Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. support multi track of macOS

    For compliance policy, macOS version check function should support multi track of macOS (such as 10.13.x, 10.14.x and 10.15.x).

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  2. Support Multi-Factor Authentication when enrolling via DEP

    MacOS Catalina appears to now support web form sign-in during DEP enrollment: https://developer.apple.com/documentation/devicemanagement/accountconfigurationcommand/command?changes=latest_minor

    This may allow us to provide an onboarding experience more closely aligned to AutoPilot - ideally, user would be able to complete account recovery setup and MFA setup during DEP enrollment as opposed to what we have today: basic auth without support for MFA.

    For customers who rely exclusively on Intune for MDM, this makes onboarding a bit more difficult and may dissuade them from using DEP enrollment altogether with the absence of support for MFA.

    71 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  3. Support for Cisco FastLane

    Teams use has exploded due to COVID. Teams for Windows is optimized for QoS, as is Teams for Mac over Ethernet. But Teams for Mac over Wi-Fi needs Cisco Fastlane to be properly priortized. Apple has made Fastlane configuration available to MDM platforms like Intune, but Intune hasn't rolled out its support. Please get on this. Intune needs to be best-of-breed platform that sets the standard by which other platforms follow. Microsoft has to be a cross-platform company, not a Windows-centric one in order to live up to its any device, any time, any where tag line.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  4. 6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add support for automatic scope tag assignment for Jamf devices using a security group

    Automatic scope tag assignment is currently not supported for Jamf devices.
    Manually assigning a scope tag works. Would be great to be able to automatically assign scope tags to a security group.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow MFA support for user affinity MacOS DEP devices

    Add support for MFA for MacOS DEP devices with User Affinity.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  7. MacOs Packages support for choices xml files

    It would be great if there was support for adding a choices xml-file to the intune package so we can control installation options for packages.
    This is very much needed for packages like Cisco AnyConnect where it let's you pick what components to install during the installation.

    It is manually done like this:

    Generate the choices file:
    installer ‑showChoicesXML ‑pkg /path/to/AnyConnect.pkg ‑target / > /path/to/choices.xml

    Install command:
    installer ‑showChoicesAfterApplyingChangesXML /path/to/choices.xml ‑pkg /path/to/AnyConnect.pkg ‑target /

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. Specify Airprint printer by hostname

    Currently you can only specify printers by IP address in the Device Profile for iOS Airprint. We require hostnames for our print servers for the purposes of using round robin clusters of IP addresses.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  9. Edit a device's assigned user or user-affinity

    Devices enrolled by a user or without user affinity cannot currently be re-assigned without removing the device from management and then re-adding. We'd like the ability to assign a user to a device from the InTune console. This would allow technical staff to enroll a device, and then assign it to an end user later.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  10. Default enrollment profiles isn't automating and there's no select all

    The setting for default enrollment profiles doesn't work. It should assign the default profile to incoming Macs. Instead I have to assign them manually. Which is made worse by the lack of a "select all" checkbox. Please fix this ASAP.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support for Intune management with macOSX server

    Currently, Intune does not support management with macOSX servers. Does Intune have any plans for this feature?

    This is very important for companies have macOSX servers.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  12. Support Jamf integrated devices for Intune NAC

    We currently manage our Macs with Jamf and have setup the Intune integration where devices are enrolled into AAD/Intune via Company Portal so we can utilize Conditional Access policies on our Mac devices. When attempting to use this for networking integration with Aruba we found that the query to the stateless NAC service does not return results for Mac devices managed by Jamf and enrolled this way which defeats the purpose of doing this in the first place. This was confirmed by the product group to be by design.

    Please add this support for Mac devices.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  13. MacOS/AzureAD password sync for enrolled Macs

    Jamf Connect, OneLogin and JumpCloud now offer some sort of MacOS password sync capability for O365/AzureAD credentials (via SSO or a desktop agent keychain overwrite).

    These services also offer the ability to disable sudo/admin rights on MacOS, which would be a game changer if Intune offered that functionality.

    We pushout Intune profiles via DEP, and although we have the ability to rotate passwords, we have no way of authenticating local Mac passwords with AzureAD. If a user becomes locked out, we have to walk them through manually recovering their password via the recovery terminal.

    Reseting their password in AzureAD could…

    80 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  14. Location Services MacOS

    Add location services for MacOS as a Intune Configuration Profile setting, since this is required for automatically set the TimeZone.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  15. MacOS - Create Standard vs. Administrator user plus use AAD Credentials

    It will be great if MS Intune can have the ability to create standard vs. administrator account. Ideally if the possibility will include the usage of AAD/AD credentials and account.

    Example:
    During the DEP enrollment the user account will be created while the Intune admin will have possibility to choose if the user will be standard or administrator. (Same we have with Windows 10 Autopilot)
    During the DEP enrollment the AAD account can be used to enroll the macOS devices (same feature which Jamf Connect offers).

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Company Portal to the macOS App Store

    For deployment and update purposes, it would be easier for MDM admins to manage this.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  17. add support for DMG and scripts for MacOS

    LOB is more than pkg files, please add support fro DMG and scripts

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  18. macOS Intune MDM Agent diagnostics

    Provide some capability for the MDM Agent to perform diagnostics locally. For example:
    1. Interrogate last sync
    2. Force sync

    Currently when Intune MDM Agent doesn't pull a script, there is no way to find out why not.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  19. Support for Cisco FastLane

    Teams use has exploded due to COVID. Teams for Windows is optimized for QoS, as is Teams for Mac over Ethernet. But Teams for Mac over Wi-Fi needs Cisco Fastlane. Apple has made Fastlane configuration available to MDM platforms like Intune, but Intune hasn't rolled out its support. Please get on this. Intune needs to be best-of-breed platform that sets the standard by which other platforms follow. Microsoft has to be a cross-platform company, not a Windows-centric one in order to live up to its any device, any time, any where tag line.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  20. See recovery keys in Azure portal after the "Wipe" command is issued

    After issuing device wipe, MacOS devices sometimes get stuck in Wipe Pending state, it would be useful to still have the possibilty to see the recovery keys in order to be able to access the device. In current state it is not possible to see recovery keys once the Wipe command is issued.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4
  • Don't see your idea?

Feedback and Knowledge Base