Microsoft

System Center Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building System Center Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the System Center Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Configuration Manager?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Software Updates Required View Status

    Software Updates Required View Status

    Can we get an option to view status like in deployment status to view machines that are required and installed? We have no idea what does machines are.

    Thanks.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  2. Have a SUS Blog that is staffed or updated during the monthly Patch release so we can quickly and efficiently locate any problematic updates

    Have a SUS Blog that is staffed or updated during the monthly Patch release so we can quickly and efficiently locate any problematic updates.

    For example we had various issues last year with different monthly .NET updates and this past week with the March updates, a known PXE issue impacting SCCM due to an update. I also had to open a CritSit case Sunday evening because our SUS server could not synchronize with Microsoft internal servers and was told it was an internal Microsoft server issue but it was not posted/blogged or communicate anywhere for customers. We should NOT have…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  3. Manage PKI Certificate for 3rd Party Update Signing in ConfigMgr

    Include directly in ConfigMgr the ability to manage a PKI certificate for 3rd party software update signing as opposed to requiring SCUP.

    With the functionality for 3rd party software updates moving from SCUP into ConfigMgr it would make sense (and this may already be in progress) to include the ability to manage a PKI certificate in ConfigMgr as well. Currently if you want to sign 3rd party software updates with a PKI certificate you are required to manage that certification using SCUP which means you might as well just keep using SCUP to publish the updates.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  4. Copy selected text of an ADR preview

    I would be handy to copy the selected text to finetune the ADR afterwards. Now we have to take a screenshot to know the Bulletin ID.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  5. Third Party Updates Bios Password save location

    We use a bios password (requirement from our Security admin) which means that Third Party Updates for Dell fail because it can't access the Bios to update. The ability to save a Bios Password somewhere in SCCM TPU's area to be supplied to the TPU process when required. Not sure how complicated this is or how it could be done, but currently the bios update option doesn't seem possible using TPU if you have a Bios password. Yes, I realize I can use CCTK to create a manual deployment but obviously TPU is much simpler. I have verified that once…

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  6. express installation file download in console

    need to reduce the download of .psf files for each Cumulative updates of Windows 10 versions, as its consuming more than 30 to 40 GB on a monthly basis. Should have a similar option on console like enable express installation on console (which is similar to enable express installation on clients)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to deploy Software Update Groups to User Collections

    It would make sense to have the ability to deploy software update groups to user collections. We have a few different user collections for "pilot" users. When we want to test new software we deploy to these "waves" of pilot users. This gives us the ability to not have to worry about maintaining the users primary device in a device based collection. We have device based affinity within client settings enabled. So if the user ever replaces their pc it gets updated within 48 hrs of system use. This will dynamically keep our pilot list updated. It's a PIA trying…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  8. color code software update groups, green for test, yellow for pilot and red for Production

    We have lots of Software Update Groups, I would like to color code them, green for test, yellow for pilot, and Red for production. that way I could see the color and know the status. that way I don't have to look at the deployments tab to know status.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  9. Do not run Server Group's node drain scripts when installing definition updates

    If you define a server group and use Windows Defender you might want to update those definitions as early as possible.

    Currently, those definition updates trigger the node drain and resume skripts, which can lead to service downtime.
    Additionally, the updates can only be installed during maintenance windows.

    I want you to
    a) add an option in deployment in software update groups to always ignore maintenance windows
    b) add an option in deployment in software update groups to ignore server group settings

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  10. 3rd party revised

    Replace update metadata revision on 3rd party catalog synchronisation. With SCUP, it prompts if you want to replace update informations. Would be nice if this function will be implemented in SCCM Third-Party Software Updates too (automatically or manually). If update already deployed to WSUS, revisions need to be updated automatically to keep consistency.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  11. retry installation of failed software updates

    When installing updates via software centre, some updates may fail initially, once other updates have completed installation, software centre doesn't retry these updates but prompts for the reboot. Once the user reboots updates may try installation again which then means another reboot for the user. When initiating the install again manually it usually results in the failed updates installing correctly.

    Software Cenre should retry the 'failed' updates at least once - before offering a reboot to the user as in most cases this should result in all updates being applied and the user only needing to reboot once.

    Also better…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add link to monitoring deployment from SUP

    Whenever you are in Software Update Groups looking at the Statistics, it would be nice to click a link to view the deployment instead of having to click on Monitoring - Deployments find the deployment and view the status.

    Even having the ability to right click on a SUG and View Status (like you get when you are in Deployments)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  13. compliance baselines should allow for compliance checks against software update groups

    currently we can only really select individual updates for creating a compliance baseline, it would be great if we could add compliance baselines based on a software updates group

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  14. Third party update Dell Update group by models

    1. When creating new ADR only published Dell updates are searchable to be added, any updates that are not published won’t be shown in the search results. Since publish updates means having updates downloaded first, we have to manually publish the updates we need before creating the ADR selectively, which brings up issue #2;
    2. Since in issue #1 we need to publish updates first before we can create new ADRs, can we group Dell updates by models, say all Dell updates for 9020, since we want to filter Dell updates only with the models we have, then we create…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add Software Updates to an excisting update group that has been deployed

    We now have an option to deploy software updates without downloading them, and I’m a fan as this enables many great scenarios.

    But if we want to add a new software update to an existing Update Group, it still requires the update to be downloaded (see screenshot).

    This should be allowed, and the following error should be a warning, and still allow us to add new software updates to an update group that has been deployed.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  16. maintenance window and computer restart notification time preventing reboots

    It seems that if you set a client notification time in Computer Restart client policy that exceeds the maintenance window on a collection then the devices in that collection will never force a reboot with a user logged on.

    It would be nice if it gave the user the notification window but when the maintenance window comes around for the 2nd time and a reboot has not been done then the installation would happen at the start of that maintenance window.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  17. In ADRs I would like more options when scheduling a deployment

    I would like to be able to say that I would like the deployment of the third Thursday of every month. I would also like to have deployments made as available not just required.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  18. When reviewing the status of a software update, allow opening a list of computers that still need it directly in the console

    When viewing a software update in the console, it only shows the number of systems that are compliant, non-compliant, etc. next to the pie chart. Modify that so each number is a hyperlink that when clicked opens a new node under Devices showing the list of systems that are in that state for that update. Having the ability to quickly see which systems still need an update in the console would be extremely useful. Having to run a report every time is slow and cumbersome.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enhance Filter options for Automatic Deployment Rules

    The Wizard for creating automatic deployment rules is nice for people who prefer easy-to-use wizards but some of us power administrators need more options. I would like to have the opportunity to define a SQL query by myself, that gives me exactly the updates I need. The rule engine translates the filters to Sql queries. Therefore I guess it would be easy for you to implement a Text field for custom queries.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  20. Create a feature like the WSUS Selfupdate feature for updating WUA

    Hi all,

    with the older WSUS versions we had the selfupdate mechanism that kept the client WUA version up to date, before attempting any scan.

    This has since been deprecated, because WUA started to be patched outside of the updates for WSUS itself (like KB2938066).

    This has lead to a lot of enterprise environments having different and very old WUA versions among the install base.

    In order to address this problem at the moment, the ConfigMgr admins have to use a method like the one below:
    https://cloudblogs.microsoft.com/enterprisemobility/2014/07/14/how-to-install-the-windows-update-agent-on-client-computers/

    This is an overhead for any admins and should be easier.

    It would…

    49 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base