Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support exporting and importing conditional access policies using PowerShell

    Support exporting and importing conditional access policies using PowerShell. This would be handy for backup purposes, but also for re-use of the same policy rules between test and production tenants.

    The Microsoft Graph API currently do not have any REST APIs for accessing and creating conditional access policies: https://developer.microsoft.com/en-us/graph/docs/api-reference/beta/resources/intune_graph_overview

    Also vote under Azure AD: https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/19198480-support-exporting-and-importing-conditional-access

    364 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  2. Secure authentication within PowerShell scripts for Intune MDM

    We would like to authenticate to services, like Azure Storage or Azure SQL from an Intune MDM PowerShell script.

    However, with PowerShell scripts in Intune MDM the source, including passwords are visible in plain text, for instance when you review the log files in C:\ProgramData\Microsoft\IntuneManagementExtension\Logs.

    We would like a secure way to safely authenticate with different services from PowerShell scripts in Intune MDM. For instance by being able to preconfigure one or more Credential- or Variable Assets passed (as parameter?) with the PowerShell script configured.

    A credential source provider could be Azure Key Vault or Azure Automation Credential- and Variable…

    173 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow Graph to update corporate device identifiers

    The only method of getting corporate devices identified in Intune is to upload a CSV.

    We'd like the ability to use native PS commands or Graph API to add new devices in as they are purchased.

    Graph allows me to get devices after they've been enrolled, but I want to add them in pre-enrollment.

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  4. Assign mobile application to user directly(not through the AD Group)

    There is the application flow:

    1. Admin uploads a mobile application(mobileAppId) as a blob to the Intune web Portal and configures it.
    2. User X(Non-Admin) using his mobile device has to install a mobileAppId to his or selected User's(targetUserId) mobile device which was enrolled as well. He(User X) should have the ability to click the button "Install". After clicking the request should be created and sent to the Microsoft Graph API(Intune) or any other(if exists) API. API should send the notification back to the targetUserId's device. After the confirmation message about starting the application installation process should be shown on…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  5. Run PowerShell scripts in a 64-bit environment

    PowerShell scripts deployed through Intune run in a 32-bit environment, which causes issues when executing 64-bit commands. While this can be worked around by calling the commands through sysnative, it's extra hassle.

    A more robust way of targeting scripts based on system architecture and having them execute in a 64-bit environment where available would remove the need for these work-arounds.

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  6. Manage device information from PowerShell cmdlets

    I've looked all through the MSONline module, and don't see any options to manage my end user devices. I need this information to write a connection into serviceNow, because of some business needs. I'm considering using Matt Graeber's excellent .net relection tool, decompile the cmldets and make my own!

    Is there a method I'm missing to get to devices from PowerShell?

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  7. Provide a way to access bitlocker recovery keys programmatically

    Provide a way to access bitlocker recovery keys programmatically.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  8. Graph API supports filter on all data fields

    Graph API supports filter. But when try to filter on the wiFiMacAddress when query managedDevices on Intune by property ‘wiFiMacAddress' like
    https://graph.microsoft.com/v1.0/deviceManagement/managedDevices?$filter=startswith(wiFiMacAddress, 'macAddressValue’), or
    https://graph.microsoft.com/v1.0/deviceManagement/managedDevices?$filter=wiFiMacAddress eq 'macAddressValue’,
    It returns all managed devices, i.e., the filter doesn’t work. Filtering on other data properties/fields such as 'deviceName' or 'lastSyncDateTime', it works as expected.

    It will be nice if Graph API can support filtering on all data properties/fields, or at least document which fields work and which don't.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide policy description trough graph API

    Add a brief description for every Intune policy within the graph API (like in the Intune portal). This would simplify and improve the report and documentation capabilities with graph.

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  10. Re-run scripts on devices

    Hi,

    Two things,

    1. It would be awesome if it was possible to re-run scripts on devices that already have had the script run on them.

    2. Schedule script to run on devices on specific time and or date, or re-occurring, would also be a neat feature

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow viewing Device Management Powershell scripts in the portal

    Having the ability now to use powershell scripts to manage devices is pretty neat. It would be even greater though if the uploaded scripts were readable (and maybe even editable) from the Intune portal, Thanks!

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  12. Improve/offer decent REST API for all Intune features

    We are still in eval phase, and are supposed to use Intune with more than 100000 laptops/desktops in our company.

    This means if the laptops have a 3years lifecycle, then there are more than 100 devices that must be deleted every day from Intune DB across the globe.

    Please add ability to delete devices using a REST API, based on criterias like "Last Contact Date", as it is also impossible to know if a device has been stolen/lost/sold to broker. So we must be able to extract the attributes shown in Intune for each device, like we do currently with…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  13. Provide the capability to set Max run times for the Powershell scripts within the Intune Portal

    Provide the capability to set Max run times for the Powershell scripts within the Intune Portal.
    Which is then honored client side by the Intune Management Extension.

    Current default is 10 Mins, which cannot be changed as its baked into the service code

    I.e Microsoft Intune > Device configuration > PowerShell scripts > Add > Settings > Script Settings > Max Runtime

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  14. formally support Custom policy, OMA URI Supported Operation - Get

    I am looking for Intune to formally support Custom policy, OMA URI Supported Operation - Get

    That is, Get the value of the node/policy.

    I have been using Intune since beta.

    I love the new changes, and an a major fan of MDM/OMAURI management.

    I'm not beleiving that I see a this hole in functionality.. you can deploy a configuration, not only just report on it??

    I am not seeing support for GET - which is a Baseline Command to the OMA URI heirarchy, respondent on a mdm enrolled device.

    Get is the same as Read, and is consumed by…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  15. Bypass Activation Lock Code - Bulk Action

    We would like to have a way to get all the Bypass activation lock codes of our apple iOS supervised devices and get a .CSV file for better performance (Like an bulk export button). It saves time to us from looking into each device and get the code by separate.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  16. More Powershell capabilities for Intune

    It would be nice to have more powershell commandlets to use for managing Intune related actions.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  17. We want to see the results of our scripts running

    We want to see the results of our scripts running. Under the UI, the export doesn't include all the fields. Under graphAPI deviceManagementScripts/{deviceManagementScriptId}/deviceRunStates only lists 1000 results and pagination is not available.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  18. PowerShell Scripts - Use -NoProfile switch

    When the management extension runs PowerShell scripts in the user context, the user's custom PowerShell environment is loaded.

    Depending on the code in the custom environment, this may cause the script fail or report the status incorrectly.

    I would suggest adding an option to add the 'NoProfile' switch when deploying scripts.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  19. Include device serial in the /managedDevices/ data

    Please include the device serial numbers for device data obtained here /managedDevices/

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  20. Provide API call instructions to implement all portal actions (preferably on the same page)

    Provide API call instructions to implement all portal actions (preferably on the same page)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Scripting-Graph/PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1
  • Don't see your idea?

Feedback and Knowledge Base