Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 325 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    35 comments  ·  Admin experience and community hub  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Extend the downloadable time of the peer cache source.

    There is a 24 hour time limit for a PeerCache client to download from a Peercache source.
    When distributing large files, the token may expire and the download may not complete.
    we expect to extend the 24-hour constraint. (For example, 1week.)

    837 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    43 comments  ·  Content management and monitoring  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Ability to group Software Center applications into folders

    Add ability to define a category for applications and programs in Config Mgr and have them appear in Software Center under that category. We have several hundred programs in our system and users have a hard time finding what they need.

    87 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    5 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Microsoft 365 Apps Update fail to download by DownloadError = 30101 before client don't exhaust all content locations

    M365 Apps Update fails to download by DownloadError = 30101 when unable to download from peer cache source.
    The expected behavior is fallback to DP and continue to download even if fails to download from peercache, however an error occurs before fallback and client cannot continue to download from DP.

    The Peer Cache cannot be used effectively, so we request improvement.

    Enviroment

    ConfigMgr version 2006 , 2010 and 2103
    Microsoft 365 Apps Update in March, April and May.

    Repro Step

    1. Peer cache client's AlternateHandler begin to download.

    BeginDownload: contentID =750d04a4-8178-4cb6-9c72-f8bf2a096a7a and contentVersion=1 AlternateHandler

    1. Data Transfer Service download error from peerā€¦
    24 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. User Notifications

    We need more control over User Notifications via dialog boxes rather than toast notifications. Currently we have the ability to "When software changes are required, show a dialog window to the user instead of a toast notification" for applications but not for software updates, standard packages, or non-critical task sequences.

    Our users rarely see toast notifications so it needs to be more in your face. My users should not be expected to "notice" the toast notification, click on the icon, then click on "view required software". When I deploy a required software, I want it to pop up the dialogā€¦

    19 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  General  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Stabilize sending of status messages during in-place upgrade (IPU) task sequence in a mixed intranet (VPN) / internet (CMG) scenario

    We've opened a MS case because a lot of status messages are lost during our in-place upgrade task sequence and this makes it really hard to monitor our deployments. A CMG is in place and acts also as a distribution point. The clients are configured to prefer the management point from the boudaries and the CMG is part of the VPN boundary. During the task sequence the client will/can switch multiple times from intranet (vpn) to internet (cmg). This seems to be the cause of the lost status messages. We were told by Microsoft that this is not a tested/supportedā€¦

    31 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Content management and monitoring  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Sync AAD group membership -> MEMCM

    It would be great if it was possible to sync a static or dynamic security group in Azure AD to a collection in MEMCM. This would be very useful in a Co-Mgmt scenario where the user/device gets the correct CM applications according to AAD group membership.
    Today it is only possible to sync collection membership from CM to an AAD group, not the other way around.

    97 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
  8. SMSTS Log - Variable to not log certificate checks

    The SMSTS Log is busy, and much of it in our HTTPS only environment is filled with Certificate checks. I'd like to turn that off.
    Perhaps have it off by default, unless debug logging is enabled? or set a variable "SMSTS_NoCertCheck" and it won't log that stuff.

    My log rolls over before an entire TS is done!

    14 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating system deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Add Delivery Optimization and Connected Cache Monitoring to Endpoint Analytics

    An extra log workspace in azure is required to monitor delivery optimization. It would make sense to integrate the monitoring of DO and MCC into the endpoint manager. In addition, it would be helpful to get suggestions in which group do/mcc is not working well and something needs to be optimized.

    Endpoint Analytics would be the right place to collide the monitoring data with the other client data.

    Monitoring is the basis for building an efficient DO network.

    57 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Support for All 16 ASR (Attack Surface Reduction) Rules in Windows Defender Exploit Guard

    In existing released versions of Configuration Manager (upto 2103), there is support to apply/configure only 11 ASR rules, other 5 rules would have to be applied separately via PowerShell/GPO/Intune.
    We would like to have support for all 16 rules available in Configuration Manager to apply all of them from single device management tool.

    17 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Improve CMPivot logging, audit messages

    We would like to give CMPivot to some operators in our organization but when reviewing the feature noticed that the logging and audit messages around this feature are lacking. Al that is logged is that someone used cmpivot.exe

    What we would like to see is who ran it, what they ran it against, individual computer or collection ID and ideally what their query was that was executed.

