Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add LAPS support into Intune

    Add Microsoft Local Administrator Password Solution into Intune

    1,741 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    42 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow powershell scripts to be used with Hybrid Joined devices

    Currently its only possible to run Powershell scripts against Azure Domain Joined Machines. Could allow powershell scripts to be run against Hybrid Domain Joined machines?

    669 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    34 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  3. Disable Windows Hello on Windows Devices after Intune Enrollment

    There is no way of disabling Windows Hello after Intune enrollment, and when using mapped SMB shares and PIN logon, you always get prompted for a username/password to browse the folders.

    We need the ability to disable Windows Hello (PIN/bio-login), and force Password login on Windows devices already enrolled in Intune.

    551 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    31 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  4. Please allow setting of desktop backgrounds and lock screen on Windows 10 Pro devices via Intune MDM

    Device configuration setting s for Windows 10 allow setting custom desktop background and a lock screen image via a URL. this does not seem to work against Windows 10 pro, only Enterprize or Education.

    Can this feature please be enabled on Windows 10 Pro devices?
    Thanks

    133 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  5. Automatic enrollment for Hybrid Azure AD Joined Devices

    Missing the ability to automatically enroll Windows 10 devices that are hybrid Azure AD Joined, for agentless management. This would favour the use of agentless management for domain joined devices.

    128 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  5 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  6. Enable Remote Lock for Windows 10 desktop devices

    Enable this feature for windows 10 desktop devices which is very useful/essential for PC used by public.

    122 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to prevent workplace join, allow AAD join only

    All other platforms (iOS, Android) support enrollment restrictions to block poersonal devices. Windows 10 needs the same. Please provide the ability to prevent workplace join.

    97 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. Fresh Start using Intune - remain enrolled

    When performing a Fresh Start using Intune the Device stays Azure AD joined, however it is unenrolled from Intune.
    It would be great to have this as an option to remain enrolled, if not we lose management capabilities.
    https://docs.microsoft.com/en-us/intune/device-fresh-start

    91 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  9. Blocking and Allowing URL in Windows 10 using Microsoft Intune.

    HI Team,

    We want to Blocking and Allowing URL in Windows 10 using Microsoft Intune. Customers re waiting to see Blocking and Allowing URL option in Intune Port. Same option is available for Mobile Devices.

    Let me know when we can expect this feature

    Good Day!!

    Regards,
    Sushant Koul

    70 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  10. Identify corporate-owned devices with serial number for Windows PC

    We can create and import a CSV file that lists IMEI numbers or serial numbers. Intune uses these identifiers to specify device ownership as corporate during device enrollment. But we can only declare serial number for iOS, macOS, and Android devices.
    We need to declare serial number for Windows PC to identify devices as corporate-owned.

    69 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  11. Manage Intune Windows 10 clients with PowerShell DSC

    To enforce certain Windows settings like disabling SMB v1.0, it would be great if Microsoft could integrate PowerShell DSC with Intune. This gives the administrator more control and new reporting/compliance options.

    68 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  12. Deployment of Windows applications in other regions than tenant region must speed up

    Applications that are prepared for Windows deployments will be downloaded fine if the Windows client is in the same region as the tenant region. But if the Windows client is part of an international enterprise and is located in another region, the download speed breaks down to 2-3 Mbit/s (we are assuming, that application installation packages don‘t get replicated to other regions). With TCP limitations in mind we were able to download large files from a cross-region Azure storage with up to 30-50Mbit/s. Intune should work with that as a minimum. But what would even better: Intune must be capable…

    60 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  13. Warranty lookup to major IT vendors.

    It would be great to have Dell, Lenovo, HP system warranty looked up for all systems.

    58 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add the option to deploy a Windows 10 theme

    Is it possible add a option where we can deploy a Windows 10 Theme with intune? i have had multiple questions from customers that want to deploy there own theme with Colors, image background sets etc.

    58 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  15. Run 'Fresh Start' as part of Auto Pilot

    We'd like to run fresh start as part of auto pilot so we can remove the OEM installed applications. At the moment it only appears possible to do this manually after the user themselves have signed into the laptop

    56 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  16. Want to enable Remote lock in windows 10 that enrolled as mobile device

    In Widnows 10 registered as a mobile device
    We want to allow remote lock. We believe that it is a very effective when we proposed to customers in conjunction with the Windows 10 and Intune.
    Also, I think depends on the function of the OS,
    If you are not at least support, when you right-click to select the device
    I want so it can not be selected.

    55 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  17. Windows 10 MDM inventory should include serial numbers

    Windows 10 MDM manage devices does not have serial number in Intune as part of the inventory like IOS have.
    Will like to get more inventory data on Windows 10 devices with the MDM stack.

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  18. Ability to limit CPU usage from the Host Process for OMA-DM Client

    We've noticed that our Autopilot (intune managed) pc's occasionally have CPU spikes during the day at seemingly random times (probably based on the Intune scheduled tasks for doing OMA tasks), those spikes in CPU usage are revealed to be due to the Host Process for OMA-DM Client.

    This can spike to over 50% cpu and when in conjunction with other CPU heavy tasks can reduce a modern i5 computer to... a slow computer. This is immediately noticeable as it will trigger a FAN to start, so users DO notice it, regardless of the performance degradation.

    Please give us the ability…

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  19. Fix "Remediation failed" messages when applying UserRights CSP

    If someone try to enforce privileges to a Win10 Enterprise device (using CDATA tricks for formatting...) using UserRights CSP, these settings work fine on the enduser device.

    However, there is no way to know if they have been applied properly, as Intune GUI always reports such settings with "Remediation failed".

    The Intune tech support told us, that it is because "If the value returned by the Get operation doesn't match the value supplied by the Add or Replace operations, then Intune reports a compliance error."
    (source : https://docs.microsoft.com/en-us/intune/custom-settings-windows-10#find-the-policies-you-can-configure).

    From engineering/IT point of view, it is much appreciated to have…

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
  20. Real-Time Protection for Thrid Party Antivirus

    Team, we have a lot of clients who use third party Antivirus software. We also use compliance policies with the Real-Time protection setting. We have noticed that machines running third party Antivirus get flagged as non-compliant because Real-Time protection only reports back to Azure if we use Windows Defender. Can you please extend this functionality so that third party Antivirus software is also able to update the Real-Time protection setting?

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 10 11
  • Don't see your idea?

Feedback and Knowledge Base