Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. ADR – Software Updates Property Filters

    When creating a new ADR software update you have the option to select the property filters and search criteria’s in the wizard. It would be beneficial for an advanced search technique or “wild card” to identify those filters that are broader. For Example: -%Cumulative Update for .NET Framework%Windows 10 Version 1809

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  2. ADR-WIZARD - The ability to create additional deployments during the initial ADR set-up.

    When creating an ADR the wizard looks to be limited to a single deployment. There is the ability to add additional deployments. However, It would be nice if the creation of multiple deployments could be accomplished within the initial ADR creation in the set-up wizard.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  3. Auto update software on pc with software installed

    A nice feature would could be if a PC already has a certian piece of software installed and I release a new version it will automatically install update. I could just use required deployment but that will install on all PCs which is not needed.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  4. Deploy patches to servers only after an event has occurred successfully during a defined period of time

    Deploy patches to members of a server collection after a chosen event has completed successfully within a defined period of time, this would allow for a backup to occur for example before deploying the patches. This would then check that an event has happened before running the patch install process using ConfigMgr, and using status messages to create alerts based on event viewer this could then be used for non MS backup utilities.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  5. Third Party Updates Bios Password save location

    We use a bios password (requirement from our Security admin) which means that Third Party Updates for Dell fail because it can't access the Bios to update. The ability to save a Bios Password somewhere in SCCM TPU's area to be supplied to the TPU process when required. Not sure how complicated this is or how it could be done, but currently the bios update option doesn't seem possible using TPU if you have a Bios password. Yes, I realize I can use CCTK to create a manual deployment but obviously TPU is much simpler. I have verified that once…

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  6. from All Software Updates right click and show machines that need the update

    From All Software Updates Right click on the update, click on Show Machines that require the update and see a list of Machine names that need the update.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  7. Implement Cluster Aware Updating in SCCM

    I would be nice to have Cluster Aware Updating implemented in SCCM. Ultimately the way CAU currently does with WSUS, draining the nodes and then resuming them. This would help make patching go smoother in SCCM, when patching clusters. Currently I have 2 collections separating clusters and having to do normal reboots via SCCM, but staggering the times of these clusters, so there is no issue. Is CAU in the roadmap for SCCM?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow offline patching of Feature Updates

    Currently (as far as I can tell anyway) there is no way to offline patch a feature update. I'm currently in the process of developing an upgrade strategy for moving from 1709 to 1809.

    At the moment, I have to deploy the feature update, and once complete, the subsequent patches are applied soon after, increasing disruption to users already inconvenienced by having their computer offline for at least 30 minutes while the feature update applies.

    It would be great if the feature update could be kept "up-to-date" by allowing offline patching, and therefore necessitating only a single reboot, which would…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  9. Get rid of the 100 Category limit for WSUS with third party updates

    Not sure why anyone would place a cap on the number of categories for software update with third-party updates but considering SCCM is used for performing updates and plugins can be integrated into the system having a 100 Catagory limit makes no sense

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  10. Update changes to maximum runtime for software updates with machine policy

    If maximum runtime for an update is changed it can take weeks/months and sometimes never to update on a client that already received the update assignment.
    In our case it was a feature update and we changed the software update maximum runtime after deployment once we found this was missed.
    We still find clients after 1 month that is in failed state for the update and have the standard maximum runtime value.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  11. It would be nice to get the ability to do true driver updates from the Software Update Point role instead of trying to deploy the exe.

    It would be nice to get the ability to do true driver updates from the Software Update Point role instead of trying to deploy the exe to actually create a package.

    Allow the drivers check box similar to using WSUS.
    Then allow them to pull down the driver similarly how WSUS handles this mechanism since SCCM is leveraging a WSUS instance to do the other portions of the Software Update Point.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  12. Soft and Hard Deadlines for Software updates

    Software updates need a 'hard' deadline so that computers who have hit the updates but never leave their computers on within a maintenance windows, will never have the updates installed.

    1st : Deployments made available for users to install at their leisure from the software center. Possible

    2nd : After say 1 week, install the updates as per maintenance windows in the evening. Possible

    3rd : After 1 more week if not yet installed, just install no matter what at any time, with the standard notifications for reboots as per SCCM client settings. "Currently not possible"

    https://social.technet.microsoft.com/Forums/en-US/6f8f161c-45e2-4a1a-b78c-dd1f7c0bbc0c/software-updates-adrs?forum=ConfigMgrCompliance

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  13. Bios & Firmware Centre

    While there is some nice ideas to update bios and firmware, it tends to require a lot of customisation. It would be nice to have a new feature in Software updates dedicated to this. Just construct a framework and hopefully the tier 1 vendors would provide the 'plugin' to be able to update/patch within SCCM

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow editing and expiration of Third-Party Software Updates

    Please add full functionality of SCUP to the Third-Party Software Update feature. Adobe Acrobat catalogs don't expire older updates and don't include supersedence information. I normally added supersedence settings through SCUP to mitigate this. Without the ability to edit this information or to expire old updates manually, deploying Acrobat updates becomes unwieldy. Unexpired updates that are not superseded will likely bloat and fill up the data shares. If you can publish it, you should be able to expire it.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  15. Deploy multiple selected Software Update Groups at once.

    When multiple Software Update Groups are selected we cannot deploy them at once to a new collection.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  16. Include Dashboards For Status On Update Deployments

    Including dashboards for Windows Update status seems like it should be included already but they aren't.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  17. Provide an Install Updates TS step which uses DISM

    There should be an Install Software Updates TS step which allows you to select an existing Software Update Group/Deployment Package and apply all those updates using DISM rather than just triggering a scan of available deployed updates.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  18. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  19. Publish third party software update content

    Publish third party software update content even that catalog were added to WSUS by another application, tool, or script, such as SCUP.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  20. Improve error messages on Automatic Deployment Rule failure than the generic 0x80004005

    Any failure of an Automatic Deployment rule seems to fail with an 0x80004005 error. However, this is may a removed update (removed by Microsoft). This case should be handled more gracefully and have better debugging messages.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base