A menu that allows you to select the default mail app or the outlook client for the type of mobile device, perhaps once outlook is selected a selection of options appropriate to the application

Is it possible to get Intune to allow Android for Work to be setup in Device Owner Mode? Possibly with the App and NFC "bump" to setup the config.

This possibly one of the requirement from within the NCSC guidance (https://www.ncsc.gov.uk/guidance/eud-security-guidance-android-6)

Would be great to add support for the Fully Managed Device with Work Profile solution set as I am seeing lots of requests for this. Intune is one of the last EMM platforms to support this.

When having an Android device that is enrolled with Intune, enable the possibility to set a configuration policy that automatically enables Web browser access with respect to installing the management certificate on the device. This would simplify device compliance checks quite much.

Currently Intune only supports the deployment of iOS apps not Mac OS apps. To deploy the apps we need to rely on a separate MDM solution at a cost. We're looking to use InTune as a National solution (Australia wide) We have 100 Macs in our environment and they are becoming more difficult to manage.

With Active Directory users syncing into Intune, allow the ability to manually associate users with the devices in the Intune interface. The 'Associated User' section should be a field where I can search for any user in my AD and associate them with the device. I'm aware of the other methods to associate users to devices.

Troubleshooting Intune is frustrating because admins can't see what is happening in the cloud. It would be easier if we could see detailed logs.

At the moment we (IT) have to setup android devices manually and then get the user to enrol to intune.

This is proven difficult to managed and the enrolment rate is only %75.

is there a better way to pre enrol or bulk enrol devices ?

Crashes (Blue Screens, etc) aren't currently surfaced centrally in the reporting section of InTune.

It would be useful to have a view across all endpoints about common crashes to help better manage software rollouts and updates.

This is like the Startup Performance remediation, except it's User Quality of Experience instead.

Possibility to create Custom Reports like SCCM

Currently InTune treats Outlook Mobile as a separate device from the phone/tablet that it is installed on, so Conditional Access for OnPrem Exchange never approves it.

Given that InTune cannot selectively wipe email from Android, Outlook Mobile would be a great solution, if Conditional Access for On Prem Exchange worked.

Without it, we are forced to look for another MDM solution for Android Users.

Currently Apple requires that the private keys are provided by the MDM system and must be included in the Exchange profile. Please add support for existing S/MIME private keys by an upload API function for the PFX files.
SCEP/PKCS profile is no option, because this would only generate new keys and not use the already existing keys of the user.
Thanks!

It could be useful to have a button that allows us to export the result from the device status part in Endpoint Analytics Remediation scripts.

As U.S. Government agencies establish plans to embrace mobile devices as alternatives to traditional desktop computers, special consideration must be given to ensure compliance with HSPD12 / FIPS 201 Personal Identity Verification (PIV) requirements. As such, NIST specification 800-157 outlines how PIV identities can be implemented and deployed directly on mobile devices. The mobile PIV credential is called a Derived PIV Credential.

1. Push bookmarked pages
2. Enable/disable the ability to edit bookmarks on a device
3. Allow and disallow sites from the same profile. For example, I only allow access to certain sites, but I want to blacklist a portion of the site without manually whitelisting everything else available on that site.
4. Option to disable navigation to microsoft site describing Intune. Our kiosk device users don't need that info.

Same as SCCM, I would like Intune to allow me to subscribe to a specific report and send it to recipiants on a specific date\time.
most of the information they need is in those reports. in that way I can save time on creating portal management users and logins and stuff.
just get the necesary information by mail

When publishing new or editing current applications you're prompted every time to sign in using the Microsoft Intune Software Publisher. This is very annoying. Further I see this item in a broader perspective of improving the Software Publisher including the other user voice items related to this topic.

https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/9926370-combine-external-apps-into-one-so-they-can-share
https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/9926388-when-viewing-apps-in-the-list-provide-enough-data
https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/9919752-intune-software-publishing-app-exe-is-not-working

Hopefully improvements regarding the Microsoft Intune Software Publisher won't be postponed looking ahead the new Microsoft Intune Portal

Administrators should be able to subscribe for the intune reports so that those can be available in their inbox directly.