Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Disable Hardware Encryption and force Software encryption During AutoPilot

    referring into MS Articlehttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180028 to force of use software Encryption it require to configure GPOs which is not applicable at the AutoPilot.

    we might be able to add the required registry values using Powershell, but the issue is that the machine is pulling the policies randomly, and there is a chance that the machine is getting the Bitlocker Policy before adding the required registry Values.

    it will be a good Idea if we can add this option into the Bitlocker configuration in order to force of using Software Encryption, or we can built dependencies for Configuration Policies in order…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. autopilot assign device to users in bulk

    It's very nine to be able to assign devices to Users in Autopilot. I would like assign devices to users in bulk (directly in the CSV autopilot import file och with Powershell.
    'Thanks

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Phone-Sign in doesnt appear to work

    The Phone-sign in option doesn't appear to work for Intune or GPO for Windows Hello for Business.

    Please can this be configured for Hybrid Azure AD Joined devices.

    Microsoft Support confirmed its not a working product yet in the portal (although the option is there).

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Install Intune Apps through PowerShell script or API (GraphAPI) or any other

    This will help admins with AutoPilot and having control of what gets installed in what order plus have full control of the deployment.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Register Windows AutoPilot devices direclty in the Intune Azure Portal

    Since there is a management portal for AutoPilot devices in Intune it would be great if we could register the devices directly there. Instead of using the Microsoft Store for Business and then using the sync, which is only manual at the moment.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →

    As of the October 2018 release, you can apply Autopilot profiles to enrolled Win 10 devices that have not already been registered for Autopilot. In the Autopilot profile, choose the Convert all targeted devices to Autopilot option to automatically register non-Autopilot devices with the Autopilot deployment service. Allow 48 hours for the registration to be processed. When the device is unenrolled and reset, Autopilot will provision it.

    Does that get you what you want?

  6. Synced from Active Directory Accounts cannot show Full Name in Windows Pilot (Azure AD Joined)

    Only In Cloud Accounts are shown Full Name in Windows AutoPilot at the end of the deployment via Azure AD Joined. Can it be made possible that Synced from Active Directory Accounts also shown Full Name after Deployment and not only Company name?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Full Zero touch: Add Wifi config in the Autopilot profile

    As of today, October 16th 2019, the end-user has to connect manually to the network if using Wi-Fi during the Autopilot deployment process. This has many caveats where inefficieny, security and breaking the later configuration for Intune Wi-fi profiles with certificates if using the same network as during setup.

    Please include the option to apply Wi-fi configuration using certificates during the onboarding process vi

    See reference:
    "For devices with an Ethernet connection, no user interaction is required; for devices connected via Wi-fi, no interaction is required after making the Wi-fi connection (choosing the language, locale, and keyboard, then making a…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Import Autopilot CSV Generated with "-Partner" via Intune Portal / Store for Business

    Microsoft supports the Autopilot Device Registration for Surface Devices with "Serial# plus Manufacturer name plus Model Name" but without an Partner Portal im not able to upload an CSV without a Hardware Hash because the checking of the CSV Fails.

    Can you Implement an way to Register Surface devices this easy way without the Need of a Partner / Partner Portal?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add existing devices to an Autoilot profile

    When Intune inventories a device add inventory for the H/W hash so that we can add devices easly to AutPilot from Intune. This is for Windows 10 devices that has been managed by Itune prior to when Autopilot came out or for customers that has not used AutoPilot, but has enrolled via bulk or 1:1 into Intune and wants to take advantage of AutoPilot in the futre.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. 3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow using a FIDO2 key for Windows Autopilot provisioning process

    Currently it seems at the Welcome screen of a machine setup for Windows Autopilot we can't use a FIDO2 key to login, however the Authenticator passwordless feature works. Tested out the new fast ring Insider Build .ISO images and haven't seen the ability to initiate the process with a FIDO2 key, only the ability to use the key at the normal login screen. I hope for this to be added soon for further testing with FIDO2 keys, also when it is added allow the Autopilot wizard to prompt for which Azure AD account you want to provision the machine with…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  12. AutoPilot Custom Name Option - Not Preset Pattern

