Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Apple TV Support

    I would like to see support for managing Apple TV devices.

    113 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      17 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
    • Modern authentication for native mail

      We need to be able to configure email profiles with modern authentication. It is supported now by iOS but not by Intune. This problem is making an MFA rollout to existing email profiles very difficult and leaving gaps in our ability to retire native emails when employees have to configure their own exchange profiles.

      Outlook is great and all but conditional access doesn’t prevent the native client from being used.

      204 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        21 comments  ·  Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →

        As @Robert suggested, I will merge “IOS email profile does not support MFA” into this one.

        Also, when I asked the PM, he said “Conditional Access does have the ability to require Outlook only. They call it app access.” So check that out. :-)

      • Export and import custom MDM policies in the Azure Intune portal

        I have not seen the ability to export and import custom policies - both compliance and configuration policies - in the Azure Intune portal.

        We have many customers where we set up our standard policies, and we have to do this manually for all customers.

        The export function in the portal today just creates a csv of the view in the console, it does not export the actual policies - as far as I can see.

        32 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          3 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
        • MDM mail profile management, no duplicate password prompt/remove app password requirement

          When a mobile device (specifically iPhones tested at this point) is enrolled into 365 MDM, you have the option to control the mail profile on the device.

          When this option is ticked, after enrolling the device through the company portal app, we would expect the mail profile to be complete and require no further interaction from the users.
          This however, is not the case, and the user is prompted for a password from the native mail app on the phone.

          When MFA is not enabled on the account, the standard account password works.
          When MFA is enabled on the account,…

          19 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            4 comments  ·  Enrollment (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →

            Hi, James, I see your comment. I sent you mail out of band using the UserVoice “contact subscribers” feature, but that doesn’t show up in the conversation on the public site. But if you’re having problems reading that mail, here’s what I said:

            Have you already opened a support case on this? If so, can you reply to this mail with the support case number so I can look at the case notes? If you haven’t opened a case, that’s what I’m going to suggest next, so they can look into what’s happening.

          • Microsoft edge on android and IOS as managed browser

            Please change Microsoft Managed Browser with Microsoft Edge for Android and IOS as managed browser - so that we can Manage Internet access using managed browser policies with Microsoft Intune with a browser that are known for the users as it is default in Windows 10

            124 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              15 comments  ·  Managed Browser  ·  Flag idea as inappropriate…  ·  Admin →

              As of the week of June 4, 2018, the Microsoft Edge browser for mobile devices (iOS and Android) supports Microsoft Intune app protection policies. Users of iOS and Android devices who sign-in with their corporate Azure AD accounts in the Edge application will be protected by Intune. On iOS devices, the Require managed browser for web content policy will allow users to open links in Edge when it is managed.

              I think what you’re asking for is making Edge replace the managed browser, so I won’t call this complete, but wanted you to know that we added this Edge-related feature.

            • Static computernames in Windows autopilot before Intune autoenrollment.

              Maybe posting this to the wrong component-team but a suggestion would be to give the ability to set a static computername to the imported device when registering the csv file containing hardware information in "Autopilot deployment". The current functionality randomizes the computername after each factory reset or reinstallation. Seems pointless to perform a namechange after Intune autoenrollment. This would solve alot of of administrative issues within larger organizations.

              153 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                16 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →

                As of the week of August 27, you can use a template to control how the machine will be automatically named. So not exactly static, but gets you away from total random. From the discussion, sounds like not total random was good enough for some, but not all, so I will switch this back to “noted”.

                more detail about what we released in August:
                When you create an autopilot deployment profile, you can designate a name, which must be 15 characters or less, and can contain letters, numbers, and hyphens. Names can’t be all numbers. Use the SERIAL macro to add a hardware-specific serial number. Alternatively, use the RAND:x macro to add a random string of numbers, where x equals the number of digits to add.
                https://docs.microsoft.com/en-us/intune/enrollment-autopilot#create-an-autopilot-deployment-profile

                It’s only available with the Windows Insider build for now.

