Ideas
What features would you like to see?
All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we can’t promise to reply to all posts.
If you require assisted support, please see https://aka.ms/cmcbsupport for more details.
-
Option to use proxy only for syncing from internet (and not between SUPs)
When configuring proxy for SUP syncing, the same proxy will be used not only to sync updates from internet on primary SUP, but also to sync from primary SUP to other SUPs.
This creates a problem in a scenario where proxy is only allowed to access internet, since without it we can not sync from internet, and with it we can't sync between SUPs.24 votes -
Re-run failed Automatic Deployment Rule (ADR)
Sometimes (one time per week) we have a failed automatic deployment rule (ADR).
Error Code:
SMSRULEENGINE
Message ID: 8706
Decription:
Content download failed.
Message: Failed to download one or more content files.
Source: SMS Rule Engine.Most of the time it is the one of the Windows Defender Definition updates. If I Re-run (Run Now) the ADR it works perfectly. Maybe there is not enough time between sync sup and run ADR. I don't know. After I click "Run Now" it's always success.
It would be great if you can add an option "Re-run failed ADR, after X…
24 votes -
Include "ODBC Driver for SQL Server" in Windows Server Update Services (WSUS)
It would be great if Microsoft could include updates for the "ODBC Driver for SQL Server" (https://docs.microsoft.com/en-us/sql/connect/odbc/download-odbc-driver-for-sql-server) in Windows Server Update Services (WSUS)
Thanks a lot for votes!
24 votes -
Scheduled Offline Updates - Include Microsoft Office
We find the Scheduled Updates option incredibly helpful, however not being able to include Office Updates means we still require the occasional build and capture to include those updates in the WIM. Could the inclusion of Office Updates within Scheduled Updates be a possibility?
23 votes -
Windows 10 1703: Stop apps re-installing when deploying the feature update
The Windows apps are overwritten when 1703 feature is installed. This means we have to identify the new apps and update our scripts to remove unwanted apps (again). We were told this was being looked into and would not happen after 1607. https://blogs.technet.microsoft.com/mniehaus/2016/08/23/windows-10-1607-keeping-apps-from-coming-back-when-deploying-the-feature-update/
23 votes -
Allow Software Center to report all installed Software Updates
When software updates are pending installed or just installed they are reported in the Software Center, Software Updates section. Then they disappear from that view.
Can we configure the software update view to report all software updates installed by the SCCM client? Or reference the installed updates from Windows Update agent?
23 votes -
Missing settings in Deploy Software Updates Template
Some new features of Software Updates Deployments are missing in the Template.
This can be frustrating for Admins if they rely on these templates.
All settings you can specify in a Deployment should be part of the Template22 votes -
Software Update reports accessible from within Software Updates
It would be great to have a menu item to view the specific update reports in the All Software Updates view and within the Software Updates Groups view. Currently we can ascertain the updates' status details, required count, install count etc... from the Software Update list view but this information is not interactive. To actually identify the specific list of systems these updates are needed by or installed on we have to manually run a compliance report for the software update. It would be nice to have that functionality built into the Software Library module where highlighting an update will…
22 votes -
Option to reboot at the end of the maintenance window
We have an issue with business wanting to know within a 15-30 minute timeframe when the server reboots. With the maintenance windows today we can only open for installation and reboot but do not know when during the maintenance window the reboot will happen. Would it be possible to allow a setting to wait with the reboot to the end of the maintenance window. This way the reboot time would be predictable and installation would happen during the maintenance window. The option could be something like "If reboot is required wait until the end of the maintenance window to reboot"…
22 votes -
Software Update Groups - Speed up 'Edit membership'
'Edit membership' is unuseable if you've got many update groups. Please add simple tools like 'Add update(s) to existing group(s)', 'Remove update(s) from group(s)' and 'Remove Update(s) from this group' (if you're in context of an update group).