    I like the idea that you can set a preset pattern for devices, but it would be nice for you to have the option in a AutoPilot profile where the end user can set the name themselves. We have technicians that generally enroll these devices and they need to be named a specific naming convention. We have 50k devices for teachers and students and they must be named a certain way.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  13. Improve Windows application deployment

    I think Intune could really do with some work on the features that are required in order to make EM+S the cloud-first management platform that Microsoft want it to be. Along with some of the features that are five minute tasks in Group Policy but end up having to be implemented in PowerShell in Intune (I have no idea how admins coped before PowerShell support existed in Intune) it would be great to see proof that Microsoft realise that not every application is a nice modern bundle, or published into the Windows Store, or exists as an MSI that behaves…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Data copy tool for replace scenario

    Data copy tool for replace scenario
    We understand that MSFT recommends using One Drive for Business for this purpose. Yes, It works for most of use cases but not for all (use cases of restricted data). In the past, MSFT had Windows Easy Transfer tool but that is not available now. We need an simple GUI utility tool for transferring user data from one computer to another (assuming both computer are available in network). Tool should have capability to click and select folders, PST, IE, Edge, Chrome favorites, mapped network drives, printers. This tool will be operated by the end…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Imported Autopilot config should work like corporate identifiers

    Currently if you have device restrictions configured and deployed users are unable to enrol devices which is much easier to manage. The work around for iOS and Android is to add the device IMEI or serial as a Corp identifier then the device can enrol as a Corp device. Please make this the same for auto pilot imported info or add Windows serial to the Corp identifiers list... this is holding up a lot of deployments until it is an available feature that alot of customers are eager to see..

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  16. configuring windows hello autopilot

    Need ability to disable Windows Hello requirement during enrollment via AutoPilot. Currently, this is available if using Intune. After working with support, they explained this capability is made available to 3rd party MDM's but they must have this capability baked into their solution. Since 3rd party MDM enrollment is not completed until after completed the OOBE setup, this will prove difficult for most MDM providers. This should be configurable in the Autopilot enrollment policy or configurable via Azure AD. This is currently preventing us from adopting Autopilot.

    Per support:

    Provider/ProviderID/FirstSyncStatus/ExpectedPolicies
    Required. Added in Windows 10, version 1709. This node contains…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  17. HardwareID in White Glove QR code during OOBE

    With white glove, you get an QR code with some ID. However, it doesn't contain the hardware ID/hash. It would be wonderfull if it did, because a deployment engineer could use a simple app on a smartphone to register the machine with autopilot and continue with the whiteglove deployment.

    E.g. create a button to show it when the device is unknown at any tennant.

    Using a powershell script after OOBE is completed is just cumbersome and timeconsuming.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  18. "What If" simulator for autopilot

    Similar to the "What if" analyzer for conditional access, it would be nice for AutoPilot in the Intune portal (or Business Store mgmt function) to get information about a specific device, to see what Autopilot and intune policies should be applied to it if that device were to be reset/re-enrolled right now.

    Currently having difficulty with autopilot for a couple machines, but not sure what profile is supposed to be applied or why it's not working. I like how AAD added their "What if" analyzer and think Intune/Autopilot could benefit from something similar.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow individual assignment of Intune AutoPilot profiles for devices added from the Partner Portal

    When I add devices for AutoPilot via the partner portal, the AutoPilot profiles that have been set up in Intune are not available for assignment. At the moment, it seems that, because Intune AutoPilot profiles are assigned via group, the profile doesn't get automatically assigned to new devices until after it has been enrolled (especially if using dynamic groups) which means that settings such as device name don't apply until the machine is rebuilt.

    Please could we either have the ability to assign Intune AutoPilot profile when we import it into the partner portal,

    or

    Please could we be allowed…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  20. "Enroll On Behalf Of" for Windows 10/AutoPilot

    We are fortunate enough to have a deployment team at our company, and giving the techs the ability to enroll a Windows 10 device on behalf of another user in the company would ensure minimal downtime between transitions of new machines. In theory this would download all policies and software over a wired connection. Taking this a step further to allow this to work during the AutoPilot process would be great as well.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base