Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Intune Management Extension for Co-managed Environment

    Intune Management Extension is require to deploy or execute scripts or Win32 application on client machines.
    We have Co-Managed Environment where all the workloads set respectively to execute tasks. But Client App (Pre-release) Workload require to set as Pilot Intune or Intune to execute (install IME Agent) Script/ Win 32 Apps via Intune is not mentioned any where.
    Could you please update document for Hybrid AutoPilot and Co-Management pages

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Enable ESP see policy for BitLocker TPM PIN and interact with user to allow it to be set

    Allow the Windows Autopilot Enrollment Status Page to be aware of Bitlocker policies that require TPM PINs, and if detected interact with the user to set the pin.

    UK Gov requires us to have a TPM PIN, so this is a painful area for us.

    Oliver Kieselbach's blog (link below) describes workarounds which are great, however this would be not needed if ESP were to deal with it properly.

    https://oliverkieselbach.com/2019/08/02/how-to-enable-pre-boot-bitlocker-startup-pin-on-windows-with-intune/

    Sorry if this is the same idea as the following, but it seems to have been overlooked.

    https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/37084492-allow-windows-10-pro-devices-to-have-bitlocker-pin

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  3. change device owner without reset/re-enroll

    once you have enrolled a device with autopilot for a user and then want to hand out that device to a new user you need to reset or re-enroll it apparently or the new user will not be the device owner (although i don't see any other issues for the new user)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add validatio for null Azure Intune Device Enrollment > Device Categories

    Currently, within Azure Intune, you can add in null Device Category values programatically via the Graph API. You cannot however, add these Device Category values manually via the Portal, as it validates.

    If you add null Device Categories into Azure Intune, then the Intune Company App on Windows 10 crashes when the user launches the app and it attempts to log in, due to the null value Device Category present. This needs to be fixed and validation added so that if the null value is introduced via Graph, it will stop the value being added (as it currently validates using…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Enroll windows 10 shared devices

    In Ignite 2018 it has been announced the support in preview of the enrollment of shared devices.

    I hope that with it is comes also the management of multi users for the same device in Intune.
    So far the enrollment was lost as soon as a new user was logging in either with a different account or with a different office 365 user (changing the user in the Account > info section)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Autopilot Passwordless for Assigned User

    If you don't assign a user to a device then when using Autopilot, passwordless works really well with Authenticator.

    If you assign a user to a device however you are presented with a password box to fill in, and then an approve with Authenticator after.

    It would be better to have a "Click here to Authenticate" type button to take you on to Authenticator, or drop out to password later if not set up.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Register Devices From AAD Device List

    We have a lot of Windows 10 devices and we can see them in Azure AD.

    And we just started using Intune. Since the Auto-enroll was not on, those devices need to go to "Access work or school" once again and input their username and password.

    This is affecting our user's experience. Hopefully one day in the future we can directly enroll devices from AAD's device list.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Autopilot profiles created in admin center don't show up under Intune portal

    If you use Office 365 admin center Autopilot menu, the profile created over there will not show in Intune as available to be selected or configured. Profiles created directly in Intune will show up on Office 365 admin portal.

    I opened a ticket about this and I was told by Microsoft that it is a expected behaviour. It does not make sense to me as why then it shows up profiles created manually from Intune under Office 365 admin center?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Windows 10 PowerShell to Query Compliance Status

    Recently, I have worked on scripts to automate post deployment actions for Windows 10 clients deployed with Intune and AutoPilot.

    There are a number of points where the deployment script needs to know whether the Windows 10 Client is compliant. I have yet to find any way of detecting the compliance status of the machine through PowerShell, WMI or COM.

    I could connect to Azure and query the compliance status but that would involve caching a powerful admin account in a deployment script.

    I would like a PowerShell command that I could run from a Windows 10 client using an…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. When will White Glove at Auto Pilot that be offical released to partner?

    As official document, White glove are not yet available publicly. When will it be official released to partner configure? Estimated schedule is good for us. Thanks.

    https://docs.microsoft.com/en-us/windows/deployment/windows-autopilot/white-glove

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Enrollment status page

    Would be a great improvement ESP Enrollment Status Page selected apps installed as a priority instead of them waiting along with the assigned apps

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow EES subscriptions to use autopliot

    We have been told that we cannot use autopilot with our EES agreement as it only works with CSPs.

    This is of no use to many educational organisations.

    Do you have plans to allow autopilot with EES licences?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  13. Purchase Order field in AutoPilot can only be filled in by Resellers only

    Purchase Order field in AutoPilot can only be filled in by Resellers only. It would be great if admins can fill-in the Purchase Order fields as well.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  14. DCR Intune enrolled under one user and will not enroll under other user same device

    DCR Intune enrolled under one user and will not enroll under other user same device if device is AAD registered.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. don't give users the options to skip org sign in and register with local admin

    intune/Autopilot seem to do a good job of locking down a computer and keeping the user from creating local admin accounts. But this only happens after the user sign in with the organization account. but before the sign in process, the user is given an option to skip the organization sign in and register the device with a local admin account. i understand an admin needing this backdoor but it shouldnt be available to regular users.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  16. export you managment log files to the cloud instead of local disk

    Please allow the export of managment log of local pc logs from the console to the cloud or even to the azure portal device page.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to specify GroupTag in the AutopilotConfigurationFile.json file

    When using the AutopilotConfigurationFile.json for existing devices it would be great if one also could set the group tag. that way we could use the same assignmentgroups as non existing devices.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  18. enable default ssid usage for autopilot wireless zero touch

    So we have autodiscover for e-mail on domains. Support a default usually hidden SSID that orgs could setup that would only be able to reach autopilot / intune to perform initial setup.

    1 - orgs would create a hidden SSID with an expected name
    2 - that wireless network can only hit intune
    3 - that wireless network would require a cert issued from a specific autopilot / MS CA trusted on the wireless network.
    4 - on turning on - if the device can hit this network - it continues on as if it were wired up for zero…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow laptop devices to enroll without the need for local administrative rights.

    None of our Windows users are local admins on their devices, therefore to enroll their device we need to log in as an administrator, update the user as a local admin, and we can then complete the enrollment process. Bypassing this would mean that we can send out instructions rather than needing to manually update the rights of the machine.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Ipxe cloud server with w10 vim provide by microsoft

    Hello is Microsoft can provide an win10 image via ipxe in order to install w10 without infrastructure, it will allow to deploy standart w10 image like a mac (from bios boot), customisation option could be a must.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base