              • Deploy printers

                Give us the option to deploy printers with Intune

                559 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  24 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

                  You can deploy AirPrint settings for Mac and iOS – https://docs.microsoft.com/en-us/intune/air-print-settings-ios-macos

                  You can configure some printer settings under device restrictions for Windows 10 – https://docs.microsoft.com/en-us/intune/device-restrictions-windows-10

                  But I’m hearing from a few people that this still doesn’t really help users get to local printers, and that seems the original intent. (@Henrik, if you’re getting this, please weigh in!)

                  We won’t call this one complete. I’m switching this to “noted”, meaning we know you want it. Thanks again for the feedback!

                • Provide a way to backup the entire Intune Configuration

                  It would be great if there was a method to backup the entire Intune configuration in Azure.

                  6 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
                  • Change font in Outlook for iOS and Android

                    Required in order to change to our house styles.

                    2 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Company Portal (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →

                      Hi, Joe, before Intune could manage something like this, Outlook would have to permit an MDM system to manage fonts. I checked, and they don’t. If you go to https://outlook.uservoice.com/, you can submit a suggestion to that team to make it something that could be set via policy, and then if they do that, Intune could set it, either in the UI or using an OMA-URI. Most Outlook-related requests would need work on both sides.

                      If you file that, come back here and past the Outlook request URL, so anyone who wants to vote this one up would know to go vote that one up, too.

                    • Give the ability for a provider to manage multiple tenants via a single portal.

                      Give us back the multi-account portal.
                      why would you remove the ability for a provider to manage multiple tenants via a single portal.

                      10 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        3 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
                      • Auto Selective Wipe When an Account is closed.

                        When an end user account is set to auto-expire, this will also perform a selective wipe on the end user devices on the date/time the expiration was set.

                        51 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          5 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →

                          @TheScreamingRichard – If you can do it in the UI, you can do it with Graph – we build the UI entirely on top of Graph. :-)

                          This page has the remote actions
                          https://developer.microsoft.com/en-us/graph/docs/api-reference/beta/resources/intune_devices_remoteaction

                          There’s one member called
                          factoryReset

                          and there’s a different member called
                          removeCompanyData

                          there’s also one called
                          factoryResetKeepEnrollmentData

                          I’m assuming it’s one of those you’d be able to call for a Graph-based solution, though our Graph people are all at Build this week so if that’s not what you need I can ask them when they get back.

                        • application policies should support multiple identities from the same company for a given device

                          Support for multiple email address policies for the same device. This is becasue we have "C" level admins who manage both the calendar and address book of the executive on their own devices. Intune does not support this as it produces an error when trying to push out two profiles.

                          1,062 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            81 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →

                            Confirmed that it is currently by design that conditional access allows only one identity per device at this time. We hear that you need this and we’re looking into it. I’ve changed the title and category to indicate that this is related to conditional access.

                            Again, this is just for multiple identities from the same company. If you’re looking for having one device with identities from two different companies for MDM, that idea is here:
                            https://microsoftintune.uservoice.com/forums/291681/suggestions/31313071
                            And if you’re looking for having multiple identities for MAM, that idea is here: https://microsoftintune.uservoice.com/forums/291681/suggestions/34627435

                          • Windows 10 Upgrades (1511) via Intune

                            The Windows 10 1511 Upgrade is not available via Intune. We use Intune as our Update Management platform (small business).

                            I thought that the Windows update functionality in Intune should be like a WSUS in the Cloud. With peer-Distribution in Windows 10 and in Intune before it should be possible to not overload our Internet line.

                            If this should not work by design then please Microsoft state clearly which of your products is designed for which Scenario.

                            717 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              66 comments  ·  Intune PC client  ·  Flag idea as inappropriate…  ·  Admin →

                              OK, seems clear that people still mean this suggestion for the PC client, not the MDM client, so setting the status to Noted.

