Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Autopilot without hardware hash

    Logging on with Azure AD credentials to an OOBE Win 10 should detect whether the user is licensed for Intune and Autopilot is configured. If not then the necessary information should be gathered and passed to Intune to initiate Autopilot.

    This is what I though Autopilot was going to be when it was first announced. The use of hardware hashes makes it worse than PXE or even a USB stick.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Disable Reboot for "Device Restrictions" Profile Deployment

    During an autopilot setup, if there is a "Device Restrictions" profile assigned, it will reboot the device to the login screen and the user must login again in order to complete the User ESP. Please make the reboot happen after the User ESP or preferably don't make the reboot happen at all. That way the user only has to sign in once.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Enrollment Status Page enabled for bulk token devices too

    Most of our devices (prior to adopting Autopilot) were added via bulk token. Devices registered with a bulk token that get redeployed are not getting the Enrollment Status Page even though they show up in the Autopilot devices list.

    If we wipe the device with a clean OS install, we get the ESP as expected. While this works for our existing devices, losing the ability to retain drivers and Intune registration is not a welcome feature. Incorporating the ESP to show for bulk tokened devices too would be beneficial.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Filter on Group Tag Windows Autopilot

    I use Group Tags for automatically assigning multiple Windows Autopilot Profiles on HW Hash Upload - Currently I can filter on Model and Purchase Order, but I think it would be useful to filter on Group Tag also

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Support for variables in Domain Join Naming Conventions

    Allow for more sophisticated naming conventions for devices enrolling via Autopilot into Intune and on-premises Active Directory using Domain Join (preview). Current functionality only allows a prefix with the remaining space filled out with random characters. It would be more useful to allow for variables to give more distinct device names, i.e. %username%

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add option to disable shift+F10 in autopilot profile

    Add option to disable shift+F10 in autopilot profile. So you have the option to leave it on while troubleshooting testing scenario's and are experimenting. But that it is not available in production setup.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  7. prevent the autopilot device name template from setting the same name more then once

    These settings in the deployment profile will result in multiple machines having the same hostname
    Apply device name template
    Yes
    Enter a name
    W10-%RAND:4%

    For instance W10-0001 will be assigned to multiple laptops.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Make Intune available for Windows 10 Multi-User

    Let us manage Hybrid-Joined Windows Virtual Desktop Multi User hosts per Intune.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Office Pro Plus installation with "Show installation to user"

    After autopilot roll-out the Office Pro plus installation out of Intune does not wait for the installation to finish, but It also doesn't show status of installation to the user, so the user must wait too long before able to use the computer!

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. roaming/onedrive/cloud based browser favourites during user enrollment

    when users log into their Intune/Autopilot enrolled Windows PC, everything should 'just work', but one of the key things missing is their web browser favourites if they are moving from an old device to a new one.

    it's easy to train users to save all their company data to onedrive and sharepoint, but most of them wouldn't have the first clue about how to backup and restore their browser favourites so it's leaving quite a big hole in the migration process, at least for me.

    It's something that could probably be scripted as a folder redirection to onedrive, but it…

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow new user that has never logged on to set password during enrollment

    I would like to see the ability for on-prem user that is required to change the password at next logon to be able to do it from an autopilot enrolled device.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Make Order ID visible.

    Make OrderID visible through the Device Enrollment page, so we can modify this field easily, which we leverage for dynamic group population and deployment of new hybrid Autopilot devices.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  13. More options for local user account creation properties in provisioning packages

    When creating local user accounts with Image and Configuration Designer Provisioning packages there are no options to configure the accounts, such as password expiry.
    The kiosk provisioning package option allows for local user account creation however after 42 days the accounts expire. This is an issue where devices have auto-login enabled and arent managed by Active Directory.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Disable change account/local account creation in OOBE if device is Autopilot joined.

    If devices is Autopilot joined, there should not be an option to choose local account. In an EDU deployment several students manages to choose this option and the enrolment fails.

    Make OOBE more robust so autopilot dosent fail.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Disable Hardware Encryption and force Software encryption During AutoPilot

    referring into MS Articlehttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180028 to force of use software Encryption it require to configure GPOs which is not applicable at the AutoPilot.

    we might be able to add the required registry values using Powershell, but the issue is that the machine is pulling the policies randomly, and there is a chance that the machine is getting the Bitlocker Policy before adding the required registry Values.

    it will be a good Idea if we can add this option into the Bitlocker configuration in order to force of using Software Encryption, or we can built dependencies for Configuration Policies in order…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  16. autopilot assign device to users in bulk

    It's very nine to be able to assign devices to Users in Autopilot. I would like assign devices to users in bulk (directly in the CSV autopilot import file och with Powershell.
    'Thanks

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Phone-Sign in doesnt appear to work

    The Phone-sign in option doesn't appear to work for Intune or GPO for Windows Hello for Business.

    Please can this be configured for Hybrid Azure AD Joined devices.

    Microsoft Support confirmed its not a working product yet in the portal (although the option is there).

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  18. Bake Office 365 into Windows 10 image

    Include the Office 365 install files with Windows 10 images that way Autopilot users can start work immediately rather than waiting for O365 to come down. Can be enabled based on users UPN/Azure license when Autopilot check is performed and enabled/installed before user logs in.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ability to specify GroupTag in the AutopilotConfigurationFile.json file

    When using the AutopilotConfigurationFile.json for existing devices it would be great if one also could set the group tag. that way we could use the same assignmentgroups as non existing devices.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Autopilot specific Partner, (CSP) role.

    We would love to have our reseller automatically register our purchased devices into AutoPilot, but we can only do so via CSP relationship. Currently, CSP can be DAP or non-DAP. (Full admin or not.) Even non-DAP, the CSP can see and touch things like billing and services, way outside the needs for uploading AutoPilot info.

    We need Role-based Access Control RBAC for CSP relationships so we only grant what is needed, nothing more.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base