Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Microsoft Intune

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. support Linux MDM like OS X

    Could we have a Linux MDM like OS X?

    122 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      6 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
    • Native deployment of provisioning packages as deployment type

      The ability to deploy provisioning packages by Configuration Manager and Microsoft Intune as a deployment type. This will introduces a lots of new opportunities to deploy/configure Windows (Mobile) 10 clients.

      123 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        noted  ·  5 comments  ·  Apps (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
      • MAM using outlook app with Exchange on-prem

        currently MAM is working with exchange online only. when it will support exchange on-prem

        123 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          4 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
        • Ability to modify APN (Access Point Name)

          Customers wants the ability to change the Access Point Name for enrolled devices from a public to a private owned one.

          122 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            15 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
          • Document XML configuration templates for Microsoft mobile apps for usage with Mobile App Configuration policies

            It would be extremely useful if there would be some documentation library that had information about what fields etc can be pre-configured with a Mobile App Configuration policy for the Managed Apps, or even all Microsoft mobile apps.

            For instance, a customer of mine want to populate the Dynamics CRM app with the server address so that end users don't have to know which one to use.

            120 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              2 comments  ·  Apps (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
            • Apple TV Support

              I would like to see support for managing Apple TV devices.

              120 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                17 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
              • Terms and Conditions policies for MAM without enrollment

                Force users to accept custom Terms and Conditions and have a report. Just like MDM enrollment but just for MAM without enrollment.

                116 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  8 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
                • Copy files to mobile devices

                  Hey

                  Create feature to deploy files to devices.

                  I really need this feature on Android devices

                  116 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    10 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Support playing .wav files in Outlook.

                    I am deploying MDM less MAM to our Office 365 account. This works well but on Android specifically we are unable to open voicemails that our phone system emails to our users in .wav format.

                    The user gets a message stating "This action is blocked by your IT group"

                    115 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      19 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
                    • Automatic enrollment for Hybrid Azure AD Joined Devices

                      Missing the ability to automatically enroll Windows 10 devices that are hybrid Azure AD Joined, for agentless management. This would favour the use of agentless management for domain joined devices.

                      114 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        noted  ·  3 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
                      • Ability to add apps to the list "require approved client app"

                        The "require approved client apps" feature in conditional access is a very good security feature, but sometimes a 3:rd party app must be supported, .e.g., a room booking system for mobile devices. If the feature "require approved client apps" is enabled, there is no way to support a 3:rd party app. Please make it possible to add apps (tenant wide) to the "require approved client apps" list.

                        113 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
                        • Hide sensitive content in notification on the lockscreen

                          In iOS 11, your iPhone gives you much more control over notifications. You can designate certain apps as “sensitive”, so that it hides the content of notifications while your phone is locked, only letting you see the full preview when you use Touch ID or Face ID to unlock your iPhone. This works in every single app on your phone, unlike in iOS 10 and before.

                          An option to push these settings to the devices through intune would come in handy to prevent leaking company data, but the end users will see a notification on the lockscreen when they get…

                          113 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
                          • Manage Windows 10 1709 port specific firewall rules with Intune

                            Windows 10 1709 devices support Firewall CSP (https://docs.microsoft.com/en-us/windows/client-management/mdm/firewall-csp) that allows creating port specific firewall rules via MDM channel. Please add support to Intune to manage those firewall rules.

                            113 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              6 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                            • Clean start layout policy

                              Today there are two options to apply a start layout to users, fully locked or partial locked.
                              Fully locked start layout will clean the start layout from "consumer things" and nicely only show what have been deployed centrally. But lack support of user customizations such as pinning and resize.
                              Partial locked start layout will allow the users to customize the start layout and show what have been centrally deployed, but it will also show the default start layout/"consumer things" on the desktop that are not wanted in an enterprise.
                              I would like to see an option to either clean start…

                              113 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                4 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
                              • Conditional Access: Session Controls for Exchange Online (Outlook on the Web)

                                Expand the cloud app Session Controls area to be able to apply OWA policies on-the-fly.

                                Allow admins to do things like block download access unless the user is within a trusted location or on a compliant or domain joined device.

                                Effectively this, but without the need for ADFS: https://technet.microsoft.com/en-us/library/dn530630(v=exchg.150).aspx

                                Combining that with the SharePoint session controls will result in a more complete browser-only experience for unmanaged/untrusted devices.

                                112 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  4 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
                                • Push encrypted content to device

                                  Hi. Like as AirWatch has Secure Content Locker, please add this same ability for an organization to push out content (new, updated) to a user's device(s) and computers. There should be additional parameters, like length of time the content will be on the device until it is automatically deleted. Additionally, the content should be encrypted, and decrypted in memory when accessed (unlike AirWatch on none iOS devices). File types include PDFs, Word documents, MP3 files, and so on.

                                  In looking at OneDrive, I don't see this functionality, or this functionality integrated with InTune. So I am submitting this feature request.

                                  111 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    10 comments  ·  Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Intune Reporting on W10 OS Update

                                    Currently Intune cannot sufficiently report on what particular Windows 10 OS Update a device may be on. Are there plans to enhance the Intune Reporting engine to execute the reports which contain information about the W10 device OS Update revision?

                                    111 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      5 comments  ·  Intune Data Warehouse  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Prevent sharing of data from Managed Apps

                                      Prevent "sharing" of data from Managed Apps iOS only.

                                      So you took care of cut, copy, paste but in iOS there is also an option to share and you can share from managed apps to unmanaged apps.

                                      My client just shared company data from "Managed" Outlook to his WhatsApp contact that was so embarrassing.

                                      See attached pic for the share option

                                      110 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        9 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • BitLocker Recovery Keys in a Hybrid AAD Joined Device

                                        When configuring Bitlocker through an Endpoint protection policy on a hybrid joined device, the setting "Store Recovery information in Azure Active Directory before enabling BitLocker" appears to set the OSRequireActiveDirectoryBackup_Name OMA-URI, which causes the key to be backed up to the on-prem AD DS and does not store the key in Azure AD.

                                        The verbiage of this setting should be changed to reflect what it actually does, ideally it would back the key up to both locations for a hybrid joined device.

                                        109 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          7 comments  ·  Windows-specific  ·  Flag idea as inappropriate…  ·  Admin →
                                        • e add Allow Pattern Unlock to the list of password options

                                          When Intune Compliance or MDM policy is applied to Android Devices, pattern unlock is disabled. Please add Allow Pattern Unlock to the list of password options.

                                          https://docs.microsoft.com/en-us/intune-classic/deploy-use/android-policy-settings-in-microsoft-intune

                                          106 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            4 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base