Ideas
What features would you like to see?
All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.
Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.
-
Locate or find a lost Android device
We should be able to locate a lost or stolen Android device.
2,255 votes -
Support for Chromebook/Chrome O/S devices
Support for Chromebook/Chrome O/S devices so they can be managed in BYOD scenarios, i.e. setup for Wireless, mail profile, security etc...
1,663 votes -
Enable Google Backup Services on Managed Devices
On Managed Devices we cannot enabled Google Backup. Users add their own Google account in the Play store and want to create/restore backups.
479 votes -
Allow LOB apps on devices managed in Android Kiosk Devices (COSU)
When a device is configured with Android Enterprise and the Microsoft Managed Home Screen in kiosk mode (as per here https://docs.microsoft.com/en-us/intune/android-kiosk-enroll), it is not possible to deploy LOB apps to these devices. If apps are sideloaded manually, they're automatically deleted by the device policy.
Being able to deploy LOB apps (or creating a whitelist) for Android Kiosk devices would allow Android Kiosk mode to be used to its full potential.
352 votesI was talking with our Android team about this one. They said “This is already supported. However LOB apps must be deployed by either uploading through the Google Play iFrame in Intune or using a dev account for Google Play.”
Does that satisfy the spirit of the request? -
Include system apps for Android Enterprise (AfW) Work Profile
We need the ability to add system apps like the system camera or phone app to the work profile. Other EMM vendors already support this feature.
335 votes -
Android for Work Device Owner mode
Is it possible to get Intune to allow Android for Work to be setup in Device Owner Mode? Possibly with the App and NFC "bump" to setup the config.
This possibly one of the requirement from within the NCSC guidance (https://www.ncsc.gov.uk/guidance/eud-security-guidance-android-6)
301 votesHi, if you caught our announcements at Ignite, we announced that we will support device owner mode for Android fully managed corporate devices. It will preview by end of year. Check out our EMS blog for more info
https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/What-s-New-with-Microsoft-Intune-and-System-Center-Configuration/ba-p/262542
So we’ll call this “started”. :-)Also, we’ve been supporting Android kiosk mode since July.
-
Android Enterprise Fully Managed Device With Work Profile (COPE)
Would be great to add support for the Fully Managed Device with Work Profile solution set as I am seeing lots of requests for this. Intune is one of the last EMM platforms to support this.
246 votesI can confirm that work on this has started and we hope to have a public preview sometime this year. Thanks for your patience!
-
Automatically enable Web Browser access for Android devices
When having an Android device that is enrolled with Intune, enable the possibility to set a configuration policy that automatically enables Web browser access with respect to installing the management certificate on the device. This would simplify device compliance checks quite much.
243 votesI can confirm this work is started, but don’t have a timeframe to share.
-
Remove Android for Work apps from Intune when they've been removed from Google Play for Work
This doesn't currently happen and is apparently "working as designed"
231 votes -
Add support for Samsung E-FOTA
We have a large Samsung deployment where enhanced control of the OS update flows are required.
Samsung EFOTA allows us to do this.
Please add support for this feature.
https://www.samsungknox.com/en/solutions/it-solutions/samsung_e-fota216 votes -
add Allow Pattern Unlock to the list of password options
When Intune Compliance or MDM policy is applied to Android Devices, pattern unlock is disabled. Please add Allow Pattern Unlock to the list of password options.
211 votes -
Display phone number for Android Enterprise
Phone number should be inventoried on Android Enterprise Dedicated and Fully Managed devices.
195 votes -
Support for Android for Work enrollment with G Suite
Please support setting up Android for Work with G Suite managed accounts.
https://support.google.com/work/android/answer/6174046?hl=en&reftopic=6174026#bindthirdparty
https://developers.google.com/android/work/setup#googleaccounts161 votes -
Android Dedicated Device - Enforce PIN for Device Unlock
Enable a way we can enforce a policy to set a PIN code on Corporate Owned Dedicated Devices (Kiosk mode) PIN at a device level.
At present we are having to get our onsite IT staff to manually set a PIN on the device after enrollment, but still the users could go in and change the lock screen method from PIN code to Swipe, thus removing the security aspect.
147 votesOur Android team says:
“We need to learn more about this scenario. Kiosk devices are typically open for use while users sign into apps separately. Would like to know why a device level PIN for a AE dedicated enrolled device provides security.”
Can you tell us more? -
Allow Outlook Notifications on Smartwatches via Android Wear
Allow Outlook Notifications on Smartwatches via Android Wear -
Today no Meeting or Mail notification can be displayed on a smartwatch while outlook is protected via intune work profiles
122 votes -
Please update Intune company Portal compatible with OPPO device to enroll as Android Enterprise
Device enrollment will stuck in progress when trying to enroll OPPO device.
It stuks "setting up your work pofile" on Intune Company portal, and work profile Intune company portal won't shows up.from OPPO support side answer is this below.
Due to the Intune company portal is not compatible with OPPO device currently, so if Intune company Portal will be updated as compatible with OPPO device, issue will be solved.
Thank you.
120 votes -
Less complex Android passcode while resetting a passcode
When you reset a passcode on an Android device, the new temporary passcode is WAY too complex: 15 characters and multiple special characters. It is just a temporary passcode for a mobile device, not a passcode to launch nuclear missiles! :-)
Make this temporary passcode much less complex. You could use e.g. the same mechanism that AAD uses for passwords to new user accounts:
Pass1234
(A capital letter + 3 small letters + 4 numbers).
This kind of temporary passcode is so much easier to enter to a mobile device.
103 votes -
Disable unknown sources on Android devices.
Disable installation from unknown sources using Intune policies on Android devices. Android OS has an option where user can disable unknown sources so they can install THIRD PARTY apps.
setting--> General--> Privacy--> security-->under Phone Administrators -->Unknown sources
Unknown sources should be disabled for security purposes.
These apps are not tested and can control viruses hence should not be allow and is NOT on the official PLAYSTORE.
We need an option from the console for Admin to disable this option so user cannot change and allow unknown sources to be install onto the company's devices.
99 votes -
Android entreprise - Disable One Lock password
It seems that by default on android entreprise when you ask for a password on the work profile only, android choose to have the same password on both personnal and work profile.. It is called the One Lock option.
Would it be possible to disable this option ?
94 votes -
Android Enterprise Fully Managed enrollment with qrcode afw#setup MFA
It is not possible to enroll phones using qrcode or afw#setup method when user is MFA enabled. When the step “sign in to Microsoft” appear the user is MFA challenged but because the phone is in a state not accepting phone calls or SMS from MFA provider the challenge is timing out. Please don’t tell us to turn off or use bypass MFA for users to enroll.
92 votes
- Don't see your idea?