Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Build Microsoft solution for remote control

    What I mean by this is we have to spend extra money to have teamviewer. The license for intune should cover this development. It made since at the beginning but not now that intune is alot more mature. Isn't fair from our side to keep buying more licenses. If Microsoft 365 is your one stop shop. It should offer remote control. As well as work on all supported platforms (windows, mac os & linux)

    424 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Remote Assistance/Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Provide options to disable or prevent factory reset option for Personal devices.

    Provide the ability to prevent a factory reset from being able to be performed for devices enrolled as personal devices. Only allow an enterprise or selective wipe for said devices. It's way too easy for a mistake to be made which can open up a can of legal issues. Our current MDM (Airwatch) allows for this and the device wipe option only appears on the admin console for corporate owned devices.

    421 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    18 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Improve Hardware inventory in Intune

    Hardware inventory needs to be improved. Currently Intune cannot read serial numbers from HP Envy x360 devices. Additional information such as CPU and Memory would also be helpful for Admins to keep track of inventory.

    404 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    19 comments  ·  Inventory (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Device GeoLocation and Map Overlay View of All Devices.

    The majority of other MDM/PC management solutions allow for GeoLocation of all managed devices without the need to set a lost mode or alert the end user. This is a fairly basic feature and required for services such as fleet tracking and managing field workers/dispatch.

    I'd like to see an all devices view that overlays device GeoLocation on Map and for all types of devices that support some form of GeoLocation (AGPS, GPS, WiFi/Skyhook) as well as an option to manually request device location to be updated or device to check-in without alerting the end-users.

    The current Lost Mode for…

    395 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    16 comments  ·  Fencing - geo, time speed, etc  ·  Flag idea as inappropriate…  ·  Admin →
  5. Support for deploying App-V packages

    Right now people have to use the MSI packages generated by the App-V sequencer, rather than having native handling for the .AppV package format as SCCM does. This means that people have to resort to powershell scripting, or squeezing scripts into MST transforms in order to use App-V features such as custom configuration files or connection groups.

    Also the MSI packages are very unreliable since they were mainly created for test scenarios rather than live deployments - for example they fail to uninstall when an application is in use, and you have to remove the previous version manually before installing…

    380 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  10 comments  ·  Apps config and deployment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow LOB apps on devices managed in Android Kiosk Devices (COSU)

    When a device is configured with Android Enterprise and the Microsoft Managed Home Screen in kiosk mode (as per here https://docs.microsoft.com/en-us/intune/android-kiosk-enroll), it is not possible to deploy LOB apps to these devices. If apps are sideloaded manually, they're automatically deleted by the device policy.

    Being able to deploy LOB apps (or creating a whitelist) for Android Kiosk devices would allow Android Kiosk mode to be used to its full potential.

    380 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    29 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →

    I was talking with our Android team about this one. They said “This is already supported. However LOB apps must be deployed by either uploading through the Google Play iFrame in Intune or using a dev account for Google Play.”
    Does that satisfy the spirit of the request?

  7. Ability to update specific VPP app on one device or more

    Right now, only option is to enable/disable VPP automatic app updates. This will update all VPP apps on ALL iOS devices. If there's a problematic app, then most devices will be affected, if not all.

    It would be great if Intune will have the ability to update a specific VPP app on specific iOS device(or group).

    This feature is already available on other MDMs.

    360 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    17 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  8. Ability to add apps to the list "require approved client app"

    The "require approved client apps" feature in conditional access is a very good security feature, but sometimes a 3:rd party app must be supported, .e.g., a room booking system for mobile devices. If the feature "require approved client apps" is enabled, there is no way to support a 3:rd party app. Please make it possible to add apps (tenant wide) to the "require approved client apps" list.

    361 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    13 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  9. Azure AD Hybrid joined Windows 10 Devices should recognize a device owner through Intune.

