We should be able to locate a lost or stolen Android device.

Support for Chromebook/Chrome O/S devices so they can be managed in BYOD scenarios, i.e. setup for Wireless, mail profile, security etc...

Widgets are not available on our BYOD managed Intune devices. There does not seem to be settings in the restriction profile to manage widgets. Our users have been very vocal about the loss of mail and calendar widgets unde Android Enterprise Management.

Thank you

Is it possible to get Intune to allow Android for Work to be setup in Device Owner Mode? Possibly with the App and NFC "bump" to setup the config.

This possibly one of the requirement from within the NCSC guidance (https://www.ncsc.gov.uk/guidance/eud-security-guidance-android-6)

This doesn't currently happen and is apparently "working as designed"

We have a large Samsung deployment where enhanced control of the OS update flows are required.
Samsung EFOTA allows us to do this.
Please add support for this feature.
https://www.samsungknox.com/en/solutions/it-solutions/samsung_e-fota

When a device is configured with Android Enterprise and the Microsoft Managed Home Screen in kiosk mode (as per here https://docs.microsoft.com/en-us/intune/android-kiosk-enroll), it is not possible to deploy LOB apps to these devices. If apps are sideloaded manually, they're automatically deleted by the device policy.

Being able to deploy LOB apps (or creating a whitelist) for Android Kiosk devices would allow Android Kiosk mode to be used to its full potential.

When Intune Compliance or MDM policy is applied to Android Devices, pattern unlock is disabled. Please add Allow Pattern Unlock to the list of password options.

https://docs.microsoft.com/en-us/intune-classic/deploy-use/android-policy-settings-in-microsoft-intune

Would be great to add support for the Fully Managed Device with Work Profile solution set as I am seeing lots of requests for this. Intune is one of the last EMM platforms to support this.

Disable installation from unknown sources using Intune policies on Android devices. Android OS has an option where user can disable unknown sources so they can install THIRD PARTY apps.

setting--> General--> Privacy--> security-->under Phone Administrators -->Unknown sources

Unknown sources should be disabled for security purposes.

These apps are not tested and can control viruses hence should not be allow and is NOT on the official PLAYSTORE.

We need an option from the console for Admin to disable this option so user cannot change and allow unknown sources to be install onto the company's devices.

We need the ability to add system apps like the system camera or phone app to the work profile. Other EMM vendors already support this feature.

Please support setting up Android for Work with G Suite managed accounts.
https://support.google.com/work/android/answer/6174046?hl=en&ref_topic=6174026#bind_third_party
https://developers.google.com/android/work/setup#google_accounts

Android devices must be able to have their proxy setting set when a wifi profile is rolled out.

When having an Android device that is enrolled with Intune, enable the possibility to set a configuration policy that automatically enables Web browser access with respect to installing the management certificate on the device. This would simplify device compliance checks quite much.

At the moment we (IT) have to setup android devices manually and then get the user to enrol to intune.

This is proven difficult to managed and the enrolment rate is only %75.

is there a better way to pre enrol or bulk enrol devices ?

We need ability for each user to reset their Android for work (workspace) through portal.manage.microsoft.com. If this can't be done, there should be a way to set up automatically in portal.azure.com.

Deploy weblinks to Android for Work Devices

Android for Work Web Clips are fundamental to using a mobile device for work. You really need to have this functionality included in your product.

Thanks,
Jonathan
(split per-app VPN on Android to separate request)