Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Personal Hotspot iOS prevention - SCCM

    Currently prevention of personal hotspot use in iOS is only a capability through Intune standalone. This setting should be made available in SCCM Hybrid to allow the prevention of hotspot use on ipads and iphones. We are currently having many overage charges from users using this feature and preventing this feature will help save money on these overages.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. SCCM Capture - Reboot problem with Windows 10 1703 just before WinPE step

    I just started creating a new set of Windows 10 1703 images and while the build operation went just fine, the capture part seems to be experiencing a bit of trouble just before entering the WinPE step. As it turns out the "reboot" before WinPE just doesn't take place although it's clearly visible during the TS progress window that that's the intention. The target system remains in a state where most drivers are cleaned up as part of the sysprep step.

    The temporary remediation is to manually reboot the system. Afterwards it continues straight to WinPE and captures the systemā€¦

    7 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    5 comments  ·  Operating system deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Deploy IOS APP without User apple ID

    This Feature is available on other MDM solution.

    9 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Add macOS X Support for DEP Deployments

    Actually itĀ“s not possible to enroll an macOS iMAC oder MacBook into DEP. Only iOS is working.

    15 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. [RFH] Computer restart requirement parameters in powershell are swapped

    While setting Computer restart settings in the console requires the notification dialog box display value (for example 1440) must be greater than the countown dialog box value (for example 120), in Powershell it is swapped and the following fails:

    Set-CMClientSetting -Name "Default Client Agent Settings" -ComputerRestart -RebootLogoffNotificationFinalWindowMins 1440 -RebootLogoffNotificationCountdownMins 120

    This way in Powershell it is not possible to set the correct values except if you swap the parameters:

    Set-CMClientSetting -Name "Default Client Agent Settings" -ComputerRestart -RebootLogoffNotificationFinalWindowMins 120 -RebootLogoffNotificationCountdownMins 1440

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  SDK, PowerShell, and tools  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Ability to skip Press Enter for UEFI WDS PXE deployments

    Currently when using UEFI and PXE, a WDS prompt comes up, an example screenshot is attached, asking to Press Enter. This requires the technician to press Enter within a handful of seconds, or the loading of the boot WIM fails. Currently, there appears to be no way to skip this portion and proceed directly with downloading the boot WIM, similar to how you can skip F12 when using legacy BIOS mode.

    45 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating system deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Allow Wildcard for cmdlets Get-CMPackage and Remove-CMPackage

    This would make it easier to remove multiple packages with similar names.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    declined  ·  0 comments  ·  SDK, PowerShell, and tools  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. improve Get-CMUser command

    at the moment, Get-CMUser command is returning only few parameters, this command is querying RESCOLLSMS00002 table which is not populated with many information about user. But the command itself is prepared to deliver more parameters. Can we expect this to be improved? to populate this table with more information or query smsruser for more details... like user attributes taken from AD.

    This would be very helpful with any automation scripts, if we don't need to query AD or WMI class for them.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  SDK, PowerShell, and tools  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Need Windows Version in Intune Inventory Report

    Need to know the version of windows in my environment .It will helps me to indentify which machine has perticula version of Windows 10. e.g windows 10 Version 1607

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Admin experience and community hub  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Mobile Device User Relationship. Intune Hybrid Setup- Reporting feature to list primary devices for users.

    Ability to generate a report in SCCM to list Primary mobile device for a user. Lack of this reporting feature creates additional overhead to MDM Administrators in identifying the user's device to take any remote actions. E.g. The device name could be "iPhone" There can be 100's of device with name "iPhone". This should be a very basic reporting capability that should have been in place. Kindly consider this request and introduce this reporting feature.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Admin experience and community hub  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Group Like items for IOS and Android under a Mobile Device Management Section

    Items such as "Application Management Policies" and "App Configuration Policies" and other items that are related to Mobile devices should be placed more appropriately within the console under a sections called Mobile Device Management, not just thrown in the root of Application Management as they do not apply to all systems. Alternatively, they could be named better, such as "Mobile Application Management Policies" and "Mobile App Configuration Policies"

    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Select modeled apps in Applications tab for Windows 10 VPN profile

    This is a DCR proposed by a customer through a different channel that I'm porting here. The description provided is: "The current VPN Profile Applications tab [for Windows 10 VPN profiles] currently only allows an application file path and extension or a package family name for a universal app. It would be nice if there were an option to point to a list of modeled Applications in Configmgr that you could select. That way the Applications can be bound to currently managed Applications in ConfigMgr"

    If this is important to you, please vote this up!

