Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Export lists to Excel/CSV from Desktop Analytics Portal

    Will be great if it could be possible to export data from DA Portal, either after setting up a filter or all data (up to an acceptable raws limit), in order to share lists of apps, devices or drivers with people to review or action on them, regardless of those people not being DA contributors themselves.

    153 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    10 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. CMPivot Refresh Query

    Add a refresh button for CMPivot queries so you can hit ā€œRefreshā€ or ā€œF5ā€ to get fresh query results.

    If you run a query like ā€œService | where State != ā€˜Runningā€™ | where StartMode == ā€˜Autoā€™ā€ you get results. Say you waited 5 minutes and wanted to run the same query again to see if something changed. If you hit Run Query without changing the Entity, it just shows you your cached query results instead of doing a fresh run of the query. Please invent us a button to get fresh results. :)

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Admin Console  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Available Applications that a user initiates in Software Center should ignore maintenance window for all dependencies and superseded apps

    When a user clicks on an application in Software Center while it is available (or pre-deadline) then all dependent and superseded applications should ignore the user's maintenance window. The current behavior is that if a reboot is needed in the chain then the user has to click install again in Software Center. This could be handled by a deployment option so that the current default behavior isn't impacted.

    Example:
    User Clicks on App1
    App1 has a dependency on App2
    App2 requires reboot
    When user clicks App1, App2 should install, then reboot, then App1 should complete installation and reboot if neededā€¦

    38 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Application Detection - Add Return Code Option - Clear Install History

    Add a custom Return for applications. "Clears Install History"

    I'm currently deploying office 365, which when launched, prompts users to close apps and continue, however they can click cancel. If they click Cancel, it returns a code to CM which is then logged as a failure. I would like to have a Return Code option in the App DT that says, it the App returns code "123456", then exit out as if it never ran, no failure, no success. So in the software center, the icon says "Install" instead of "Retry", and not show a previous failure. It makes ourā€¦

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Co-Management Management Insights

    As we move workloads to Intune, there may be an existing, legacy mechanism that prevents the workloads from successfully being enabled. A Management Insight would alert the admin, if a client scoped for co-management, was also assigned a policy that would prevent the workload from moving successfully.

    For Example:-


    1. Moving the WUfB workload to Intune.

    A legacy GPO that "Disables Automatic Updates" will render updates disabled after the workload is moved to Intune - there is not an equivalent CSP that "Enables Automatic Updates" that gets pushed from Intune Policy to override/block the GPO


    1. Move Office C2R Apps to Intune
    2. ā€¦
    8 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Co-Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Enable DA without the need of SCCM

    The pro of Windows Analytics was that you can configure it in every environment without the need to have SCCM or Intune configured.
    Please re enable this way of deployment, also if it's limited to Read-only insights or some features.

    349 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    10 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Add option to "Suspend BitLocker PIN entry on restart" to suspend PIN entry when user initiates restart

    Currently, when "Suspend BitLocker PIN entry on restart" is set to Always, if the user initiates the restart Bitlocker PIN entry will not be suspended. This makes sense if we assume that the user is sitting at their computer when they trigger the restart. Unfortunately, due to COVID-19, we currently have many users accessing their onprem computers via RDP. If ConfigMgr prompts them to reboot and they click reboot over RDP, there computer will reboot and prompt for PIN entry, requiring the user to physically go in to the office and enter the PIN.

    Bitlocker Network Unlock would likely beā€¦

    44 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Settings  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Mouse Support during OSD after WinPE stage

    During OSD in Windows 10, the Mouse gets suppressed and you can't see it after the "Setup Windows & ConfigMgr Step" until the end of the TS. Many of us have cheated by adding a registry value in the offline OS

    https://garytown.com/enable-mouse-support-in-win10-osd-during-state-restore

    MS has even blogged about it:
    https://docs.microsoft.com/en-us/troubleshoot/mem/configmgr/no-mouse-cursor-during-osd-task-sequence

    My Request is... Build this into the Setup Windows & ConfigMgr step.
    In that step, you're already mounting the offline registry, just add that value while you're in there. Perhaps make it controlled via a checkbox on the step or variable.

    I see on your page you recommend undoing the changeā€¦

    6 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Ability to add the application groups in Task Sequence

    Application groups can be deployed to a collection but cannot be added in a Task Sequence and then deployed. Please enable the Task Sequence deployment for Application Groups.

    62 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Option to put SCOM Agent into maintenance mode when DP is put into maintenance from ConfigMgr

    It would be nice to have a checkbox like we have for deployments to pause SCOM agent on DPs when setting them to maintenance mode.

