Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Manager Intune, though we can’t promise to reply to all posts.

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Intune feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Intune. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Set Timezone for Windows 10 from Intune MDMFollowing the "Autopilot" idea I'd like to install MSI application from Intune MDM however

    Following the "Autopilot" idea I'd like to install MSI application from Intune MDM via Azure AD joined laptop/surface however by default the Windows Auto timezone service is turned off so new users wont have applications installed from Intune MDM because the date/time on a new device does not match the MDM "as soon as possible" date/time requirements for deployment of Applications i.e. The OOTB Autopilot experience cant work for application deployment unless a new user sets the timezone correctly first!

    Thanks
    Peter

    How can I fix this

    256 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    11 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add Conditional Access support to Microsoft App Access Panel / MyApps

    To allow us to create a blanket policy and then exclude the MyApps site from the Conditional Access Policy.

    We can then allow customers to login and use the MyApps site as a launch pad to all their services whilst being very specific about what apps require additional compliance.

    253 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  3. DEM iOS Devices - App Configuration that allows multiple user sign in.

    We have setup DEM iPads. The devices are shared among many users and MS apps on these devices are restricted to sign in with only the device activation account.

    If you attempt to sign in to the sharepoint app for example you get a msg: "Misconfiguration Alert" Your admin wants the apps on this device to be managed with the account (DEMaccount), your sign in account (anything else) will be removed.

    An option to control this "Feature" by app (Only DEM account vs. allow all) would be beneficial.

    252 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    15 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  4. add Allow Pattern Unlock to the list of password options

    When Intune Compliance or MDM policy is applied to Android Devices, pattern unlock is disabled. Please add Allow Pattern Unlock to the list of password options.

    https://docs.microsoft.com/en-us/intune-classic/deploy-use/android-policy-settings-in-microsoft-intune

    250 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  5. Android Enterprise Fully Managed Device With Work Profile (COPE)

    Would be great to add support for the Fully Managed Device with Work Profile solution set as I am seeing lots of requests for this. Intune is one of the last EMM platforms to support this.

    247 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    16 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  6. Make it possible to push User Based registry settings to devices

    Sometimes you would like to change registry settings for certain apps. Most of the time those registry settings are in the HKLU hive. I would like to have a configuration policy for MDM to push User Based registry settings.

    246 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Device Configuration Profiles  ·  Flag idea as inappropriate…  ·  Admin →
  7. Automatically enable Web Browser access for Android devices

    When having an Android device that is enrolled with Intune, enable the possibility to set a configuration policy that automatically enables Web browser access with respect to installing the management certificate on the device. This would simplify device compliance checks quite much.

    246 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support for MFA during DEP single app mode

    Enable support for MFA during DEP single app mode enrolment. Currently single app mode blocks access to text and phone apps during Company Portal enrolment so MFA can't complete successfully. We've tried excluding "Microsoft Intune Enrolment" app from conditional access but this doesn't work.

    246 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    15 comments  ·  iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →
  9. 241 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    19 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  10. Add Office Lens to Intune MAM

    Due to the sensitive nature of the photos being taken on the mobile devices at our company, Office Lens needs to be added to the Intune MAM list of mobile apps so that the photos taken with Office Lens are only capable of being stored in the company's OneDrive for Business.

    236 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    20 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support configuring "MAC randomization"-attribute for Android 10+

    The Android 10+ default setting for new WiFi-neworks seems to be "MAC-randomization = enabled" to prevent tracking across public WiFis.
    This setting should be changeable for Intune-configured networks to keep the network functional with MAC whitelisting-rules in your WiFi-configuration.

    235 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    11 comments  ·  Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
  12. Remove Android for Work apps from Intune when they've been removed from Google Play for Work

    This doesn't currently happen and is apparently "working as designed"

    234 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    27 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  13. Device Compliance | Conditional Access | Firefox

    Hello,
    Please allow Firefox to be used with Conditional Access policy to be able check for Device Compliance.
    Many users use Firefox as primary browser, but then they are limited in SharePoint.

    230 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Compliance Policies  ·  Flag idea as inappropriate…  ·  Admin →
  14. Make it possible to Azure AD join/synchronize device (computer) objects to multiple Azure AD tenants from a single forest AD.

    Some companies hosts multiple sub-customers in a single forest Active Directory.
    Each sub-customers users and machine objects are organized in their own OUs.
    Present configuration would be one AAD Connect server per customer OU – which synchronize the user objects to their respective individual Azure Tenants and they license all their sub-customers AAD Users with M365 licenses.

    Some would like to enable Automatic AAD Join (Hybrid Azure AD Join) for their sub-customers Windows 10 Enterprise devices via GPO.
    They want to manage the sub-customers domain-joined devices with Intune, and use device-based conditional access.

    AAD Device Registration (DRS) requires a Service…

    231 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Autopilot/Windows enrollment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support deployment of Progressive Web Apps with Intune

    With the new Edge browser, it would be awesome to support PWAs for enterprise application deployment via Intune.

    229 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  Apps config and deployment  ·  Flag idea as inappropriate…  ·  Admin →
  16. My organization requires more apps to support Microsoft Intune Mobile App Management (MAM)

    The Microsoft Intune team would like to understand which Android and iOS apps your business must have data protection (MAM) support for. Add a new Comment below with the with the App Name and Platform in the field. Alternatilvely, start a new idea with ‘MAM App Support’ in the title

    227 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    220 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Azure Intune - Allow to sort devices by any collumn

    In the Azure Intune portal you can filter devices by whatever column, but you can't sort by anything other than device name.
    I would personally find it very helpful to be able to sort by email address or OS version without exporting it and loading up excel.

    216 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add support for Samsung E-FOTA

    We have a large Samsung deployment where enhanced control of the OS update flows are required.
    Samsung EFOTA allows us to do this.
    Please add support for this feature.
    https://www.samsungknox.com/en/solutions/it-solutions/samsung_e-fota

    216 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
  19. Fortigate VPN Support

    I have a customer of 1800 staff who currently use a competing EMM product but would like to move to Intune. Problem is they require per-app VPN functionality. Their existing Fortigate VPN solution is not in the supported VPN product list (and they don't want to change the VPN solution). Be good to see support for Fortigate.

    214 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Show last logged in user more easily

    I basically have no idea whose computer is whose in my lists, our names are generic, but showing the last logged in user on that main devices list would usually tell me enough.

    214 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    17 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base