Selective Wipe for Azure AD Joined devices
Please add the option to do a selective wipe on Azure AD Joined/Workplace joined devices.
Azure AD Join and MDM auto enrollment are enabled with Intune and Azure AD Premium. When a Windows 10 Mobile is started for the first time (OOBE) it is possible to “Sign in with a work account” to join Azure AD and auto enroll in Intune. (https://technet.microsoft.com/nl-nl/itpro/windows/manage/join-windows-10-mobile-to-azure-active-directory#how-to-join-windows-10-mobile-to-azure-ad). When a Windows Mobile device is configured this way Single Sign On works for Mail, Calendar, Edge and the Business Store, which is great. But when the Selective Wipe option is initiated from Intune it does nothing with the MDM registered device. Only a Full Wipe works.
For personal devices "Add Workaccount" there is the same problem. Specially for this devices the not working feature "Selective Wipe" is a problem.
Frans Oudendorp
shared this idea
2 comments
-
Ben Christian
commented
I don't know why this isn't already a feature. Burned a week investigating and testing this only to find it doesn't work. What's the point of allowing BYOD or CYOD windows devices if you can't remove company data from them?
-
Anonymous
commented
I don't know how only 16 people have voted for this (at this time). Surely being able to remotely wipe/lock an AAD joined device should be an out-of-box feature?