Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Android enterprise wifi

    Would like to be able to configure WPA2 enterprise for android with the option of sending a username and password to the device. The NDES\scep method is too painfull and unreliable

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
  2. Turn on Defender Periodic Scan option from Intune

    Turn on Defender Periodic Scan option from Intune

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Endpoint Security Policies  ·  Flag idea as inappropriate…  ·  Admin →
  3. Tamper protection degraded, running M365 Business Premium

    Tamper Protection is turned on by default in Win10, but not if you buy M365 Business Premium.

    My testing of this:

    • Clean ISO image with Win10_21H1x64 (Pro / Ent) installed on standalone local user computer: Default, Tamper protection is on.

    • Clean ISO image with Win10_21H1x64 (Pro / Ent) installed in OnPrem Default, Tamper protection is on and can be managed via GPO.

    • Tested on another Tennant, clean ISO image with Win10_21H1x64 (Pro / Ent) installed with Azure AD joined: Default, Tamper protection is on and can be turned on and off.
    This is with M365 Business Standard…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Endpoint Security Policies  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add option to set Cloud to Government in Company Portal Settings on Android

    iOS Company Portal app has setting to choose Public or Government cloud. Android Company does not have this option and is useful for government customers. Some third-party websites, like Apple Deployment Manager have issues redirecting without setting this in Company Portal Settings.

    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  5. Overview pane is not consistant with the one that we see under Device and User status

    I have a policy that is being pushed to few Devices. When i click on Device status, it shows device list. When i click on User status, it does not show any user. But when i go to the Overview pane, it shows User status and device status as same and does not reflect the same information that is under the User status and device status. Please help to fix this discrepancy

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  6. Block third party email domains such as hotmail, gmail, yahoo, iproton, icloud

    There should be a straightforward utility to block all third party email providers such as Hotmail, Gmail, yahoo so users can only access company email domain for communication.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. More options for Enrollment Restrictions

    Restrict Device Types. e.g. allow only iPhone 8 but not iPhone 12

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. Automatic prompt for admin when reaching the Intune device limitations.

    From the article: https://docs.microsoft.com/en-us/mem/intune/enrollment/enrollment-restrictions-set. We can't enroll the devices after reaching device limit restriction. For Intune administrators, can we have proactive method(alert/report) to know who almost reach the limit?

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. block intune enrollment by device model

    As of today you can only block enrollment by manufacturer. It would be a game changer if you could block by model type. Some customers have an approved hardware list and only approved to have certain devices and hesitant with switching from BB to intune because of it.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  10. Split iOS Configuration Profiles into Constituent iOS MDM Profiles

    Currently, iOS configuration profiles are lumped together into broad categories, such as Device Restrictions and Device Features, which contain multiple device profiles within them. The problem with these broad configurations is that they obfuscate what you are trying to configure with each profile.

    It may seem like you are making it easier on IT admins, but the IT admins have the knowledge of what they want to configure. Right now, the broad categories make it needlessly more complex.

    Thank you!

    6 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Device Configuration Profiles  ·  Flag idea as inappropriate…  ·  Admin →
  11. Schedule reports for e-mail from InTune portal

    Schedule reports for e-mail delivery from InTune portal (currently only an option from Power BI)

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add an "Edit" menu option to the "..." button for objects and policies

    To make the Admin Console more intuitive, it would be nice to add an "Edit" menu option to the "..." button for objects and policies. Today there is only a "Delete" menu option when clicking on the "..." button for many objects and policies.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  13. Prompt for permission to close Office apps on behalf of the user before Office redeployment

    On deploying a new Office version from Intune, if existing Office apps are open, the system should ask for permission to close those apps on behalf of the user, with options 'OK' and 'Postpone' . This is really important as Office apps like Teams/Skype For Business are usually in the startup list, and they always run in the background unless explicitly turned off by the user, which means most Intune Office redeployments will fail with the error message that Office apps were open.

    7 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Apps config and deployment  ·  Flag idea as inappropriate…  ·  Admin →
  14. iPad OS and iOS 15 beta support

    I have recently upgraded to iOS 15 Beta on my iPhone and iPad OS 15 Beta on iPad, however, when I am trying to download the profile after Singing in into Company Portal with Official email ID, it either shows "Safari can not install the Profile due to an Unkown Error" or " Bad Profile - This Profile is corrupted and can not be read".

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  15. bulk actions

    Break out bulk actions into their own separate permissions. I would like my helpdesk to be able to wipe a single device but not multiple machines at once.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  16. Shut Down (supervised only) Bulk Action for iPad

    Under Bulk Action Be able to send a "Shut Down (supervised only)" iPad signal. So that any equipment left on during breaks gets shut down.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Intune for Education  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow updating Win32 app content

    One of the most common tasks you need to do with applications is to update content, because you need to update either the application installation files or the script you are using to install the application.

    Many times you also create a Win32 app just to run a PowerShell script and you need to make changes to your script. Some cannot make a perfect PowerShell script in the first try.

    You just waste so much time when you need to re-type all other Win32 app settings (name, version, command lines, detection method) if you need to update the content.

    Please…

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Apps config and deployment  ·  Flag idea as inappropriate…  ·  Admin →
  18. 1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  19. fix dependency viewer

    We use quite a long chain of dependencies (20+) for our business applications since we want to ensure installation in a specific order. However any time something is accidentally changed in the chain we spend an unnecessarily long amount of time figuring out which dependency is no longer set correctly.
    This is in large part because dependency viewer in MEM is just awful. Why is there no convenient way to see all of an application's dependencies in 1 click? It would also be great to be able to see the other aplications that have the one you are viewing as…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  20. Improve MAM-WE registration experience on Android

    When a user attempts to register an app for MAM-WE on Android, the experience is a little bit confusing. They're instructed install the Company Portal app and, as you'd expect, the first thing they do after installing it is log in. Now you have a personally enrolled device instead of a MAM-WE registered app, a confused end user and a service desk call.

    It would be great if instead of requiring Company Portal, we could use Authenticator instead like on iOS. This would create a much more consistent experience all around. Barring that, maybe a 'Company Portal Lite' app that…

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 190 191
  • Don't see your idea?

Feedback and Knowledge Base