    Azure AD Hybrid Joined Windows 10 Devices does not list a device owner for Windows 10. This could perhaps be made available through intune. If a device is Azure AD Joined and Intune joined, then the owner in Intune could be set as device owner in Azure AD? Great if this option was available or at least if admins got to turn it on by choice.

    359 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Retiring and deleting devices takes way too long

    When working with a user on the phone, and we need to retire and reenroll a device, the process of retiring takes a very long time, which becomes frustrating for not only myself, but for the user who wants to get their problem resolved and get back to work. Please work to improve the speed for operations like this within the console,

    352 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    25 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Include system apps for Android Enterprise (AfW) Work Profile

    We need the ability to add system apps like the system camera or phone app to the work profile. Other EMM vendors already support this feature.

    349 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    18 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  12. Conditional Access Policy "Require app protection policy" support for Teams mobile app

    Support Microsoft Teams mobile app for use with 'require app protection policy' access control in Conditional Access policies.

    Currently only OneDrive, Outlook, Cortana, and Planner are supported.

    https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-grant#require-app-protection-policy

    349 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    19 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Join Windows Server 2019 to Intune

    We have the ability to install Windows ATP on MacOS, Server 2019, Win 10, but we still have no way of managing Windows Servers with Intune.

    With Windows Server 2019, we'd like to be able to join to a work account, manage with Intune, and authenticate with AzureAD the same way we do with Windows 10 and Mac devices within our organization out of box.

    339 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Remove duplicates

    Every time when you rebuild (reinstall Windows and Intune client) a corporate PC witch was already managed by Intune a duplicate computer record is added to Intune database. Now we manually removing duplicates every month. Can you automate it?

    341 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  17 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow clients to check in more often than 8 hours to speed up software distribution

    It'd be nice to push out software more quickly than what is currently available. The current setting only allows 8 hours as the minimum time.

    337 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    noted  ·  6 comments  ·  Apps config and deployment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Mac OS X Software Updates

    Ability to manage updating of OS X would be a phenomenal improvement. Should include enforcement, policies, and reporting. It would be a huge bonus if this could also handle upgrades so we could block old versions of OS X.

    330 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  MacOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  17. Microsoft Whiteboard Client as Approved client app requirement for Conditional Access

    Please add Microsoft Whiteboard Client as Approved client app requirement for Conditional Access so that this is not blocking productive on IOS/Android when trying to secure SharePoint/OneDrive.
    https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/technical-reference#approved-client-app-requirement

    316 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  18. 301 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    22 comments  ·  Flag idea as inappropriate…  ·  Admin →

    This is something we hear a lot, but there are degrees of server support – just like the desktop client, or just a subset of those features. We would love to get more specific in a survey we just put up here https://microsoft.qualtrics.com/SE/?SID=SV_0P65dThvhzD5ZUV. We’ll leave it up until mid January, since the holidays will have some people out of town for a few weeks. Thanks! We look forward to hearing from you!
    Cathy

  19. Android for Work Device Owner mode

    Is it possible to get Intune to allow Android for Work to be setup in Device Owner Mode? Possibly with the App and NFC "bump" to setup the config.

    This possibly one of the requirement from within the NCSC guidance (https://www.ncsc.gov.uk/guidance/eud-security-guidance-android-6)

    301 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    26 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →

    Hi, if you caught our announcements at Ignite, we announced that we will support device owner mode for Android fully managed corporate devices. It will preview by end of year. Check out our EMS blog for more info
    https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/What-s-New-with-Microsoft-Intune-and-System-Center-Configuration/ba-p/262542
    So we’ll call this “started”. :-)

    Also, we’ve been supporting Android kiosk mode since July.

  20. Allow User Name in Device Name Template

    Under an enrollment profile, you can set a device name template to rename all devices being added. I'd like to have the option of adding a username in the front of the device type. This way, instead of seeing "iPhone" in my device list, I'll be able to see something like "JSmith iPhone"

    296 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    29 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base