Microsoft

Microsoft Endpoint Manager Intune Feedback

Suggestion box powered by UserVoice

Microsoft 365 Lighthouse Ideas

Microsoft 365 Lighthouse is currently in the private preview stage of development, and includes multi-tenant management capabilities for device compliance, threat management and user access management. To learn more visit https://techcommunity.microsoft.com/t5/small-and-medium-business-blog/announcing-microsoft-365-lighthouse-for-managed-service/ba-p/1698181

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft 365 Lighthouse engineering team. Though we can’t promise to reply to all posts, we want to hear your ideas. Help influence the features and functionality we build. 

Standard Disclaimer – our lawyers made us put this here ;-) We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that this feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Endpoint Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.
  1. Collect secure score, productivity score, compliance score

    Gather them, With sort possibilities, access actions for each customer for improvements from the portal. This creates a work list to improve scores that are not inline with target. Collate education advise for exemple in productivety so the training videos for improvements can be distributed to each customer.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Onedrive Sync Health

    We are in the process of moving all customers to OneDrive KFM via Intune Administrative Templates. We would love the ability to be able to centrally monitor the health/last sync time of each users OneDrive for Business. This would allow us to confidently use the AutoPilot Reset function without the risk of potential data loss.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  User Management  ·  Flag idea as inappropriate…  ·  Admin →

    Providing monitoring of the health of OneDrive sync is a great idea and one we have not been thinking about. Thank you for submitting a new idea and taking the time to vote for it. Currently, we are hyper focused on helping you secure users, devices, and data. So, at the moment we are not prioritizing ideas around the productivity apps and services, though we do want to in the future and we will include this once we are ready to focus on the productivity aspects of Microsoft 365.
    If you have not voted for this item and you think it is important, please vote for it! We will periodically review the votes and if we see a significant uptick in votes, we may prioritize it sooner.

  3. Filter relevant customers

    The home screen has dashboards that display a summary for all our customers. We would like to have a filter on this so we could see only the most relevant customers, those who pay us for active monitoring. The option to mark a customer as favorite or the ability to create customers groups would help. To much information or to many alerts of customers that do not expect us to act pro-actively will make that our engineers will ignore the dashboard, even the alerts that do matter.

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  4. 11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Microsoft Graph Intune Policy Copy between managed Tenants

    Is it possible to have the ability to upload JSON templates to push out to our customers from the Lighthouse portal? Device Compliance, Configuration, Administrative Templates, Scripts, Apps, App Protection Policies...

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Device Compliance  ·  Flag idea as inappropriate…  ·  Admin →
  6. Global View of Enterprise App Creation Permissions

    It would be nice to be able to get a view of all tenants that allows users to create Enterprise Apps within AAD.

    We consider this as high risk, therefore it would be very nice to have a global overview of our customers status on this feature.

    And maybe in the future, have the opportunity to disable this setting from the MS365 Lighthouse portal.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  7. Sensitivity & Retention Label Analytics

    A central dashboard to analyze use patterns and identify recommend best practices based on clients governance requirements. The ability to get a birds eye view of labeling across our clients would help us drive adoption for both our clients and our support staff who manage them.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  8. Endpoint analytics

    Endpoint analytics can help identify policies or hardware issues that may be slowing down devices and proactively make changes without disrupting end users or generating a help desk ticket. These analytics can give the partner insights for measuring how their customers are working and the quality of the experience we are delivering to users.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →

    We appreciate you taking the time to submit this request and to vote on it. We have heard similar feedback from other audiences with regards to surfacing the Endpoint analytics details to help identify policy and/or hardware issues. At the moment we are hyper focused on helping you secure users, devices, and data. So, so we have not prioritized surfacing Endpoint analytics within Microsoft 365 Lighthouse, but we will be looking at in the future. So, if you have not voted for this item and you think it is important, please vote for it! We will periodically review the votes and if we see a significant uptick in votes, we may prioritize it sooner.

  9. Insight to tenant configurations across all customers

    We have a constant need to monitor current tenant configurations across all customers. Currently, we have a huge Excel-based spreadsheet that includes all customer tenants and all the configuration settings we see relevant to keep track on. The configuration settings are currently recorded on very general level. Updating this own "centralized monitoring tool" is manual, slow and all the changes may not end up to our spreadsheet. The settings we keep track on include for example:


    • MFA status in organisation: yes/no

    • MFA type, if enabled: per-user / Conditional Access

    • Other Conditional Access rules in place (ie. block legacy auth, require…
    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  10. Enabling Customers

    We need to be able to select customers to be included in our lighthouse view, and deselect others We need to filter those clients that have a security agreement with us and those that do not.