    Technically, all DP configurations are done by DistMgr, so it should be possible to update it with re-used code from the client functionality.

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. RBAC for Desktop Analytics


    1. As of the role in Azure is desktop analytics administrator, which allow complete access to this blade, any plan for a read only role ? or read only is possible with any other role, considering there is only 3 roles in azure for devices ?

    2. Can we have more granular role based access model in here with RBAC ?

    123 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Ability to trigger reboots through the client WMI SDK

    We need a way to use PowerShell (script) to trigger a Reboot using the Software Center Dialogs. This way we can trigger a reboot at the end of an install which will leverage the CM built-in notifications.
    https://docs.microsoft.com/en-us/configmgr/core/clients/deploy/device-restart-notifications

    Currently, if you have a deployment that triggers a pending reboot, the machine with NOT actually reboot after the install, but instead waits for the deadline. Or if the Deployment had no deadline, the machine will never actually reboot.

    We need a way to have CM trigger a reboot that we can call in a script, so at the end of anā€¦

    39 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  SDK and Extensibility  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Allow custom icons in software center for Task Sequences

    Split this item from a bigger umbrella item.
    This is to specify an icon per App Task Sequence in the Software Center.

    1,874 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    100 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Support MBAM / Bitlocker Management IIS roles on CMG

    Seeing how the Recovery Service endpoint only requires IIS and a Management Point role, would it be feasible to have the endpoint run on CMG?

    Internet-based clients in a co-management environment cannot reach the internal MP URL. Unless they use a VPN connection. We could leverage the BitLocker CSP policies available in Intune but that doesn't offer integration with recovery keys stored in the SQL DB, or the Helpdesk and Self-Service portals.

    Supporting the MBAM role through CMG could be a quick win.

    30 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Apply Configuration Baseline/item during OSD

    When trying to move away from Group Policies to Configuration times/baselines and in every other scenario as well, add a step in Task Sequence to evaluate and remediate select Configuration items/baselines. Then we can select which one of the Configuration Items/baselines should be applied during OSD so the settings are present when the user logs on for the first time

    92 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Provide end users with Estimated upgrade times

    now with many more end users workign remotely, there are far more variables involved that can effect how long it takes to perform an in place upgrade.
    it would be nice if there was something built in, that could basically speed test against the target sccm DP to be used, combine that with the size of the install package/task sequence references, and provide them a realistic guestimate on how long the upgrade may actually take.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Modernize the Cloud Management Gateway into an Azure WebApp - Network Security

    Currently the Cloud Management Gateway(CMG) for SCCM is a legacy "Cloud Service" in Azure. This prevents Network Security controls, such as placing a Web Application Firewall in front of the service, or peering it to a Virtual Network to be impossible. There are many customers in both the public and private sector that would like to see the CMG modernized into an Azure PaaS WebApp(ARM). This way they can place the CMG into an App Service Environment(ASE), and enforce Trusted Internet Control(TIC) policies.

    111 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Role Based Access & Security  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Enable CMPivot to use ONLY SSRS compatible data and Create a Generate Report Option

    CMPivot has gotten a lot fo configuration manger admins a long way in not having to learn how to use SQL or generate new reports.

    It would be really nice, if there was an option to using CMPivot to convert the CMPivot Query into an SSRS report that could be published so that other users could then access it from the reports website or receive the data on a scheduled basis.

    This would also create an easy way for users to generate and share reports with each other by providing the CMPivot query to each other and the steps toā€¦

    14 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Reporting  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Task Sequence Step to Add Info to SMSTS.log

    I'd love to see a built-in step to add information to the SMSTS.log. Basically just a single-line text field that would parse TSVariables just like any other step that has text fields.

    This would allow:
    1. Easy way to dump a specific TS variable value at a specific point in time to the log for troubleshooting.
    2. A potentially easier way to search the SMSTS.log file for a specific point in the task sequence. While you can search for task name, there are many entries that contain the task name - you could make the content of the step uniqueā€¦

    9 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Detailed Windows crash data in Desktop Analytics

    Device Health in Windows Analytics has lots of useful information about Windows crashes, such as what caused the blue screen, the driver version, and other information. This information can be used to develop proactive improvement plans to improve the general reliability of our desktop environment and end user devices.

    Could you please add this functionality to Desktop Analytics? It would complement the existing information being reported for O365 reliability, although this is currently somewhat hidden by the M365 UI.

    165 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base