Event details
108 Comments
- Thank you for this MDM product. We have been using Intune for a couple of years now. Our current concern is how do I keep Apps current? With out having to review each individual app monthly and updating the app manually?
- look at https://apps.microsoft.com/detail/xp89bsk82w9j28?hl=en-us&gl=US we use it but be cautious an use a whitelist to add apps you have tested rather than a blanket. you don't want to use apps that have user interaction without changing some commands to make it silent. same with Elevated access read the readme
- If I understand your question correctly, I'd say: Strategically default to sourcing apps from the Microsoft App Store (new) first. Next, if you have the budget then you'd get something like Intune Enterprise App Catalog to look after other apps not in the store. Other app packaging/catalog services exist. Where there is a budget constraint, you could consider using winget but it can be a steep learning curve and you'd have to automate it yourself, perhaps with Task Scheduler.
- Will there be a way in the Intune device blade to select multiple devices and apply wipes and or delete the items like in Entra? This would save time when trying to bulk retire hardware.
- Heather_Poulsen
Community Manager
Welcome to Feedback on Microsoft Intune and the Intune Suite at Tech Community Live: Microsoft Intune edition. Let's get started! Please post your questions here in the Comments. We’ll be here until 10:30 a.m. Pacific Time! We will be answering questions in the live stream—and others will be answering here in the Comments.
- The error messages / handling for app installs leaves much to be desired. We see cryptic error messages -- with no clear indication of how to resolve the app installation issue. Restart IME service? Reopen Company Portal? In particular, "failed to retrieve content information" -- would be nice to have some way to retrigger the installation immediately. Tied in with this is the inability to retry an app that happens to be mandatory -- not optional. The app failed, but the "Reinstall" button is grayed out. Can you please allow for retries on mandatory apps -- if the app failed to install?
- Will we be able to scope policies and applications to individual computers rather than to only security groups? Quite often I find myself needing to scope a quick app or configuration profile to only a handful of machines but have to create extra groups just to support a small task; I don't think filters resolves this either.
- Man, and this question got skipped over again... 😞
- Jason_Sandys
Microsoft
Although any and many things are ultimately possible, I don't see this happening without a compelling ROI given that you can create a one-off Entra ID group for this purpose. Yes, there's admin overhead and permissions to consider, but those, in general, are considered small and not impactful -- at least not impactful enough for us to consider prioritizing this ask above other work. You are certainly free to keep asking and suggesting this as I do think there's value here, just not enough in comparison to our core intent on improving and adding features and functionality. If you (and others) can quantify a real business impact for not having this (business usually equates to $$$). If this is something you can provide, then it's much easier for us to weigh and possibly prioritize.
- We've seen problem with detection rules not "refreshing" to the reality of the app status on the device. For example, the app *really* isn't installed, but the Company Portal is indicating that it is. What is the surefire way to run the detection rule again? Sometimes we have had to restart the IME service and Company Portal app. I think there is room for improvement here.
- Our experiences with application delivery with Intune have not been entirely smooth either. When it works well it's been great, but troubleshooting is more cumbersome and opaquer than I feel it should be. Any QoL, or ease of access improvements around this area would be incredibly welcome.
- 10 years ago, we had full control of Windows devices on our network. Anything we needed to do, anything we wanted to know was 100% possible in PowerShell, as well as other well-documented tools, native and 3rd-party. Today with Azure, no so great. It feels like the 90's with the amount of control we have natively, without 3rd-party tools. We cannot remote to a device without the user present. We cannot bulk rename based on specific conditions. We cannot use WinRM or WMIC to do live queries of hardware or software. We have to use MS Graph, which for me is a poorly documented tool, to get only some of the info we are used to receiving. Perhaps it's me coming from the Novel world into NT 3.5 just 30 years ago, or just not being as up to speed on Azure/Intune as I should be. Whatever the reason is, it sure would be great if we could utilize the skillsets we know well, to do the things we are used to doing, to keep good control over our devices. Thoughts?
- Jason_SandysHi Jaime Alexander. Your question is more or less along the same lines as that posted by Dylan Gould and thus my answer is similar (or the same really).
- Jason, may I DM you?
As I am sure you're aware, the time that it takes for devices to receive configurations from intune has long been a pain point current Intune MDM users and an obstacle for those looking to adopt Intune that are coming from faster services like SCCM or even GPO. I have been impressed with the speed on MacOS for Intune, but for Windows, it leaves much to be desired.
Has there been any update on this front that you can share? I remember hearing details about switching the backend to more push rather than a pull for configurations, but I don't recall the specific details about that.
In progress of trying to move our organization to go to Entra Joined Devices instead of being in a hybrid state where several Intune features do not work to full capacity but we have run into a issue.
We seem to lack the ability to do Remote Backend Troubleshooting on a Entra Joined device. Examples unable to use WinRM, Computer Management and RDP via hostname.
Remote Help assist partially but this requires the end user to be present along with me interrupting their workflow when I could do most my Troubleshooting and apply fixes behind the scenes not bothering the end user.
Does Intune have such features I am just missing, are these features on any sort of road map, or suggestions how to get around this problem when migrating to Entra Joined Devices managed by intune.- Jason_SandysHi Dylan Gould. The features you've called out aren't Intune features but are core Windows features that depend on two primary things: connectivity and authentication. Both are possible with Entra joined devices but some configuration is required to enable authentication (at least for WinRM). I do have a blog in my backlog to write (or get some to write for me) to expand on this and give details.
- Looking forward to this, thank you!
- What is going on with Remote Help on Windows? The what's new page seems very quiet - 3 updates in the past year: https://learn.microsoft.com/en-us/mem/intune/fundamentals/remote-help-windows . We were expecting unattended mode to be added months ago. Thanks.
- Jason_SandysUnattended mode for Remote Help on Windows in still in our plan but has slipped timeline wise. We don't have anything additional to share on this at this time though.
