Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Provide support Configuration Manager(CM) with Azure AD DS

    Provide support Configuration Manager(CM) with Azure AD DS, which is no require patch management than AD in Azure IaaS. This simplifies our cloud operations. As described on following site, the managed domain of Azure AD DS is listed as compatible with Windows Server Active Directory.

    https://docs.microsoft.com/en-us/azure/active-directory-domain-services/join-windows-vm

    15 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Azure Stack Support

    As MEMCM supports a number of virtualized environment namely Hyper-V, it would be ideal if support is extended to Azure Stack Infrastructure.

    23 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Cloud Management: Replacing accidentally deleted Client App

    We recently had a scenario where someone at customer end deleted the Client/Native App from Azure AD stopping Azure AD Token Authentication from working. Clients were not on VPN and no PKI Certificates for Authentication.
    It seems like there is an unsupported way to manually edit SQL DB to re-import a new Client App, but it would be nice to have a supported option with so much CMG adoption lately and the dependency it creates for remote management.

    23 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Unused HW Inventory table columns in SQL DB should be defined as "Sparse"

    After enabling the collection of 3 attributes from the win32_process WMI class from our PCs, the database blew in size, as all other (30+) attributes of that class take up as much disk space as if they had data in them.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Please make inbox/outbox system webservice based instead of SMB based

    It would be lovely to not rely on SMB for inbox and outbox operations since these are very fragile in high latency environments. Changing this to a webservice would be so much like year 2020 technology.

    13 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Specify end date for DP Maintenance Mode

    When enabling Maintenance Mode on a DP it would be handy to specify a "end date" for it to automatically come out of MM on.

    In addition, if there was a way to put a comment when setting MM to record why it was set.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Support for Dedup in content source directories

    The support for Dedup for the content library is fantastic. It would be great to extend this support for content sources as well.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Option to put SCOM Agent into maintenance mode when DP is put into maintenance from ConfigMgr

    It would be nice to have a checkbox like we have for deployments to pause SCOM agent on DPs when setting them to maintenance mode.

    Technically, all DP configurations are done by DistMgr, so it should be possible to update it with re-used code from the client functionality.

    12 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. HTTP Strict Transport Security (HSTS) 'NOT ENFORCED' on CMG provisioned Virtual Machine.

    The VM that is automatically provisioned as part of the Cloud Management Gateway setup from the ConfigMgr console, when security scanned, indicates HSTS is not turned on/ enforced.

    This has been discussed with Microsoft Support and Configuration Manager experts from Microsoft, as this is obviously a concern. All attempts to mitigate this issue failed as any settings made as advised by Microsoft were reverted or failed to mitigate the issue.

    We have assurances the service is secure however, we are aware that HSTS being off is recognised as a vulnerability to Microsoft and you recommend all to enforce this onā€¦

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Rename Software Inventory to Software File Inventory or something related to File Inventory

    Rename Software Inventory to Software File Inventory or something related to File Inventory

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Expired MEM evaluation lab kit

    The current MEM evaluation lab kit expired on February 7, 2021. When will it be updated? I downloaded and installed it just days before its expiration. So how much longer can I keep evaluating it? This isn't documented very well.

    https://www.microsoft.com/en-us/evalcenter/evaluate-mem-evaluation-lab-kit

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. MBAM consoles and SQL HA

    During the BitLocker user portals setup, the database server name is supplied which the portals use to connect to for key recovery. BitLocker portals do not have a fallback mechanism. If you have an SQL AO configuration, you need to install a second portal so you can still use the recovery functionality bur you also need to notify every admin user to switch...Not really convenient.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Create new audit status message whenever a status message gets deleted.

    Whenever a user deletes a status message, there is no record of this within SCCM (SMSProv.log file gets overwritten fairly quickly). I would like to see a new audit status message get created, whenever a status message gets deleted (showing who deleted the status message). This will leave some sort of trace whenever someone deletes a status message.

    6 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Stop DP upgrade when DP is in maintenance

    Maintenance mode for Distribution Points is an awesome feature. Thank you for implementing it!
    It significantly reduces amount of "false positive" errors and makes monitoring significantly easier.
    Please also include DP upgrades in list of tasks that are suspended when DP is in Maintenance mode.
    Currently (v 2006), as also noted in documentation, Distribution Manager continues trying to upgrade DPs that are in Maintenance mode, which generates error messages that make monitoring more difficult.
    Our remote sites occasionally go offline for extended periods of time, so this would reduce number of errors support engineers need to review.
    Due to pandemicā€¦

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Standardize releases of SCCM Versions to twice a year instead of current frequency.

    Standardize releases of SCCM Versions to twice a year instead of the current frequency of three times a year 2002, 2006 and 2010 and so on.

    Please review the pattern of windows feature releases and a clear timeline on supportability for SCCM.

    Please give a road map of supportability whether or not the customer has moved to co-management or not

    SCCM Client Version supportability in line with Server Version. All these three may be clearly documented please.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Reduce the number delta mismatch BADMIFS Generated

    We get about 1000 deltamismatch BADMIFs generated each day.

    Here is the case of sccm client Inventoryagent.log says successfully sent but the ccmessaging.log shows the upload failed.
    Why canā€™t the client inventory agent act on the status back from ccmmessaginglog and if the upload of the inventory fails, donā€™t increment the delta number.
    This would greatly reduce the number of deltamismatch files generated each day and improvement keeping the inventory up to date without having to force a full inventory sync for this case.

    Here are the details:

    Dataldr.log for computer: CHOSIJ1-L2

    Thread: 6108 will use GUID GUID:c28fa179-d722-4692-be69-a71f5a81e75c SMSINVENTORYā€¦

    7 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Simplify configmgr server certificate management

    Currently it is rather cumbersome to use PKI-issued certificates in many places of ConfigMgr infrastructure (especially DPs), and aoutomate them. ConfigMgr acts as a CA and issues its own certs without any admin control - maybe letting us set it up as a subordinate (to the one probably existing in many companies) CA would solve the issue? Any other ideas?

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Bring back the option to change the retention period

    Bring back the option to change the retention period. The retention days will revert back to the default of 1095. We are not aware of separating a retention date for a cloned CAS database from the actual production CAS database.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Modify the Configuration Manager prerequisites checker

    Modify the Configuration Manager prerequisites checker to look for supported Windows ADK version

    95 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. raise base .NET Framwork of CM from 4.0 to 4.6.x

    currently all file system operations only accept filepaths with maximum length of 256 chars which is related to the used .NET Framework within CM.
    Starting with .NET 4.6 this limitation is now raised to 32.767 chars which is very usueful if you for eample manage driver and driver packs, applications and so on per script and file systems within a domain network. (Servernames FQDN could be longer than 8 chars in our case at minumum 30 chars)

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
← Previous 1 3 4 5 12 13
  • Don't see your idea?

Feedback and Knowledge Base