The sub dialogues of this aditional functions shouldn't provide the information in which update group the patches are listed because the query runs too long. Just let us choose the groups form a simple search list. A filter to minimize the list of results would also be fine.21 votes -
Sub folders within Automatic deployment rules
Being able to create folders within automatic deployment rules would allow us to seperate our ADR's by type / OS or whatever and would make it much easier to manage. the subfolders are available for most other catagories so i feel it should be added to this one as well.
21 votes -
Allow us to configure Proxy server settings for the console that is downloading Software Updates
On our Primary site server, under Admin > Site System properties, we have set the proxy settings with username and password.
In our company, Domain Admins are blocked at the proxy server from accessing the internet. My colleague, who is an SCCM admin, but not a Domain Admin, can download Software Updates and add them to a Deployment Package. I am a Domain Admin, and when I try this, it fails with: "Error: Failed to download content ID 16902216. Error %1 is not a valid Win32 application."
So, that proxy setting is used by some functions of ConfigMgr, but not…
20 votes -
Fix ADR Deployment Settings when editing
In SCCM 2012R2, there use to be a an edit for the ADR so you could specify a new deadline time. The time field is no longer an option once the wizard is closed. In CB (1702) you need to recreate the entire ADR to specify a new hour for the deadline. See pictures.
20 votes -
ADR property filter extend "date released or revised" with custom
We create "year packages" for several products so older updates are in a "static software upgrade". But we still have to maintain these SUG periodically to remove superseeded updates.
An example:
I'd like to have an ADR which selects all updates from 2015 for all my server OS'es and checks this every month or quarter so expired updates are automatically removed and reinstated updates are added again.In addition, I want my current ADR to select all updates from 1st of Januar till now. This is not possible at the moment because all moments are relative.
Why(?) this seems strange…
20 votes -
Orchestration Groups Microsoft Endpoint Congfiguration Manager 1910
I know in SCCM Tech Preview 1909, they talked about Orchestration Groups for servers. Why wasn't this feature added in to the new Microsoft Endpoint Configuration Manager 1910? Will this be added in the next iteration? From reading this would be a good feature to have, when it comes to installing updates on cluster servers.
20 votes -
SCreate a seocndary deadline action for insalling and rebooting outside of maintenance window
I'd like to have the option, when pushing out software updates to have deadlines for maintenance windows. For example, you set the deadline for automatic install and reboot for sunday at 10pm and set the deadline behaviour to not do anything outside of the maintenance window. This means the patches will only automatically install during the maintenance window and wont interrupt the users during the day. However, I'd like a secondary deadline, so that say on Wednesday night I can set the patches to install outside of the maintenance window from say 6pm onward (i.e the users have had enough…
19 votes -
Add a patch now option
Add a patch now option
From the software update view in the console, add a option to select updates, then having a patch now or deploy now action.
This could open a window with all the devices on which the updates is missing the give you the ability to add those devices to a collection where the updates are deployed or even give you the ability the create a deployment, download the updates, etc...
19 votes -
Option to force restart desktop endpoints if no user logged in
Hi There,
I am wondering if we can have an option in SCCM to force restart desktop endpoints after patch installation when no user logged in. This option certainly not useful for server endpoints but for desktop endpoints, it could be a blessing for work station admins those have to chase users to restart the VDI/desktop endpoints periodically to get patches installed in an environment where admins can't define any specific restart time due to nature of the job. Possible options/ features I see:
1. Define setting in machine collection/ deployment group that if no user logged in install the…19 votes -
Implement Cluster Aware Updating in SCCM
I would be nice to have Cluster Aware Updating implemented in SCCM. Ultimately the way CAU currently does with WSUS, draining the nodes and then resuming them. This would help make patching go smoother in SCCM, when patching clusters. Currently I have 2 collections separating clusters and having to do normal reboots via SCCM, but staggering the times of these clusters, so there is no issue. Is CAU in the roadmap for SCCM?
19 votes -
Enable partial patching if maintenance window isn't big enough
SCCM seems to calaulate the total time for an update group and then look for a maintenance window big enough to apply all the updates. I'd like to see SCCM apply as many patches as it can during a maintenance window.
18 votes
- Don't see your idea?