Release Notes for Windows Intune
Updated: June 16, 2014
Applies To: Windows Intune
Windows Intune is an integrated, cloud-based client management solution that provides tools, reports, and upgrade licenses to the latest version of Windows, and helps keep your computers up-to-date and secure. In addition, Windows Intune lets you manage mobile devices on the network either through Exchange ActiveSync or directly through Windows Intune. The following release notes describe important information and known issues in Windows Intune.
The following issues can occur during client software deployment, client device preparation for Windows Intune, or device enrollment.
Issue: The error This request couldn’t complete is returned when you attempt to enroll a Windows RT or Windows Phone device to Windows Intune, and the Windows Azure subscription in use with Windows Intune is configured to use Windows Azure Multi-Factor Authentication. The current release of Windows Intune does not support Windows Azure Multi-Factor Authentication and fails to enroll applicable devices when Windows Azure Multi-Factor Authentication is enabled. Windows Azure Multi-Factor Authentication is supported by some services that use Windows Azure and that might share the Azure subscription with Windows Intune, such as Office 365. When Windows Azure Multi-Factor Authentication is enabled for Windows Azure, it is active for all services that share the subscription. For more information about Multi-Factor Authentication, see Securing access to cloud services - Information for Administrators.
Workaround: Turn off Windows Azure Multi-Factor Authentication for the Windows Azure subscription you use with Windows Intune.
Issue: When you enroll a Windows 8.1 device and the device must authenticate to a proxy server during the enrollment process, the enrollment fails if the device has not cached the proxy server credentials. When the credentials for the proxy server are not cached on the device, the enrolment process must wait for the user to enter the credentials. However, the prompt to provide the proxy server credentials does not display during the enrollment process. The result is that the enrollment process cannot authenticate to the proxy server and there is no visible indication of this failure presented to the user.
Workaround: For Windows 8.1 devices that must enroll on a network that requires use of an authenticated proxy server, configure and save the credentials for the proxy server prior to enrollment of the device. To configure and save the credentials on a Windows 8.1 device:
On the Windows 8.1 device, open Internet Explorer.
When prompted for the proxy server credentials, enter the credentials and then select the option Remember my credentials.
Enroll the device.
Issue: When you enroll a Windows Phone 8.1 device, enrollment fails if the optional setting for device authentication is enabled as part of global authentication policy in Active Directory Federated Services (AD FS).
Workaround: Disable device authentication on the AD FS server by unchecking Enable device authentication in Edit Global Authentication Policy. For more information, see Configuring Authentication Policies
Issue: When the Windows Intune policy Enable SmartScreen (Windows 8.1 (RT/x86/x64)) for computers is set to Yes or No, the correct value is updated in the system registry. However, when viewed from the Windows Action Center on the client, the Windows SmartScreen policy always appears as On.
Workaround: There is no workaround for this issue.
Issue: If a mobile device policy has the Allow adult content in media store setting configured, and is applied to an iOS 5 or iOS 6 device, the status of all settings for that device may display as Conforms.
Workaround: To see the correct status of the device settings, remove the Allow adult content in media store setting from the policy, and reapply.
Issue: Windows Intune does not correctly apply policies and applications to a device that remains in the Ungrouped Devices group. This occurs even when the policy or application is specified to a group other than the Ungrouped Devices group. There are no errors displayed for this problem.
Workaround: Remove the devices from the Ungrouped Devices group, and ensure the devices remain as members of at least one other group that receives policy and applications.
The following issues can occur with Windows Intune software distribution.
The following are known issues with alerts in this release of Windows Intune.
Issue: In this release, the remote assistance feature is not available on computers that run Windows 8 or Windows 8.1.
Issue: If a recipient is automatically added to an alert notification, they may not always receive a notification.
Workaround: To make sure that recipients will receive message notification, you should manually add recipients to alert notifications.
This document is provided "as-is". Information and views expressed in this document, including URL and other Internet website references, may change without notice.
This document does not provide you with any legal rights to any intellectual property in any Microsoft product. You may copy and use this document for your internal, reference purposes. You may modify this document for your internal, reference purposes.
© 2012 Microsoft Corporation. All rights reserved.
Microsoft, ActiveX, BranchCache, Excel, Forefront, IntelliMirror, Internet Explorer, MS-DOS, Silverlight, SpyNet, Windows, Windows Intune, Windows Live, Windows Server, and Windows Vista are trademarks of the Microsoft group of companies. All other trademarks are property of their respective owners.