Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Ensure each Assignment control explicitly indicates if it’s intended to be assigned to User or Device.

    Ensure each Assignment control explicitly indicates if it’s intended to be assigned to User or Device.

    Arrange settings applicable to Users into a User Configuration profile blade.

    Arrange settings applicable to Devices into the Device Configuration blade.

    Currently, they are jumbled together and require admin to evaluate “context.” Separating them will reduce incidence of inappropriate assignments.

    1 vote
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Documentation  ·  Flag idea as inappropriate…  ·  Admin →
    • Conflict resolution workflow

      Ensure when conflicts are identified -- whether during configuration or monitoring -- that a resolution workflow is presented with appropriate decision support guidance.

      1 vote
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Documentation  ·  Flag idea as inappropriate…  ·  Admin →
      • Standardize Parameter Names, Tooltips, Documentation, and Setting Value Choices

        Develop and adopt a policy to:

        1. Ensure consistency among CSP Name, ADMX GP Name, INTUNE parameter name. A good name reflects what the parameter is intended to accomplish when enabled/allowed/set-to-True.

        2. Ensure consistency among the INTUNE tooltip, CSP Documentation, ADMX documentation. Create a standardized syntax or structure for each to ensure accurate, consistent information.

        3. Ensure consistency among INTUNE setting choices, CSP setting values, ADMX setting values and the effect of each. Good, consistent setting choices means, to me, Enable = Allow = True; Disable = Block = False; Not Configured = Not Configured = Not Configured.

        3 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Documentation  ·  Flag idea as inappropriate…  ·  Admin →
        • restrict access to a specific vpp token

          In a K-12 division set up VPP tokens for each location for a Principal to purchase apps for their specific school location with out having access to the divisional VPP apps, but allowing the Division to monitor all apps at all locations.

          6 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            2 comments  ·  Intune for Education  ·  Flag idea as inappropriate…  ·  Admin →
          • Kill intune

            Today I was at the airport and needed to show/scan my e-ticket from my android device. When I downloaded it in PDF via email, I couldn't open it because I need to download the intune app or sign in. I honestly don't know to which of my 2 microsoft accounts i need to sign in and dor what reason, the device has no relationship to my company anyway, it s a puerly private device.. In blocked the pre security check row at the airport because of your ****** app which I don't need and want!!

            1 vote
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
            • Kill intune

              Today I was at the airport and needed to show/scan my e-ticket from my android device. When I downloaded it in PDF via email, I couldn't open it because I need to download the intune app or sign in. I honestly don't know to which of my 2 microsoft accounts i need to sign in and dor what reason, the device has no relationship to my company anyway, it s a puerly private device.. In blocked the pre security check row at the airport because of your ****** app which I don't need and want!!

              1 vote
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
              • Windows 10 tablet notifications CSP policy

                There needs to be a way to control notifications specifically tablet notifications. Registry entry is this location. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Notifications\Settings\Windows.System.Continuum]

                0 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
                • Create RBAC for Volume Purchasing tokens.

                  It would be grat if we could "tag" a VPP token in order to use RBAC to restrict access to specific VPP tokens.

                  11 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
                  • Extensive Security Settings Control

                    It would be ideal to inhibit infections by enabling the capabilities to control this and similar settings in Andoid.
                    This concept can be applied to Apple and Windows.

                    1 vote
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
                    • dynamic groups use more custom ad attributes

                      More Options in Dynamic Groups, to detect in Example a Office 365 User with a On Prem or Cloud Based Mailbox. This can be used to deploy diffrent Mail Profiles

                      1 vote
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Co-Management  ·  Flag idea as inappropriate…  ·  Admin →
                      • Add Admin Password for Phone Factory Reset.

                        It would be handy that if factory reset of Corporate Device is allowed, users are challenged for a Admin password before being allowed to reset the phone.

                        1 vote
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • Re-run scripts on devices

                          Hi,

                          Two things,

                          1. It would be awesome if it was possible to re-run scripts on devices that already have had the script run on them.

                          2. Schedule script to run on devices on specific time and or date, or re-occurring, would also be a neat feature

                          7 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
                          • bitlocker full drive encryption setting

                            Seems strange there is no setting or 'toggle' in the profile configuration of Intune to allow for bitlocker full drive encryption. The only default is for used space encryption only. can you please enable this?

                            1 vote
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                            • We would like to have the option to block accounts from being added to Android devices in Intune.

                              We are managing the Google Play store with Intune and can provide staff with approved apps.
                              Staff adding personal google accounts are presenting an issue, when they leave the company and P&P is not followed to have their personal information removed from the android device prior to leaving, we are unable to verify the previous google account, rendering the android device unusable.

                              1 vote
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Intune for Education  ·  Flag idea as inappropriate…  ·  Admin →
                              • Company Portal - making it more intuitive and user friendly

                                We have had to shorten the Compliance Grace period from 30 days (default) to 3 days due to a bug it seems where if a user has MS Authenticator app installed and removes Company Portal from device, the user is still able to access O365 resources. This is apparently down to how the auth token is being used in the authenticator app, and the user is able to access resources until the grace period expires. As we have set it to 3 days the experience with users is that their device becomes inactive quicker usually after a weekend or holiday…

                                0 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Apps (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Device state: Exclude device that are not enrolled

                                  Today we can exclude compliant devices from a rule by configuring Conditions - Device State - Exclude Device marked as Compliant. We would like to have the option to exclude Device that are not enrolled.

                                  This would enable us to create different rulesets for personal devices (i.e. Windows 10 at home).

                                  3 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Add the option to deploy a Windows 10 theme

                                    Is it possible add a option where we can deploy a Windows 10 Theme with intune? i have had multiple questions from customers that want to deploy there own theme with Colors, image background sets etc.

                                    6 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
                                    • ability to select group members (to remove multiple users/devices) and search group members

                                      We have groups with a large amount of users (some 300+ members).

                                      It would be useful to be able to search for members within a group.

                                      It would also be useful to be able to select group members and perform actions on them. E.G Remove 20 users from a group at once instead of individually.

                                      8 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  User Management  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Compliance policy only works when location services is set to Always

                                        Currently if you want to detect jailbroken devices and make them non compliant you have to set the location services to Always. If the user disables the location services their device becomes non compliant and theiir access or apps will be revoked. Having location always on have privacy issues and also drains the battery. If a user turns it off by accident then they lose access to apps/resources.

                                        Other MDMs have different solutions for this problem for instance one sends a silent Apple Push Notifications from the server/cloud service and check for jailbroken device or policy updates in a interval…

                                        3 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
                                        • I'd like a profile settings Export option, the current Export on the profiles list is not very useful.

                                          I would like to be able to export the settings from profiles in one tenant and easily import them into another. This would also be good for documenting a deployment, so that you have a baseline to work from, Can you add this functionality?

                                          1 vote
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Documentation  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 86 87
                                          • Don't see your idea?

                                          Feedback and Knowledge Base