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Fallback Mobile Device Management with the Hybrid Solution

    The ability to manage the Mobile devices from both the SCCM and Intune web portal ie.. with both the agent active or using one agent for both the purpose (EX: laptop or windows 10 ),if an user is working from a remote location and occasionally connects to office or VPN n/w ,instead of calling that user for the n/w connectivity to protect from vulnerabilites for SCEP and Windows updates or Applications deployment ... if a dual management is possible then would be an idle job for the administrator and organizations as the security threat has been minimized as the machineā€¦

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Full phone number on Samsung Devices is not displayed

    When I click on a Company Own Samsung mobile device profile the phone number has the first 6 digits as asterisks.

    This causes a major issue with reporting.

    There should be no reason the phone number should be hidden. It's not a private piece of information. If you are having your phone joined and managed through InTune, as the administrator, I should be able to know the full phone number of that device so I can actually call the user if there is an issue with their device.

    5 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Add "System OU Name" to get-cmdevice cmdlet

    Add "System OU Name" to get-cmdevice cmdlet.
    This is helpful information when troubleshooting and collecting information on multiple devices.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  SDK, PowerShell, and tools  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Mac OS X client

    Please release SDK for OS X integration into Configuration Manager if no extra support for OS X software deployment and management is going to be added. It would be helpful for the community if we had an ability to modify source code or utilize an SDK for both the OS X client and integration to the console so developers could add features that fit different environments.

    8 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Reset of Android mobile phone Factory Reset Protection (FPR) within SCCM/Intune

    Google have added Factory Reset Protection (FPR) to their Android platform of Lollipop 5.1.1 onwards. If a reset request is sent to the mobile phone from SCCM, it does reset the phone but now the phone thinks it is an unauthorised reset and the FPR is now active. You need to now know the Google account detals which may not always be available.
    Would it be possible for SCCM/Intune to have in its reset proccedure the deactivation of the FPR as doing a reset from a Corporate enviroment is really an authorised reset.
    http://www.androidcentral.com/factory-reset-protection-what-you-need-know

    10 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Ability to enrol "on behalf of" a user

    One of the biggest challenges we have when enrolling devices in the SCCM/Intune hybrid environment is not having the ability to enrol devices on behalf of a normal end user. It would be great if a role could be created to allow an IT support person to use the Company Portal app to enrol a device in Intune on behalf of a user. This would enable the device policies, configurations etc.. to be downloaded on the device and then the device would immediately be ready for the end-user when they collect it from IT.

    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Update the Phone Number column for Assets and Compliance \ All Mobile Devices

    Currently the Phone Number column for Assets and Compliance \ Device Collections \ All Mobile Devices when showing displays only a mobile device phone number from the Exchange Connector data using the EAS_Properties table in the ConfigMgr DB.

    Since Intune Subscription is the more common connector used for mobile devices these days for mobile devices vs the Exchange Connector. Please update the stored procedures \ functions to assure that when a mobile device is enrolled or the hardware inventory is pulled and stored in the DEVICECOMPUTERSYSTEMDATA table that the data is also copied to the EAS table theā€¦

    12 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Intune Secure Browser - settings required to manage home page etc..

    We are missing Application Management Policies to allow you to set the home page, set bookmarks, return to home page after *** seconds, encrypt cookies, clear cookies and history if idle, caching, setting kiosk mode. The current application management settings are far too lightweight to be a viable option in most environments.

    2 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base