    17 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Admin experience and community hub  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Install Behaviour, add processpath (as optional)

    For some applications, we have severals instances (like Production, Formation, Test). These instances share the same image name (like program.exe) but are in differents folders (like C:\Program Files\Compagny\Product\Instance). So when it come time to deploy new version for a single instance, without the full process path (like C:\Program Files\Compagny\Product\Instance\program.exe), The SCCM Client Install behaviour feature "ask" or "automatic closing" all instance of program1.exe instead of targeting the specific one updated by the deployment type.

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Application management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Allow CMPivot to query HKU keys with Registry()

    Currently, CMPivot uses Get-Item in PowerShell to gather Registry() information. By default, only HKLM and HKCU exist as a PSdrive. CMPivot could work around this by creating a HKU on the fly during a query.

    New-PSDrive -Name HKU -PSProvider Registry -Root HKEY_USERS

    This would allow greater capabilities in querying the registry and searching for profile/user based registry keys.

    Futher explanation here: https://twitter.com/PotentEngineer/status/1327354096932827138?s=20

    55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  General  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Peer PXE or Similar Feature

    In 2017 or so a feature was added to tech preview that allowed machines in disparate offices without a Distribution Point to PXE boot from configured peers.

    This feature has never made it to release in the 6 years since.

    Peer PXE or another similar feature (WDS-less PXE from a Win10, non-DP machine) would be great in an environment with many small offices where you do not want to traverse the WAN to PXE, nor do you want to support a full Win10 Distribution Point at the site.

    13 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating system deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Report - What Specific Distribution Point a Client Downloaded a Package

    Would like to have a report that displays what Distribution Point a client

    • could download a package from (available DPs)
    • currently downloading from
    • finished downloading from
    14 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client deployment and discovery  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Tie ability to created application deployments in an enabled state to RBAC controls

    With the addition in the 2012 technical preview release of the ability to disable deployments could this be tied to RBAC so that users could be restricted to creating deployments in a disabled state and then an additional reviewer would be required to "enable" the deployment. Similar to the workflow when creating "scripts"

    55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Admin experience and community hub  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. SourceList

    Allow Fallback DPs to be used for SourceList updating.

    Source list updating sees Fallback DPs as remote and they are therefore ignored as possible sources.

    Distribution Point='http:/.../SMSDPSMSPKG$/Content....', Locality='NEIGHBORBOUNDARYGROUP'
    LS returned http://.../SMS
    DPSMSPKG$/Content... as remote DP when local DPs were requested
    No Distribution points were found for package
    No DP found for product... , skipping source update

    This means systems in boundaries configured this way do not maintain current references to source, leading to later issues with MSI repairs, patching, etc. prompting for source.

    SCCM should support the option (e.g. through client settings for CCM_SourceUpdateClientConfig) toā€¦

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  General  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Add a Right-Click option "Sync Policies" to Software Center Start menu icon

    The Company Portal app you can right-click on the Start Menu shortcut and select "Sync this Device". Can we please get that option for Software Center as well, it would make ServiceDesks life easier instead of navigating them to the icon within Software Center

    30 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Add QueryString Parameters option to Software Center Custom Tabs Client Settings to support built-in client variables

    The ConfigMgr AdminService uses OData which accepts parameters/variables, etc via the URI like this

    https://cm01.contoso.com/AdminService/wmi/SMS_R_System(123345678)

    https://cm01.contoso.com/AdminService/wmi/SMS_R_System?$filter=Name eq 'MyDeviceName'

    Other custom solutions like a Help Desk portal have similar options that support input via the URI.

    Currently from Software Center, there's no way to pull in any information about the local client where the custom tab is being loaded. This request is to add options within Client Settings > Software Center > Custom Tabs that would allow the insertion of wildcards for things like UserName, DeviceName, DeviceID, UserID, etc, that can be added into the Custom Tabs URL that's specified inā€¦

    16 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Show Deployment Counts on Collections

    Please add an option to include "Deployments" in the columns list for user and device collections. This would make it easier how many deployments are targeted to each collection without having to click the "Deployments" tab at the bottom for each one. Thank you!

    8 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
← Previous 1 3 4 5 225 226
  • Don't see your idea?

Feedback and Knowledge Base