    There are a number of court cases where a MSP has access tot eh data or has received the alert, and did not act on it, and the MSP is liable for the data breach. With the change in the cyber laws, we need to explicitly not view clients information if we have do not have a security agreement with them. The legal community…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  11. Display board similar to brightguage

    Need to have the ability to build in a rotating display board of different sets of client data, similar to the rotating dashboard that brightguage.co has (or similar tools) that will refresh the data.

    So from an admin perspective you need to do the following
    - have a mode of View only
    - be able to select differnt lighthouse screens or sub screens
    - push the screens into a rotating dashboard
    - let this loop

    The problem you are trying to address is trend analysis. The issue is that as much AI you put into this, humans can visually see…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  12. Tenant header of who you're managing once you connect via Lighthouse

    It would be beneficial to have information on what tenant you are logged into from Lighthouse to ensure you are making changes on the correct environment. Could be their primary domain name or .onmicorosoft.com domain, or even the branding set on that tenant on the header for visibility.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  13. Centralized view of detections and alerts across tenants

    Lighthouse portal could help us to monitor customer tenants more efficiently, if we could see a overall list of new detections and alerts per customer tenant. This could be a trigger for deeper analysis conducted inside the tenant. Below is a list of different Microsoft detections, alerts and user reported content, in which I would personally see this function helpful.


    • AAD Risky users

    • AAD Risky sign-ins

    • AAD Risk detections

    • Office 365 Alerts

    • Cloud App Security Alerts

    • User reported MFA Frauds

    Currently, some of these alerts from customer tenants can be sent to email addresses of our choice, ie. Office 365…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  14. ISO 27001, IASME, Cyber Essentials and

    It would be useful to have a set of standards, in the UK IASME, Cyber Essentials (including Plus) and of course ISO 27001 reflected in the compliance status shown and whether the devices monitored adhere to the necessary policies. As an MSP we could easily be able to tell which companies were compliant for these externally audited policies not just those set within MEM (Intune) which might not be as stringent.

    Also it would be useful to show what MEM policies fell out of compliance for IASME, CE, ISO etc.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. View all tenants with Audit Log Search Enabled/Disabled

    Audit Logging is disabled by default in the Security Admin center. This creates an issue whereby if a security issue occurs and if this wasn't enabled when the tenant was set up, you find out after the threat occurred that you don't have logs to investigate. It would be ideal if this was enabled by default on M365 tenants, but without this change, it'd be nice to have a view that states the tenants that don't have logging enabled, and an option in that central view to enable logging on the individual tenant.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Show me insight into Microsoft Call Quality Analytics across all customer tenants

    Show me insight into Microsoft Call Quality Analytics and percentage of poor quality Teams calls per customer tenant in one view.

    Currently, this information can be collected separately from different tenants. If being able to see the overall situation across all customer tenants, our account managers could contact customers with solutions more quickly. Also, our technical department could proactively focus on customer tenants with issues and analyze the root cause.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Customer Insights  ·  Flag idea as inappropriate…  ·  Admin →
  17. ORCA report and Exchange Online best practice info

    It would be good to surface Microsoft Defender for Office 365 Recommended Configuration Analyzer (ORCA) and other Exchange online best practice settings within the dashboard. Monitoring devices is useful but these metrics alongside Secure score (mentioned in another Lighthouse report) would assist hugely.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Power Automate Flow Deployment in Managed Tenants

    The ability to run custom flows we have created from a central portal like Lighthouse would be ideal. My ideal solution would allow us to upload a flow.zip and select the client to deploy to. From there the possibilities would be endless. Currently we deploy our core SharePoint Team and Hub Site structure via Power Automate.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  User Management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enrolled by user UPN column

    It would be great to have a column for 'Enrolled by user UPN' this would allow for reporting on devices that were connected to MEM via OOBE or DEM or manual.
    We are finding many of our OOBE enrolled devices no longer have a licensed user UPN attached to the device and so are no longer getting policies or apps pushed by MEM.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Device Compliance  ·  Flag idea as inappropriate…  ·  Admin →
  20. last checked in MEM and AAD

    One of the items I am looking for in Lighthouse is device compliance 'Last Check in'
    for instance in my Lighthouse portal I see

    But this really isn't restiveness of the problem, it causes me to dig but not much is showing in Lighthouse, I can't click on the Tenant in Device compliance overview, so go to Devices but I can't filter on Tenant (tried and not all entries come together using 'corporate') Policies only do Platform, still waiting on what 'Settings' will give in the future
    If I go to the Tenant AAD I see more data than Lighthouse…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Microsoft Intune
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Device Compliance  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1
  • Don't see your idea?

Microsoft 365 Lighthouse Ideas

Categories

Feedback and Knowledge Base