message on screen when a device is locked due to it being lost/stolen. This would apply to all devices similar to how remote lock works on iCloud, FindMyPhone for android and Samsung devices
    i.e. "This device belongs to X company, please call +01 xxxx-*** to return device"

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Unknown sources apk in Kiosk mode

    Need a way of installing unknown sources packages to a tablet that is in kiosk mode. Currently the only method is by posting the package to your own store but if someone has already used that package name it will not allow us to post it. Since we do not own that application and they HCHB does not publish it on the market we have no way of locking down devices and using their app. This works fine in other MDM solutions by simply putting in an allowance for the package name.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow Intune Managers to customize the Audit Log retention

    The Audit Log found within Intune > Devices > Audit Logs has a default record retention of 30 days. Intune administrators should have the ability to customize how far back the audit log goes.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Search devices by ICCID

    It would be really helpful if we could search devices by the ICCID of the currently inserted SIM card. Sometimes our users switch the SIM cards between devices and we would like to be able to check which SIM is in which device.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Enable intune to delete outlook profile from windows desktops and mac

    Currently intune can’t delete outlook profile on windows desktops and mac (I have already raised a ticket and confirmed [Ticket #:12377207]). When we use retire option it just don't delete cashed outlook profile from pc. (windows or mac)
    When it comes to mobile platforms such as android and ios, it just works fine as it should, and deletes the outlook profile very smoothly by intune using retire option.
    “Retire option” claims the following, yet looks somewhat misleading .
    "Are you sure you want to remove company data on this device? This will only remove company data managed by Intune. The…

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Device Configuration Settings to Re-Apply

    Currently after any setting is currently applied to a device its state becomes compliant for the Profile and Intune will never check with the device if the setting has changed. Unless the profile suffers a change or its re-assigned manually the we cant tell if the user actually changed the setting or not. That defeats the whole replace GPO idea when the setting is not checked every x hours.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Display Full Phone Number for BYOD Devices in Intune

    I see the closed post for displaying full phone number, with the response that the full number is displayed for corporate owned devices. We still need the full phone number to show for BYOD devices. As others have noted on that closed post and in other posts, there is nothing private about the BYOD device phone number, and there are many reasons we would need to contact users on their mobile phone. Please finish the job and display the full phone number for all devices, including BYOD devices.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 17 18
  • Don't see your idea?

Feedback and Knowledge Base