Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Native Certificate TPM Attestation during deployment

    at the moment we need to use scripts with passwords in it against a CES/CEP because SMS Agent is in provisioning mode. It would be great to do certificate enrollments during deployment with the certificate enrollment point as the proxy. we use tpm attested certificates to check if the machine is known to increase security

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. OSD Task Sequence option to ignore "unexpected reboots"

    If you are doing BIOS updates as part of a Task Sequence you are sometimes faced with "unexpected reboots" because the BIOS update program restarts the computer if you want or not (e.g. Lenovo ThinkStation BIOS updates).
    Those reboots will cause the Task Sequence to fail.
    It would be very helpful for those scenarios to be able to prepare a task for such reboot events and to ignore the errors in order to continue the Task Sequence after the reboot.
    Maybe a modified "Restart Computer" task which prepares a Task Sequence reboot but doesn't execute it could be an approach.

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  3. Display Task Sequence Step no. in Task Sequence Editor

    Display the Step No. in the Task Sequence Editor so it can be easier to find where in the TS an issue is occurring. This could be handy because you could have multiple steps of the same name (especially gather & User Toolkit)

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  4. Pre-Cache of task sequence content "Files Cached" notification

    When deploying Operating Systems, we are using the Pre-Cache so customers can install at a more suitable time; however there is no notification in Software Centre to advise if the files required for install have been cached.

    This leaves a "pot luck" install, especially for those on slower broadband links on whether the install will start instantly, or if it still has to download the content and wait an inexplicit amount of time before the install can take place.

    Can the "Available" change to "Ready to install now" or similar, so customers know they wont have to wait for downloadingā€¦

    32 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Allow Mandatory Task Sequence Warning message timeout configuration

    The "Mandatory Task Sequence Warning" message is hardcoded to 2 or 3 minutes. It is possible for most applications of this to be a good idea. In the case of rapid deployment such as I am establishing for large numbers, it is way too long. The ability to modify this timeout would significantly improve the process.

    32 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Be able to recover deleted task sequences.

    Be able to recover deleted task sequences. In case of accidental deletion.

    32 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Extend "Model" field to Packages & Applications for Pre-caching of Task Sequence content

    The new Model field on drivers is useful, but needs to be extended to other content types, like Packages & Applications, where Model specific items need to be installed (e.g. specific HP SoftPaqs, or video drivers that need to run from .EXE etc).

    31 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Boot Image Password protection - make "enable command prompt" in boot images more secure

    Make it possible to password protect the F8 command prompt during OSD.

    the F8 support is very usefull for troubleshhoting but it is alos a security issue. Having two bootmedias (one with and one without) isn't a workaround since you will have to reboot to get the F8 support and the problem may not occur during the second atempt.

    Allowing us to password protect the prompt gives a secure function that doesn't require a reboot when you have to troubleshoot.

    31 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  9. Task Sequence Detection Method

    It would be very useful to be able to control if a Task Sequence has been "Installed" or not by adding a custom detection method like we have in the AppModel.

    This is valid in scenarios where we do a bare metal required rollout and in in-place-upgrade scenarios. Combined with having different versions of a task sequence being deployed.

    30 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →

    Updating status to Noted – see https://docs.microsoft.com/en-us/configmgr/core/understand/find-help#send-a-suggestion for an explanation of each value.

    We recently introduced Task Sequence as a deployment type for applications – see https://docs.microsoft.com/en-us/configmgr/core/get-started/2020/technical-preview-2001-2#bkmk_tsdt

    This is also in our 2002 release which is in the opt-in phase at the moment.

    With this you can specify detection methods the same way you would for applications.

    Regarding your comment for bare metal – could you elaborate on your scenario? With bare metal the machine is wiped and would have no ‘history’. In a bare metal case the registry key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\CM_DSLID records the package ID of the image used, that may be of use to you here? Any more detail you can provide would be great, thanks.

  10. Allow suppression of exit codes during Install Application Task Sequence Step

    During an OSD deployment we install several applications that return a reboot exit code.

    Each time they install they reboot, rebooting takes a minutes or two to restart the task sequence engine so each application is adding 2-3 minutes to the build time.

    I would like to ignore these reboot exit codes because I know I will be rebooting at the end. We would prefer to not have a separate application for OSD and for Software Center.

    29 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  11. Encrypted stand-alone media

    After creating stand alone media from a task sequence, all packages in the task sequence are not encrypted. All files in applications, packages and also os image can be exported easily. The all media in the stand-alone media should be encrypted with pre-given password (determined when standalone media created) . So, the all files will be protected.

    29 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Bypass "Press Enter" Prompt on Available TS Deployments with CM WDS UEFI PXE Boot

    When you deploy an OSD TS as Available, you are prompted to "Press ENTER for network boot service." If you do not press enter it instead boots to the OS (if any). This does not occur when using a required deployment. It would be useful to bypass this for available deployments.

    This behavior is documented by Microsoft.

    https://docs.microsoft.com/en-us/sccm/osd/deploy-use/use-pxe-to-deploy-windows-over-the-network#BKMK_Deploy

    There is a previous UV that mentions this from 2017, but it was declined. The reasoning does not pan out for me, though. It does not appear to be a hardware issue as it occurs on both physical and virtual workstations. Itā€¦

    29 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Resume Task Sequence Failure

    Provide an option to RESUME an already running OSD task sequence deployment that failed in a specific area versus having to start the deployment all over again. In the event of a failure, this would allow for us to resolve the issue right away and then allow the admin to RESUME the OSD task sequence deployment from the exact point of where it failed (not have to start everything over again).

    28 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Suppress user logon while using Task Sequences outside of OSD that require a restart

    When using task sequences to deploy applications or settings that require a restart, please include a check box on the "Restart Computer" action to suppress the user logon actions (ie. Ctrl + Alt + Del).

    27 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. PXE Boot menu with selection of additional images (e.g. MDOP DaRT)

    There is a buisiness need to be able to select a different bootimage as the one linked to a task sequence. This can be used for administrative tasks of a client such as booting MDOP DaRT over the network. Implement the ability to define which bootimages can be selected at a TFTP boot. (Of cause, OSD is only possible with the image linked to the task sequence)

    27 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  16. When auto-launching a PowerShell script inside of a customized version of WinPE, the script will fail if an Import-module function is requir

    When auto-launching a PowerShell script inside of a customized version of WinPE, the script will fail if an Import-module function is required in the script. a workaround is to open PowerShell, manually import the module before running the script and it will work. It appears that PowerShell is not fully initializing if you call a script as a command line parameter of Powershell.exe...

    26 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Task Sequence Specific Password

    Please allow Task Sequence specific passwords. Currently the only built in option to password protect a task sequence is to password protect a PXE point.

    25 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Add the ability to compare two task sequences

    Compare the contents of two task sequences and report on the differences. Ignore minor items unique to each Task Sequence like dates and ID codes .

    24 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. run not only applications on a tasksequence, seperate deploymenttypes would be better

    Not only applications or packages/programs run in a TS would be nice to select a special deploymenttype to run. In packages with programs is it possible why not with applications and his deploymenttype.

    24 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  20. PS/DP/MP task sequences

    I get so many customers asking me this question: How can we deploy X amount of DPs/MPs or Primary Servers via a task sequence?

    May I suggest a custom task sequence which builds out the above server and has a final step which adds the necessary roles without having to show the sccm site server install credentials?

    This way the CM cmdlets can be invoked via the step - all that is needed are the parameters for the server.

    if you have to do this manually for 800 DPs it would be simply adding all the server machine names toā€¦

    24 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base