Remote help: enterprise-grade assistance tool now available

raymondesray RE: Remote help logging off a user immediately after the session ends if you are using full control

1. For security reasons, remote help was designed to ensure that support processes or app elevation scenarios are intentionally terminated at the end of a remote help session. To accomplish this, we immediately log off the sharer. 
2. Based on your feedback during the preview and echoed here, while customers understand the security concerns, logging off users/sharers for all scenarios can impact user productivity.
3. The following changes are planned to minimize this potential impact:

                                                         i.      We are reducing the scenarios that will log users off automatically by prompting the helper to confirm their need to interact with the users access controls (UAC) for permission elevation. If the helper doesn’t indicate they need to interact with the UAC prompt, the sharer won’t be logged off. 

                                                       ii.      If a helper ends the session, we won’t log off the sharer. This puts the onus on the helper to ensure they have closed any elevated processes that they opened. 

                                                     iii.      If a sharer attempts to end a session where elevation processes exist, they will get a prompt indicating that they will be logged off.  If they don’t want to be logged off, they can close the prompt which won’t close the session.  Otherwise they can accept that they will be logged off which enhances security because elevated processes will not be left open.

We expect these enhancements to be rolled out in the next month or two.  Stay tuned to Intune's What's New page and thanks everyone for the feedback on this!