Access is already controlled, because users have to authenticate to access the web portal, so only authenticated users can execute actions. And the portal is how users can tell if a device is compliant and if not, what remediation to do. So I'm not sure what threat you're trying to mitigate with this.
Can you tell me more about the error message you're talking about? Maybe link a screen shot to this request? Otherwise it's hard for me to know which team to route this to.
I’m not really sure what you’re asking for here.
For the company portal changes, have you seen this topic, UI updates for Intune end user apps?
We update that regularly whenever we make changes that end users will see, because we heard from customers that it helps them keep their internal docs up to date.
We don’t provide pictures for the Intune admin console because there’s too much UI to cover too frequently, but we do document what’s changing here https://docs.microsoft.com/en-us/intune/whats-new and we update that frequently. Also, when we do our major monthly service release, we post a notification in the Office Message Center at portal.office.com and remind you to look at the What’s New topic for the fresh updates for that service release.
Is there something different you’re asking for?
OK, let me dig a bit more. :-) When you say "the best place for notifications to be placed are in the Dashboard itself", what kinds of notifications would you want to see - the notice that currently shows up in office.portal.com saying "your service has been updated", or the actual list of the changes that is currently in the docs? Or something else? Or all of the above? Walk me through your ideal experience.
We already have some of these suggestions that people are voting for. I know people want to say in a blanket way "make it like that", but blanket requests aren't really actionable. I'll leave this here, but the better way to get traction is to focus on the things you want most so we can prioritize that with all the other internal and external requests.
Hi, Carlos, could you give us more detail about what you mean with this?
@Aaron, the malware is a dupe, but not the hardware and updates.
@Will, when you say "Intune client", do you mean the full PC client or the MDM agent? I don't understand if you're asking for managing malware on devices not enrolled for Intune MDM, or if you're asking for devices enrolled for MDM to have the same malware capabilities as the PC client. Can you clarify?
I'm moving this to the Graph forum as well, because even though you are asking for REST, we're providing automation via Graph, and that category is where the Graph people are more likely to see it.
Hi, Mike, the thing is, to do things like pushing apps, we need a certain amount of trust on the device, which comes from installing the management profile, which comes during enrollment. If an app is "enlightened" for MAM-WE, then the app can follow rules about how to handle the data. But to get the app on the device, either the user has to pick it or we need that bootstrap trust to be able to push things to the device.. . .
@David, you might be able to automate this with the Graph API - thoughts?
I can confirm this is planned, but I can’t provide any detail about timelines.
Thanks for making your opinion known!
@Paul - not supported yet. I don't have anything else I can share at this time, but it's still in the plan. We know it's a blocker for a lot of people. :-(
Hi, Amit, I think what you're asking for is that apps installed from the app store is updated in the app store - is that right?
Hopefully by now you’re seen our Data Warehouse feature that released recently. You can now get this data in console under Mobile Apps → Monitor → Discovered apps.There’s a table exposed in the data warehouse applicationInventories that exposes the same data.
We also have a listing of all managed apps and their installation status under Mobile Apps → Monitor → App install status."
Does that get you what you need? If not, what’s missing?
@Urooj, if something is broken, I encourage you to open a support ticket. If there's a configuration issue, they can help you fix it. If it's a problem with the service, the support engineers can work with the product team to fix the service.
To open a support request, go to portal.office.com, click Support in the left navigation, and then click Overview. Click Mobile Device Management and follow the steps. Support for Intune, and for Intune when used with Configuration Manager, is free of charge. Premier Support customers incur charges for procedure questions (for example, how to go about configuring an Intune feature).
You can exempt user groups - are you asking to be able to exempt device groups in addition to user groups? It seems for VIPs like a user group would be a better way to go, so all their devices would be exempt.
@Sonia, it sounds like you might need more help than I can give in a forum like this. I'd encourage you to call our support line and have them walk you through it and see if there are problems that need troubleshooting.
Support is included with the service. To open a support request, go to portal.office.com, click Support in the left navigation, and then click Overview. Click Mobile Device Management and follow the steps.
@Sean - again, I'd need to know which device platform you're talking about to be able to comment for sure.
Yah, the thing with that is, some things can't get removed because of platform restrictions. We'd like selective wipe to clean up as much as we can, but if the OS won't let us, we're sort of stuck. If you can give a specific example of a profile and platform you're not seeing removed, I can verify with that feature team that it's due to an OS limitation.
Hi, I'm not really sure what you're asking for. Are you looking for a telecom solution provider to show you Intune and help you deploy it? Or are you a telecom services provider and want to see more about the features we're offering in the Intune on Azure portal preview?
Hi Andrew, check out this new feature we released for April
Does that get you want you wanted?
hi, we just released an Intune update where we provide in-console reporting for MAM without enrollment. I don't know if this gets us any closer to what you want, but thought you might be interested.
@Michael, thanks, yes, I agree, I"ll merge it.
OK, I'll leave this here. As we've already said, we're moving to the new Azure portal, so expect that reporting will also change a lot in the new console.
I asked Karthika, the author of the topic referenced below. She said:
"I don’t think there is a way to get a list of users who do not have a policy, which may be what this customer is looking for.
But you can search for a user and get their status as explained in the detailed view section of the topic. I just tested this specifically, and if you the user you search for does not have a policy the status will say “ This user is not targeted for any app policies”. So I can call this out where we talk about the status, that should help at least if a customer wants to know if an end-user has policy or not."
@Jack: Do you think that would help?
BTW, the link below changed when we moved all the docs off of TechNet to our new doc library.
Hi, we recently announced the new offering, Intune for Education.
I've created a new category and moved this from the MDM category.
Hi, Andrew, what would you think about splitting this into two - one for Azure admin console, and one for the Graph API (I know you said PowerShell, but it's gotta come from Graph first).
The Azure console is still in "preview' mode, so yeah, there are going to be some things that don't work. We figured it was better to give you something to see where we're going.
I'm not sure what you're asking for - do you mean the user shouldn't be able to uninstall the Company Portal from the device, or the user shouldn't be able to sign out of the Company Portal, or something else?