Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Include option to create Child ADR/Nested ADR

    For Example, if we want to create ADR's for Windows 10 and O365 updates, we need two ADR's to be created, because of the difference in configurations such as Title, Product, classifications - all differs on both. If it is nested then we have an opportunity to embed the child ADR in to parent and can be executed on the same time.

    Just similar to creating Child Configuration Item to the parent and deploying both of them using a Single Configuration Baseline.

    3 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. 1 vote
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Improve SCCM's built in WSUS cleanup and maintenance task

    Preview SCCM versions have a basic WSUS cleanup and maintenance task. It should be evolved and expanded to include SQL index optimization, IIS configuration optimization, and deletes of declined updates.

    55 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Allow Applications/Packages to Show Up Under Updates in Software Center

    Allow admins to determine which tab applications, packages, and task sequences show up in Software Center. This is especially important for applications/packages being able to show up under Updates when wanting to update existing software thatā€™s more complex for Software Updates/SCUP. This would make it easier for end users to make sure they have updated all of their software at one time.

    3 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. make "Prefer cloud based sources over on-premise sources" also apply to Microsoft Update

    Even though Microsoft Docs lists Microsoft Update as supported cloud sources (https://docs.microsoft.com/en-us/configmgr/core/servers/deploy/configure/boundary-groups#bkmk_bgoptions4), "Prefer cloud based sources over on-premise sources" does not seem to apply to Microsoft Update content in the case of an AlwaysOn VPN scenario where devices would show in "intranet" all the time.
    The only alternative option is splitting up update deployments (VPN vs Non-VPN) and working with the download settings on the individual deployments, which is very cumbersome. If a client falls into a boundary group which has the setting enabled, it should respect it and use Windows Update for source content.

    1 vote
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Add ESU update classification

    Can you please add an update classification called "ESU" or something like that so that we can filter our ADRs to make updates work properly with ESU? (It seems that if we get a single update that is not allowed for ESU added to our software update group it will make all updates not available.

    1 vote
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Add an option for Weeks under Supersedence Rules in Software Update Point Component

    For nearly all months, we only need to keep superseded updates for an additional week or two and not a full month. The current options ask for months to wait before a superseded software update is expired. Adding a Weeks option will allow for us to keep those superseded updates, but for a shorter period of time.

    3 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Software update scan results available to WQL

    Please can you make v_UpdateScanStatus available in WQL, as it would be useful to be able to create collections based on software update scan results.

    8 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Targeted Software Update Sync of Specific Products

    As we are testing new third party update, I find myself doing a lot more manual SUP syncs. It would be excellent if I could do a custom, one off sync of specific Products or Vendors or something along those lines.

    16 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Add Ability to Uninstall KBs

    With all the Microsoft Update issues over the past year or so it would be useful to have the built-in ability to push an uninstall of a KB from the SCCM console.

    WSUS services already have this ability by declining an update and approving it for removal. No such functionality exists inside the SCCM console.

    Simply waiting for a future update that may correct a bad KB is not viable for many enterprises.

    Neither is instructing users on how to uninstall KBs on their own from Control Panel as all of our users do not have sufficient permissions to doā€¦

    1 vote
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. More flexibility in deployment schedule for ADR deadlines

    It would be nice to have the same scheduling options available in the ADR eval schedule and the deployment schedule. I have multiple release deployments that occur on the 1st, 2nd, and 3rd Thursday. If the ADR deployment available and deadlines had those options it would be cool...

    0 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Make ignore dismissable errors easily available in windows servicing

    I would like to see an option to easily allow dismissible warnings when deploying a feature update via Windows 10 Servicing

    1 vote
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Allow republish of Third-Party content

    Currently once a third-party update is published, SCCM assumes the content is always available in the WSUS content folder. If this folder is deleted, the published content is lost and cannot be re-published. Adding a re-publish context button on already published items will fix broken updates without having to rebuild the entire WSUS database.

    10 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. SCCM compliance reporting should work on clients that use WUfB

    Right now I have no compliance data for a client's Windows Updates in SCCM if I enable WUfB on the client. My organization does not want to use Azure AD for domain joins nor Windows Analytics for update compliance information. Without compliance information in SCCM, we cannot use WUfB which has the superior update experience over ConfigMan software updates. We want the WUfB superior update experience without the cloud integration.

    Thanks.

    2 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Office 365 Updates via SUP - Add a Customization tab for Office Customization Toolkit

    Deploying Office 365 updates via the Software Update Point works pretty well, especially when upgrading to a feature release! Upgrading from 1808 Semi-Annual Channel to 1908 Semi-Annual Channel works great! However I'd like to request more granular control of the update.

    When you right click on an Office 365 update --> Properties, it would be awesome to have a tab that gives you the Office Customization Toolkit. OCT should give you the ability to change channels, change bitness, unselect programs like Teams or OneNote.

    I understand that we can create a whole new Office 365 application package and deploy toā€¦

    0 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Office 365 Proofing Tools language Selection

    Office 365 Proofing Tools language Selection:

    In SCCM, we cannot select the Office 365 Proofing Tools Languages along with the Office 365 Client Update. But, if we choose the Office 365 languages then the respective Office 365 Proofing tools language will be selected.

    Office 365 language size will have ~400-500MB and the Proofing tools language size will have 30-150MB. So, if we select ONE language, then it will be around ~450-650MB. Here most of the users will not have Office 365 language Pack, but they will use Office 365 Proofing Tools languages for Grammer, Spell check, etc.

    As per theā€¦

    68 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Ability to easily list computers not patched against a specific CVE

    Say you want to list computers not patched against CVE-2019-0708 (https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708). 2 problems here :


    • Depending of the OS version, the KB number is not the same.
      -A KB number is quickly superseded and depending of the supersedence behavior, it becomes unknown from SCCM.

    It could be great if for each computer a mecanism could determine which KB is needed, if it (or a superseding KB) has been applied and produce a report.

    6 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Enable Publishing 3rd Party updates on SUG

    Currently we can publish third party updates from "All Software Updates" before adding them to a SUG. It would be great if we get a feature which will allow is to publish selected 3rd party updates in SUG on a whole and not individual or multiple selections.

    3 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Compare group server patching level

    A right click tool (or script) to compare installed hotfixes in a collection group of servers.

    9 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. SCCM ADRS: Cannot setup ADR for a Date Range, Only out to 1 Year.

    Currently you can search for patches for a range, for example:
    AND Date Released or Revised is between 1/1/2001 and 5/1/2019
    AND Required is greater than or Equal to = 1
    Expired=No
    Superseded=No

    But When Creating an ADR you cannot specify the date range for Needed\Required Patches that meet that same criteria. You can only deploy Patches released within the Last Year in an ADR.

    This is a Patching requirement for us, and most Fortune 500 Companies. We have to be able to deploy Patches that might be needed that are older than a Year. ADR's need to be ableā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base