Microsoft

System Center Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building System Center Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, seeĀ https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the System Center Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Prevent A SUP Package from Overwriting a SUP Directory tree

    At 3 customer sites, someone has mistakenly entered in an incorrect path for a SUP package and overwritten the package source for other packages. For example, it's common practice to use \\server\share\<year>\<month> for package source. If I Package A uses \\server\share\<year>\<month>, and then a Package B is created and uses \\server\share\<year> as the package source, the <month> folder is overwritten and Package Source A has been corrupted. Might it be possible to prompt for "Are you SURE - this will overwrite the source for these packages:..." in such a scenario?

    14 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Show The Chain of Expired/Superseded Updates in the Console

    When I search for a KB in the SCCM Console, there should be a tab, likely at the bottom pane of the console (e.g. a part of Summary, Deployment, Phased Deployments), that shows what updates a given KB superseded or what has superseded that KB. This is better than having to go to search this out on the web.

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Add deployment setting-Allow enforcement outside of maintenance window for deferred update (updates that have missed one maintenance window)

    There are many benefits to having one deployment for all of our workstations. We have an ADR that approves our patches and deploys them to a singular collection. Our update schedule is segmented so that not all locations go at once. Since we only have one deployment, this assignment is carried through by maintenance windows. We would love a setting that allows the workstations to wait for their maintenance window after our approval, but as soon as it has missed one window "and is now a deferred update" then enforce outside of maint. windows. We know we could go backā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Service Plans - define search for feature updates to save disk space

    At the moment when creating a service plan in SCCM e.g. for Windows 10 Fall Creators Update (1709) there are several versions downloaded. Like the x86, x64, consumer and business files. So if you need the update only for Win 10 x64 Enterprise EN, you will still get all 4 versions: the x86, x64, consumer updates (Win 10 Home) and business updates. That results in pretty much wasted disk space which would not be necessary since the x64 business files would suffice.

    It would be great if we can define the search better so you can choose what files willā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Add 'OS Build' Column in Updateinfo for each update

    The UBR is also used to identify a machine is complaint to cumulative monthly patch or not.

    Now that we have OS build (Buildext or UBR) info add to V_R_System via DDR, it would be great if the same UBR or OS Build is added to each update in V_Updateinfo table in SCCM Database
    when the new updates released by Microsoft on MSPD, so that the win 10 compliance reporting would be much simpler.

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Log which user initiated software updates

    In a multi-administrator environment, it's often useful to check which user initiated the installation of the software updates.

    Now all we have is: 'InstallUpdates Initiated by user'.
    We don't really know which user initiated those updates.

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Re-run failed Automatic Deployment Rule (ADR)

    Sometimes (one time per week) we have a failed automatic deployment rule (ADR).

    Error Code:
    SMS_RULE_ENGINE
    Message ID: 8706
    Decription:
    Content download failed.
    Message: Failed to download one or more content files.
    Source: SMS Rule Engine.

    Most of the time it is the one of the Windows Defender Definition updates. If I Re-run (Run Now) the ADR it works perfectly. Maybe there is not enough time between sync sup and run ADR. I don't know. After I click "Run Now" it's always success.

    It would be great if you can add an option "Re-run failed ADR, after X minutes, tryā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Allow Software Center to report all installed Software Updates

    When software updates are pending installed or just installed they are reported in the Software Center, Software Updates section. Then they disappear from that view.

    Can we configure the software update view to report all software updates installed by the SCCM client? Or reference the installed updates from Windows Update agent?

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Software Update Groups - Speed up 'Edit membership'

    'Edit membership' is unuseable if you've got many update groups. Please add simple tools like 'Add update(s) to existing group(s)', 'Remove update(s) from group(s)' and 'Remove Update(s) from this group' (if you're in context of an update group).
    The sub dialogues of this aditional functions shouldn't provide the information in which update group the patches are listed because the query runs too long. Just let us choose the groups form a simple search list. A filter to minimize the list of results would also be fine.

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Bitlocker aware updating - Suspend bitlocker automatically

    Now that Surface drivers and firmware are available to download as software updates it would be great to be able to deploy them without worrying about Bitlocker and having our users locked out.

    So far it seems that we have to do a lot of testing to see whether or not a driver or firmware will lockout bitlocker, and then give up and deploy them using a TS, so we can suspend Bitlocker, update, reboot and reenabled bitlocker.

    Could all drivers/firmware from the Surface update category automatically have bitlocker suspended when deployed as an update? or give us a tickā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. SCCM - Add Modern App updates into SCCM like IE or Windows Updates. Patients affected

    We support 86,000 health care Windows 10 clients. Built IN Modern apps like Photos update randomly in the middle of the day TAKING down our entire WAN and LAN forcing emergency rooms to stop working.

    This is due to 300MB per App per machine x 80,000+ machines = 24,000,000 MB of data coming through the Internet Gateway regularly with EACH app update. We have tracked this data all coming from the Microsoft App update servers.

    We have to patch built in apps like Edge and Photos for health care security. Redundant apps have been uninstalled and Windows Store is blocked.

    ā€¦

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Send message personalizade in Updates

    In my company when sending updates we want to send personalized messages, that they are sending patches and it is from the company that we must restart. Example: The administration of _____ we have applied patches to restart your computer. Atte enterprise

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Add Conditions for Patching

    Add conditions to Patches, such as certain processes not running, user not logged on, etc. Just like we've added for applications.

    This is especially needed for certain 3rd-party updates. [cough] Adobe... [cough]

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Different business hour for different days

    It will be good to allow options for users to select different timing for different days in the business hour setting Eg. 10am to 4pm on Monday, 12pm to 6pm on Tuesday, etc

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Allow single systems to exclude single patches from an update group.

    We would like the capability to exclude a single patch from a specific computer. Right now, we have to exclude a server from all patches, manually patch it, or create a totally new deployment because a 3rd party vendor requires patch exclusions for their product to function. It would be a whole lot easier if there was a way to exclude a group of specific patches from singular systems or collections.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Inbuilt Mechanism To Uninstall Patch via SCCM

    Hello,

    Not sure why SCCM doesnt have an inbuilt mechanism to uninstall a patch from the SCCM console. We do have this feature to remove (Disapprove) a patch in WSUS which is a freeware.

    It is really a beneficial feature to be included as this comes up into use very frequently.

    Many Thanks
    Vikram Midha

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Automatic Deployment Rules create 'available' deployment.

    I would like to create my ADR deployments for servers as available instead of required. This allows more control over server patching. Currently I create the package as required and then I have to alter it for servers that I do not want unattended installations.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. "Cluster Aware" Patching Variables

    With the new Cluster Aware patching in TP3, I would like to see dynamic variables that you can call into your pre and post scripts that would tell you which machines are currently getting patched, and which machines are currently up. This would allow admins to write a more simplistic script where it queries a variable instead of having to build a script that test connections and make sure its not installing software updates. Example scenario would be patching Hyper-V clusters, where you need to keep all VM's up and running. We could query the variable, to move the VMsā€¦

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Provide end users variable duration for software update until deadline (evergreen updates)

    It is about the topic, to deploy large software updates in the future (evergreen). Give each user a certain freedom, without losing complete control.

    Here, we would like to give each user a defined timeframe for the update, rather than, define a fixed deadline for all in the beginning.

    This would help to processing new windows channels in a higher frequency and to scale the rollout.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. W10 Servicing - Windows Insider (for Business)

    Under W10 Servicing - Windows Insider builds are shown as "Other" Can SCCM ID these as either the build number or that they are Windows Insider builds

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base