Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. View/Manage Device Group Membership

    When managing a device in Intune Portal there is no way to view or managed groups that a device is a member of. This for me is a very obvious missing feature which can lead to all sorts of issues when troubleshooting anything that has been applied to a device, especially where groups have been used to provide unusual customisations that may not be easy to reconcile later on.

    Just like you can browse and manage group memberships for users, we badly need the same for devices.

    37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow User Name in Device Name Template

    Under an enrollment profile, you can set a device name template to rename all devices being added. I'd like to have the option of adding a username in the front of the device type. This way, instead of seeing "iPhone" in my device list, I'll be able to see something like "JSmith iPhone"

    121 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Dynamic Device group based on installed application

    We have a situation where we allow users to install apps from the appstore on their corporate device but a situation came up where a lot of heavy data usage apps are causing large bills.

    We want the option to be able to deploy app restriction policies and take control of an unmanaged app without having to deploy it to all users.

    Being able to make a dynamic device group based on a specific discovered app would allow us to target only those with the application installed for the restriction policy rather than having to deploy the app to everyone…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Native support for Desktop Analytics for AAD Joined and Hybrid AAD Joined MDM Only managed devices

    There should be Native enrollment for Intune enrolled devices similar to ATP onboarding. Either a Device configuration profile, which includes CommercialID, AllowTelelmetry(with LimitEnhancedDiagnosticsDataWindowsAnalytics), and AllowDeviceNameInTelemetry. Or at least an article to onboard using a PowerShell script which can be deployed via Intune.

    Currently even if devices are manually configured with these settings they will not appear in Desktop Analytics without an SCCM collection association.

    This and similar analytics for Office 365 clients are big ticket missing items for the successful management of the Modern MDM managed devices, and the Windows/Office as a service platform.

    117 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Support Multiple Sites / Locations

    We need the ability to have multiple sites or locations with different configurations from enrolment restrictions and automated enrolment, all the way through to configuration profiles and applications.

    e.g. Personas - One site for Production users and another for Developers
    e.g. Locations - One site for New Zealand and another for Australia

    This would allow companies to have greater separation of environments, locations and/or persona configurations from the ground up.

    All other MDM's support this type of segregation and it allows for a much safer, simpler operating model.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Set custom background and logos via Android Enterprise device configuration policy

    Currently setting custom backgrounds on Android Enterprise MDM devices in Intune is only available for devices that are in a kiosk mode configuration, it would be useful to enforce a custom background and logo on managed Android Enterprise devices within Intune in a non-kiosk mode configuration.

    Is this something in the pipeline?

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Force Location services ON in Intune for mobile devices as applications require them to be on

    As some applications require location services always to be on can we please have a policy and or rule that enforces location services to be on all the time (forced)

    in our device compliant it states location services must be on and all the devices with location services that are off are showing as non com pliant.

    users currently have the ability to turn location services on and off and we want to be able to lock that down so location services are always on. Currently users have the ability to turn it off

    can this please be added within…

    98 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Conditional Access days enforcent warning

    When a condition is enforced. Such as operating system version. Allow a count down of days till the condition is enforced. The end user should get a message stating that in 10 days, if they do not meet minimum os requirements, they will be unable to access o365. This can be enforced on various requirements and allows the end user time to resolve the issue before enforcement.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Intune Device Clean up

    I hope everyone would agree that when enabling the device cleanup for Mobile devices has an option to enter what DAY or Month or YEAR to clean in the database to effectively clear in the records. Also, another rule like to separate these devices from the main database for future references.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Use Primary User like SCCM, depending on working hours on device.

    In SCCM, you can set Primary User how many days and hours it has worked on device before it is set as primary user.

    In Intune we have to do it manually. Is it possible to make the settings available like SCCM, so we have to do less administrative work?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Notification when deleting group attached to a deployment

    It would be useful to have a notification before deleting a group that is attached to a deployment before you are able to delete it.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Intune Major.Minor.Build

    In Microsoft Intune, the system allows you to set major.minor.build to cover current version and the 2 prior, but it’s a hard setting. We'd like to remove the administrative overhead of changing the value every time a new OS version is released. Would like a dynamic setting that will automatically adjust to be the current OS version and 2 prior.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Intune governance policy

    The idea is to have the capability to enforce policies in term of Intune Governance.

    Example would be to have a way to enforce naming convention for the compliance policy/configuration profiles.

    Even more, enforce a minimum number of character or presence of a ticket number within the policy description.

    The same way as Azure Policy enforces compliance and policies at the resource level.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  14. End-user self wipe on Apple DEP device

    Please support self-wipe (by device user; not administrator) on iOS device that registered with Apple DEP service.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Describe the details of "Failed" in "Restricted apps"

    When "Prohibited apps " is set in "Restricted apps" in iOS device restrictions, if "Prohibited apps" is installed, the profile status becomes "Failed".
    There are no details of "Failed",so it is difficult to understand why it fails.
    Could you please describe the details of "Failed" ?

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  16. COVID-19 App exposure (Intune MDM)

    Now that Apple Has allowed the COVID-19 App exposure settings (inbuilt) are there any features in development where organisations will be able to lock the setting from being switched off for the authorised application in One’s respective country and controlled by intune MDM in respect to back to work strategy?

    It would also be great if the Bluetooth setting can also be locked down to not be switched off since the exposure notification uses BLE.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Mix User Groups assignment and Device Groups exclusion

    We need a solution to configure Intune policies and software deployment for a large customer who has users with registered AND AAD, who have connected W10 devices that we both like to manage with Intune.

    We want to apply (mainly security related) policies to the registered devices (BYOD) and policies and software to the AAD connected devices (corporate devices). Now that we apply the configuration to user groups, how can we say that we keep the software packages away from the registered devices and apply them to the connected devices for the same users?

    We tried to apply the configuration…

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Selective wipe displays inaccurate device names.

    Selective Wipe request does not display the device's name correctly even though the device is protected with Windows Information Protection and is currently enrolled in Intune. It would also be quite better if administrator is provided the ability to remove stale devices in the list. Intune seems to keep old devices in the list even if the device name was repeated multiple times. This makes initiating Selective Wipe requests to devices more difficult.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Prohibit Intune to discover applications on personal device and/or notify user if admin switches Personal device to be identified as "Corpor

    Suggestion: Prohibit Intune to discover applications on personal device and/or notify user if admin switches Personal device to be identified as "Corporate owned"

    In the hybrid model, which many SMEs use, where Intune is connected to System Center Configuration Manager, the administrator can identify specific devices as corporate owned. The administrator could change the ownership of the Personal device to Corporate in order to gain insight into what apps are installed, while the user will is oblivious to this change. This is a vulnerability that could be exploited, in theory.

    Considering that users who enrol their personal devices in Intune…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Filter for custom notification

    Ability to add filter for custom notification to target only specific device types.
    Example: Changes will happen to Android configuration so we want to send notification only to Android phones to not confuse users on iOS.
    Currently we can only target user groups for notifications therefor we are unable to control what type of devices get the message.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 16 17
  • Don't see your idea?

Feedback and Knowledge Base