                              You can manage software updates (feature and quality) for Windows 10 devices managed by MDM using Windows Update for Business. And you can do peer downloading. Here are the docs for that.
                              https://docs.microsoft.com/en-us/intune/windows-update-for-business-configure

                              What’s keeping you using the PC client? Is it the operating system or are there still feature gaps you can’t live without on MDM?

                            • Copy files to mobile devices

                              Hey

                              Create feature to deploy files to devices.

                              I really need this feature on Android devices

                              116 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                10 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                              • Intune Reporting on W10 OS Update

                                Currently Intune cannot sufficiently report on what particular Windows 10 OS Update a device may be on. Are there plans to enhance the Intune Reporting engine to execute the reports which contain information about the W10 device OS Update revision?

                                111 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  5 comments  ·  Intune Data Warehouse  ·  Flag idea as inappropriate…  ·  Admin →
                                • Mac OS X Software Updates

                                  Ability to manage updating of OS X would be a phenomenal improvement. Should include enforcement, policies, and reporting. It would be a huge bonus if this could also handle upgrades so we could block old versions of OS X.

                                  93 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    5 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Simpliy enrollment process - provide better user experience

                                    It would be great if we can reduce the steps necessary for enrollment in Intune somehow. Having all this user interaction is not good. Instead of having to confirm various user dialogs it would be great if a user can trigger the enrollment process - e.g. by specifying username and password - and the devices enrolls without a need for the user to confirm anything else.

                                    15 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      1 comment  ·  Company Portal (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →

                                      Enrollment is a process that varies widely among platforms and enrollment methods. This suggestion is pretty vague, so I doubt we’d ever be able to call it “complete” – I’d encourage you to spin up more specific feedback on particular elements and move your votes to those. However, I did want to let you know that with the updates we’re releasing the week of Nov 6, we now have:

                                      New enrollment status page for Windows 10 enrollments
                                      You can now configure a greeting that appears when your users enroll Windows 10 devices. Use the Enrollment Status Screen to configure a custom message and a hyperlink to be displayed to your end users when they enroll their Windows 10 devices. The Enrollment Status Screen will also give end users a view into the progress of policy settings that are being applied to their device.
                                      https://docs.microsoft.com/en-us/intune/whats-new

                                      Hopefully you can make the experience…

                                    • sync contacts to local OS native apps/phone

                                      The Team of Intune and Outlook did a great job but we believe that there are still some limitations to overcome:
                                      - We need the capability to sync determined objects to local OS native apps/phone without limitations, like Contacts through Outlook for iOS. Outlook for iOS, for example, is a good application that provides mail and calendar features. However, since the contacts are not synced to the native OS phone, calls/SMS are not recognized.
                                      - We know we can use ActiveSync for contacts, however, in case of MAM, we wouldn´t allow ActiveSync in our mobile devices.

                                      362 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        noted  ·  12 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Native deployment of provisioning packages as deployment type

                                        The ability to deploy provisioning packages by Configuration Manager and Microsoft Intune as a deployment type. This will introduces a lots of new opportunities to deploy/configure Windows (Mobile) 10 clients.

                                        117 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          noted  ·  5 comments  ·  Apps (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Improve the Application deployment capabilities for Windows

                                          Now with all the new features of Windows 10 and Intune as the no. 1 cloud management for this platform - there are so many things missing in order for application deployment feature to be a full solution.
                                          1. Add the ability to edit existing source files of applications
                                          2. add detection methods by registry VALUES or file VERSIONS like SCCM
                                          3. more deploy options rather than just MSI\EXE (bat, cmd, vbs, ps1 etc...)
                                          4. add application dependencies...

                                          I think that in short, I can say - make the application deployment features of SCCM (that are perfect) to be available…

                                          95 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            4 comments  ·  Apps (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 6 7 8
                                          • Don't see your idea?

                                          Feedback and Knowledge Base