Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

How can we improve Microsoft Endpoint Manager Intune?

← Ideas

Support enrolling a device under MDM for two different organizations

Contractors/Service Provider employees generally have multiple companies they work for. One the company that pays their salary, another the company that they do the work for (clients). Intune currently do not allow enrolling a device with both the companies MDM. The user need to sign out of one MDM to enroll in another and this is a painful process. Should have a easier way to enroll the device under multiple MDM

1,097 votes
Vote
Sign in
(thinking…)
Sign in with: Facebook Google Microsoft Intune
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
You have left! (?) (thinking…)
Arulprakash Selvam shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

71 comments

Sign in
(thinking…)
Sign in with: Facebook Google Microsoft Intune
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Erik Glockling commented  ·   ·  Flag as inappropriate

    As many others have mentioned, this is not possible. This is not a limitation of Intune, but a limitation of MDM on Android and iOS/iPadOS. You'll need to use a combination of MDM/MAM to achieve what you've requested.

  • Tim Fritz commented  ·   ·  Flag as inappropriate

    We don't need to enroll the device in multiple company MDM. Just need to allow additional accounts be added to Outlook app. Should be a simple change to remove this restriction. We can access multiple accounts without Intune MDM profile installed. The preference would be to enroll the device in the person's home company Intune MDM but allow additional email accounts be added to Outlook. Each companies Conditional access Policy forces users to use Outlook app for company email access so unable to use native or alternate email app for the second or subsequent accounts.

  • Huw commented  ·   ·  Flag as inappropriate

    I can see this may be difficult but it is much needed! If it was possible to separate the domain join from compliance. At the moment a device needs to be joined to evaluate compliance, but it should be possible to evaluate compliance independently from being joined. Compliance is just a set of tests so surely a device could be compliant with multiple domains even if not joined, then if necessary 'domain joined' could be added as a compliance test if required, rather than a pre-requisite?

  • Anonymous commented  ·   ·  Flag as inappropriate

    This is a technical impossibility. Only due to the way the system is rolled out - if it containerised each intune setup you would be able to do this.

  • Elliot Smith commented  ·   ·  Flag as inappropriate

    This is a technical impossibility. If it were possible, how would intune handle policy clashes that may conflict? Absolutely no OS would support this idea.

  • Srikanth commented  ·   ·  Flag as inappropriate

    I have been looking for this feature too. Either Android or Intune should support multiple work accounts

  • Akshay Shah commented  ·   ·  Flag as inappropriate

    Really sad to see no reply from MS. I am director in multiple company and would required this feature.

  • Anonymous commented  ·   ·  Flag as inappropriate

    This functionality is needed just like Microsoft Authenticator can support more than 1 organization.

  • Vanessa Baptista commented  ·   ·  Flag as inappropriate

    Having multiple devices for managing different calendars and emails is so impractical!

    Want to be able to see one calendar and reply to all emails I one place, replying using the email it was sent to.

  • Jorge de Almeida Pinto commented  ·   ·  Flag as inappropriate

    In my case....
    My company that pays my salary is managing my mobile phone throught Intune, and that’s OK (e.g. jorge@somecompany.com)

    Now I have. Personal Azure AD tenant with licenses to play with and for 1 single account I have bought a Office 365 Business Premium license. For that single account only I want to be able to read my mail in the same outlook app on the same phone.

    My personal azure ad tenant is NOT managing the mobile phone in any way.

    So my case is:
    • 2 “work” accounts, 1 is for my company and 1 is personal
    • work account from company is managed through intune and mobile is enrolled and read mail through outlook app
    • work account from personal is not being managed in any way nor is there any intention to do so. Just want to read mail in same outlook app and same mobile phone like is possible with a free microsoft account

  • Nagu commented  ·   ·  Flag as inappropriate

    This feature is must for Android. I see iOS supports this. Pls fix this feature.

  • Anonymous commented  ·   ·  Flag as inappropriate

    Same as below - as a consultant working with multiple organizations, it would be ideal to be able to enable MDM on multiple tenants and still use a single phone/tablet.

    Obviously the onus would be on the admin to ensure that profiles don't conflict, but it seems to me that a simple workaround would be to set a "primary" profile that overrides any others. So if settings do conflict, the primary account would win.

← Previous 1 3 4

Ideas: Mobile Device Management (general)

Categories

Feedback and Knowledge Base

(thinking…)