Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. preserve permissions on cd.latest folder after CM update

    After applying an SCCM update via in-console servicing, permissions on the cd.latest folder are not retained. This requires any process/account backing up the cd.latest folder to have read access re-granted after every SCCM update.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. SQL Native Client

    The Components which were installed during the SCCM Setup should be updated during the Current Branch process if it's an necessary feature for the Environment.

    For Example the SQL Native Client. The most Companies got an separated SQL Team and got an Problem of responsibility during the Upgrade process.

    6 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. maintenance mode automatically when upgrade secondary site

    Maintenance Mode feature is cool, but it would be nice when i upgrade or recovery secondary site, that contains DP, he had been on maintenance mode automatically.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. FQDN everywhere

    Please stop using NetBIOS names, let's use FQDN everywhere - assets, reports, queries, deployments etc. It is a true challenge to use SCCM with dozens domains of customers :)

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. The ability to create the Secondary Site bootstrap media manually. Will be especially useful for slow link sites to use other mechanisms to

    The ability to create the Secondary Site bootstrap media manually. Will be especially useful for slow link sites to use other mechanisms to copy the file to the Secondary Sites instead of using Configmgr's distribution

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Pre-stage Update bits on secondaries

    Current branch updates and hotfixes take a long time to apply. This could be sped up if we could do 2 things.

    1. run a pre-req on the secondaries ahead of the upgrade, like we can do for the primary.
    2. pre-stage the bits on the secondary, It take s a long time to copy the bits over and greatly prolongs the update process.
    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Add Support for MSA/gMSA for Standard Roles

    I would like the ability to assign managed service accounts or group managed service accounts to the standard roles for SCCM (i.e. Network Access Account, Domain Join account, Client Push account, etc.) so that those accounts can be secured without the need for knowing or managing the password.

    192 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    8 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Distribution point configuration status - reset alerts

    When looking at the status of my DPs in Distribution point configuration status there is a yellow alert that won't go away due to some error that occurred during dp migration, there is no package ID associated with it so I am unable to use any sql tricks or tools to make it go away. I suggest making an option via gui to "clear alerts" like I can do via Site status. please add this feature

    16 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Upgrade SCCM directly to rollup version

    Be able to upgrade SCCM directly to a rollup version or hotfix versions. Not everyone upgrades SCCM the moment a new version is released and by the time we have tested and are ready to upgrade there is often a rollup or hotfix available. Due to change management procedures, we are forced to upgrade to a version that has potential known issues before we can start a new change process to upgrade again to the update version. Being able to upgrade direct to the rollups would prevent installing a broken version for weeks prior to upgrading again.

    91 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Support removing IIS server header with all SCCM site system servers

    Please support removing IIS server header with all SCCM site system servers for better security.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Would like to ability to monitor Secondary Site upgrade in the Monitoring workspace

    Would like to ability to monitor Secondary Site upgrade in the Monitoring workspace

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Disconnected Secondary Site

    This would allow a Secondary Site to operate disconnected from the hierarchy for a set amount of time. During this disconnected state the Primary above it would not try to reach out to the Secondary (and vice versa) but would wait (similar to a prestage DP) for the interval specified before trying. Also the Secondary while disconnected would process its client information similar to a Primary and optimize the replication data so that when the connection was re-established there wouldn't be a huge backlog. This would allow hierarchies with devices that have limited or no connectivity for extended periods atā€¦

    13 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. 11 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Support Active/Active mode with Site Server High Availability

    Now that Site Server HA is supported in 1806 (primaries) / 1810 (hierarchies)ā€¦ it is only Active/Passive. Add capabilities for Active/Active.

    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Implement a sccm managed system to enable HTTPS communication between clients and site system roles

    As the title says:
    Implement a system to enable HTTPS communication between clients and site system roles from the SCCM console, comparable to the Advanced HTTP Site System feature so that we don't have to setup and configure AD Certificate Services to distribute certificates to the clients.
    Or a mechanism that allows the Azure AD Security token, in scenario's with hybrid domain join in place, to be used to authenticate against https enabled internal site systems

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Multi Tenant support for Microsoft cloud services integrated with ConfigMgr

    We hear this request a lot, so I'm adding it here.
    ConfigMgr integrates with many Microsoft Cloud Services:
    * WUFB
    * WSFB
    * Windows Upgrade Analytics
    * OMS
    * etc
    For each of the above services, sometimes a company may have multiple tenants. Please allow ConfigMgr to manage multiple tenants for each of these services.

    783 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  29 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Management Point Health Alert

    When adding an MP, the box "Generate alert when MP is not health" is never checked by default. Should be checked by default, and why is this even an option? I don't see a scenario where an Admin wouldn't want to know the MP isn't health.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Allow Preferred MPs with IBCM and CMG

    Not sure which category to put this in BUT I've come across a requirement to have both IBCM and CMG in place, at least temporarily anyway. It would be very helpful if we could use some kind of MP affinity or preferred MP between the IBCM MP and the CMG MP. Obviously the boundaries are ignored as this is internet based. A reg key change (or something even better) would suffice.

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Allow easier move to Site Server HA

    Too much manual work, and juggling of steps... setup of content library, move providers, move SQL, move roles remote. If I'd like to just move machines to a newer OS, or a new machine name... give me the easiest way possible to move the switch.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Allow Site server HA e2e on a maximum of 2 machines

    HA should always be able to run on a maximum of 2 machines. This includes all remote roles, as well as provider, as well as reporting, as well as SQL (including AO). Don't require any roles to be remote from the 2 machines.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Site deployment and infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base