Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Option to put SCOM Agent into maintenance mode when DP is put into maintenance from ConfigMgr

    It would be nice to have a checkbox like we have for deployments to pause SCOM agent on DPs when setting them to maintenance mode.

    Technically, all DP configurations are done by DistMgr, so it should be possible to update it with re-used code from the client functionality.

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. RBAC for Desktop Analytics


    1. As of the role in Azure is desktop analytics administrator, which allow complete access to this blade, any plan for a read only role ? or read only is possible with any other role, considering there is only 3 roles in azure for devices ?

    2. Can we have more granular role based access model in here with RBAC ?

    126 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Allow custom icons in software center for Task Sequences

    Split this item from a bigger umbrella item.
    This is to specify an icon per App Task Sequence in the Software Center.

    1,892 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    100 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Apply Configuration Baseline/item during OSD

    When trying to move away from Group Policies to Configuration times/baselines and in every other scenario as well, add a step in Task Sequence to evaluate and remediate select Configuration items/baselines. Then we can select which one of the Configuration Items/baselines should be applied during OSD so the settings are present when the user logs on for the first time

    92 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Provide end users with Estimated upgrade times

    now with many more end users workign remotely, there are far more variables involved that can effect how long it takes to perform an in place upgrade.
    it would be nice if there was something built in, that could basically speed test against the target sccm DP to be used, combine that with the size of the install package/task sequence references, and provide them a realistic guestimate on how long the upgrade may actually take.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Modernize the Cloud Management Gateway into an Azure WebApp - Network Security

    Currently the Cloud Management Gateway(CMG) for SCCM is a legacy "Cloud Service" in Azure. This prevents Network Security controls, such as placing a Web Application Firewall in front of the service, or peering it to a Virtual Network to be impossible. There are many customers in both the public and private sector that would like to see the CMG modernized into an Azure PaaS WebApp(ARM). This way they can place the CMG into an App Service Environment(ASE), and enforce Trusted Internet Control(TIC) policies.

    111 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Role Based Access & Security  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Enable CMPivot to use ONLY SSRS compatible data and Create a Generate Report Option

    CMPivot has gotten a lot fo configuration manger admins a long way in not having to learn how to use SQL or generate new reports.

    It would be really nice, if there was an option to using CMPivot to convert the CMPivot Query into an SSRS report that could be published so that other users could then access it from the reports website or receive the data on a scheduled basis.

    This would also create an easy way for users to generate and share reports with each other by providing the CMPivot query to each other and the steps toā€¦

    14 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Reporting  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Orchestration groups - Granular behaviour for different types of update

    Adding more granular control to the behaviour orchestration groups depending on types of updates would improve the feature greatly.

    For example, specifying different behaviour for different types of updates - customers probably don't want to run pre-scripts and post-scripts or even potentially any orchestration for definition updates, whereas they might want to for other types of updates

    23 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Detailed Windows crash data in Desktop Analytics

    Device Health in Windows Analytics has lots of useful information about Windows crashes, such as what caused the blue screen, the driver version, and other information. This information can be used to develop proactive improvement plans to improve the general reliability of our desktop environment and end user devices.

    Could you please add this functionality to Desktop Analytics? It would complement the existing information being reported for O365 reliability, although this is currently somewhat hidden by the M365 UI.

    170 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Task Sequence Step to Add Info to SMSTS.log

    I'd love to see a built-in step to add information to the SMSTS.log. Basically just a single-line text field that would parse TSVariables just like any other step that has text fields.

    This would allow:
    1. Easy way to dump a specific TS variable value at a specific point in time to the log for troubleshooting.
    2. A potentially easier way to search the SMSTS.log file for a specific point in the task sequence. While you can search for task name, there are many entries that contain the task name - you could make the content of the step uniqueā€¦

    9 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Add LayeredDriver (keyboard driver) settings in OSD

    I would like to add setting of LayeredDriver (106/109 key, etc.) during OSD (OS deployment).
    These settings are "very important topics" for OSD guys in Japan and Korea.
    Without this setting, the keyboard will become an English keyboard.

    LayeredDriver [Microsoft Docs]
    https://docs.microsoft.com/en-us/windows-hardware/customize/desktop/unattend/microsoft-windows-international-core-winpe-layereddriver

    54 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. When you perform a search also include all subfolders

    When you perform a search also include all subfolders by default!

    67 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    8 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Management Insights - Filter Group Name

    Adding the ability to filter the management insights dashboard by group names would allow customers that - for example - can't use cloud services for security reasons to be able to get a full insight into their environment without having to "ignore" results from groups that aren't relevant to them.

    For example, an environment that is unable to use cloud services currently will never have a management insights index of 100%, despite all of their relevant rules being "Completed".

    27 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. MBAM fully integrated in 1910 does not have enforcement option

    Great to see MBAM fully integrated in CM 1910, but the policy does not have any option to enforce the encryption. User can always postpone it.

    For more info, see this: https://www.youtube.com/watch?v=kRkyx_-l9QU

    57 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Make WOL Addressdata configurable

    For our environment it would be great if we can specify the IP-address where the Packets are send to. Because we use Switches with 802.1x the Computer is not in the same vlan that it is when it runs. Because of "control-direction in" the packages of the isolate-vlan will be broadcasted if the device is not authenticated. If we can specify the destinationadress, we can set the address to the network-broadcast of the isolate-network and the packages will be delivered correctly by routers and switches. This is already working with other tools.

    73 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Maximum run time on 3rd party updates

    It would be nice if you could set max run time for 3rd party updates in the same "software update point component properties > Maximum run time"
    Default for updates is now 5/10 mins depending on when your CM was built
    And some updates might just take much longer to install

    6 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Add run script possibility to CM generated nodes/"collections"

    Make it possible to run powershell scripts directly from CM created "collections" eg when you click on somethig under monitoring to check client problems and it brings you bak to Assets and Compliance whith a collection of the devices with a certein problem.

    So that you wont have to make a new collection of these devices and then run the script.

    Sometimes you just want to fire & forget, and then later maybe check back in on the monitoring tab.

    8 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Add ProvisionTS support for Azure AD joined devices over CMG

    Currently, the ProvisionTS variable will not trigger a Task Sequence deployment in a site with management points configured for EHTTP and internet clients connecting through a CMG.

    In this scenario, if a device on the internet is provisioned with Autopilot (AAD Join) and installs the config manager client through an Intune app deployment with the PROVISIONTS variable specified, the Task Sequence will fail.

    Supporting this functionality would make Autopilot much more attractive to many organizations.

    25 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Featured apps to Software Center

    There are always some applications that you would like to highlight to your users. On the Software Center tab of the application properties, you can select: Display this as a featured app and highlight it in the company portal. The similar feature should be available also with Software Center.

    The admin should be able to define some applications as featured apps and they would then be the first apps in the Software Center. And also with some additional icon for featured apps like the new apps have.

    14 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Get-CMScript by ScriptGUID

    Get-CMScript does not provide on option to get scripts by scriptGUID. CMScripts are allowed to have the same name so we need a variable that is unique, ScriptGUID will do that. Currently I am not able to pass that value through Get-CMScript.

    5 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base