Microsoft

Microsoft Intune Feedback

Suggestion box powered by UserVoice

James Read

My feedback

  1. 73 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Ideas » App protection policies (APP/MAM)  ·  Flag idea as inappropriate…  ·  Admin →
    James Read supported this idea  · 
  2. 25 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Ideas » Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
    James Read shared this idea  · 
  3. 88 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Ideas » Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    This is another response from Cisco regarding this issue. My question was why can I configure this with Airwatch and not Intune.

    From Cisco Anyconnect feedback:
    This is because Airwatch uses Android restrictions to configure AnyConnect while InTune relies on URI function. This is not a limitation set by Cisco. InTune should move to the other method.

    James Read commented  · 

    I can't believe this is not configured already. This feature is available with other MDMs like Airwatch and Mobile Iron. Why can't Microsoft configure Intune to configure Anyconnect without having to turn off external controls.

    I talked to the Cisco anyconnect PM and this was their response:

    This is not an AnyConnect limitation. This is an implementation decision from InTune. If this was a Cisco limitation, you obviously wouldn’t be able to do this with your existing product. FWIW, I discussed this exact problem w/ the InTune PM a few weeks ago. Suggest you escalate your concerns directly to Microsoft.

    James Read shared this idea  · 
  4. 36 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Ideas » iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →

    As of the Oct 2018 release, when a device is not compliant, you can create an action on the compliance policy that locks the device remotely. This is supported on iOS, as well as Android, MacOS, Win10 Mobile, and WinPhone 8.1 and later.

    Does that get you want you need or is there something else still missing?

    James Read commented  · 

    This item is referring to the iOS activation lock feature. I believe that was already completed when you added your bypass activation lock feature for iOS devices.

    Thanks for the heads up for the compliance item to force locking devices. I don't think that addresses this suggestion, but I already consider this suggestion completed with the bypass activation lock feature added.

  5. 471 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    25 comments  ·  Ideas » Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    Known folder move works for my purpose

  6. 194 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    16 comments  ·  Ideas » iOS-specific  ·  Flag idea as inappropriate…  ·  Admin →

    I know it’s not a total, perpetual block, but as of the week of August 27 you can configure the days and times when you don’t want devices to install any updates. In a future update, you’ll be able to delay when a software update is visibly shown on the device, from one to 90 days.

    When we deliver the 90-day delay, is that good enough to call this complete? As @Daniil points out, that’s what’s Apple is offering now. And it’s not great to get yourself too out of date with updates.

    James Read commented  · 

    Having the ability to delay updates should be good enough.

  7. 1,264 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    59 comments  ·  Ideas » Azure Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    Do you have an update on this

  8. 44 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Ideas » Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    This is a much needed feature

  9. 3 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Ideas » Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    This would be a nice feature

  10. 12 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Ideas » Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    Intune is falling behind implementing Knox related features

    James Read supported this idea  · 
  11. 16 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Ideas » Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    A username/password option would be terrific for VPN.

  12. 43 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Ideas » Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    This would be a nice feature to add

  13. 816 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    58 comments  ·  Ideas » Inventory (all platforms)  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    better inventory is important

  14. 146 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Ideas » Certs, Email , VPN, Wi-Fi  ·  Flag idea as inappropriate…  ·  Admin →

    AS of the week of April 23, 2018, you can use the OnPremisesSamAccountName the common name in a custom subject on an SCEP certificate profile. For example, you can use CN={OnPremisesSamAccountName}).

    As of Dec 11, when you create a SCEP certificate profile in Intune, you can now use the AAD_DEVICE_ID variable when you build the custom subject name. When the certificate is requested using this SCEP profile, the variable is replaced with the AAD device ID of the device making the certificate request.
    https://docs.microsoft.com/en-us/intune/whats-new

    I don’t think it gives you everything you want, but how close are we?

    James Read commented  · 

    How close are you to move forward with this?

  15. 59 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Ideas » Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    I like how Intune uses the Knox Enrollment program, but it does feel incomplete. I would be great to use it for Kiosk devices.

    James Read commented  · 

    Thanks for the update.

    James Read supported this idea  · 
  16. 7 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Ideas » Android-specfiic  ·  Flag idea as inappropriate…  ·  Admin →
    James Read shared this idea  · 
  17. 641 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    68 comments  ·  Ideas » Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →

    The PMs involved have been talking about how best to give you a way to disable the “remove device” action. They think rather than focusing on platform enrollment types (iOS, Android, Windows), they could allow you to disable based on corporate vs personal ownership. I said I’d ask if that would work for you. :-)

    Would that get you want you need?

    James Read commented  · 

    Disabling removing devices by ownership is exactly what we need.

    James Read supported this idea  · 
  18. 11 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Ideas » Mobile Device Management (general)  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    Yes allowing restriction for MDM enrollment would be a great feature. I would smooth out the management of users allowed to enroll into Intune.

    James Read supported this idea  · 
  19. 16 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Ideas » Intune for Education  ·  Flag idea as inappropriate…  ·  Admin →
    James Read supported this idea  · 
  20. 34 votes
    Vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Ideas » Remote Assistance/Control  ·  Flag idea as inappropriate…  ·  Admin →
    James Read commented  · 

    Remote control of iOS devices is now available with iOS 11. It is not optimal, but it does work.

← Previous 1

Feedback and Knowledge Base