Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add BAT/CMD/PS1 to 'Executable files' filter on 'Deployment Type' installation and uninstall programs

    Every site I've ever worked at has used batch files as the installation/uninstall source. It's a nuisance to have to click that drop-down Every.Single.Time in order to select them. The simple addition of '.BAT; .CMD; *.PS1' to the filter would fix that frustration.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  2. Pass script parameters to RunScript via the AdminService

    While we can pass script parameters to Invoke-CMScript and the InitiateClientOperationEx WMI method, we still cannot pass parameters via RunScript through the AdminService. This would be an incredibly useful and much appreciated feature addition.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow a local user (admin or not an admin) to be added in a Task Sequence

    It is possible to *** a local user/group to a local machine during OSD using the net command or PowerShell but it is impossible to do this so that the password is encrypted. PowerShell requires the key so it has to be made on the same machine but that's not always possible. Net command requires the password in plain text, also not desirable.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  4. When retrieving device information within the SCCM Console. Can a column be added for when a device was added to a specific collection?

    Under Collection Tab at bottom for a device. When retrieving device information within the SCCM Console. Can a column be added for when a device was added to a specific collection?

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  5. Include the ability to add a hash to endpoint protection

    I do not see a way to add a hash to endpoint protection. We had malware recently that endpoint protection did not catch. We have the hash number but I didn't find a way in SCCM to add that.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Adding Scheduale for "Run Script"

    I recommend adding an option to Task Schedule for "Run Script".
    the only way to run script is manual at this moment...
    location:
    \Software Library\Overview\Scripts

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. Tool tip on device active status icon

    Customers ask me all the time the icon really means. Especially when they confirm a device is powered on and responds to a remote ping. An simple explanation of the icon would be really helpful.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  8. Word Wrap in Collection Editor

    The new collection editor is very nice, but it would be even better if we had the option to enable "word wrap" as part of this new window. I know we can resize window, but often times word wrap is the preferred method for viewing.

    18 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Collections  ·  Flag idea as inappropriate…  ·  Admin →
  9. Office Analytics Inventory Scan Frequency

    Currently the Office Analytics runs every 7 days. This can be seen in c:\windows\ccm\logs\officeanalytics.log.
    The frequency is configured in the c:\windows\ccm\OfficeAnalytics.mof file. Shown below:

    instance of CCMSchedulerScheduledMessage

                   {
    
    ScheduledMessageID = "{3C3D7A92-7971-4D35-ABBE-3DBA77126143}";
    TargetEndpoint = "direct:OfficeAnalyticsEndpoint";
    TriggerMessage = "<DAMessage MessageType='CollectOfficeData'/>";
    Triggers = {"SimpleInterval;Minutes=10080"}; // 1 week = 7 * 24 * 60
    };

    This populates the table "OFFICEPRODUCTINFODATA"
    and the view "vGSOFFICE_PRODUCTINFO "

    The issue is if you configure inventory to be less than 7 days, the data does not match in the "vGSOFFICE365PROPLUSCONFIGURATIONS" view until the OfficeAnalytics inventory has run. For example version.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Desktop Analytics  ·  Flag idea as inappropriate…  ·  Admin →
  10. Office Analytics Inventory Scan Frequency

    Currently the Office Analytics runs every 7 days. This can be seen in c:\windows\ccm\logs\officeanalytics.log.
    The frequency is configured in the c:\windows\ccm\OfficeAnalytics.mof file. Shown below:

    instance of CCMSchedulerScheduledMessage

                   {
    
    ScheduledMessageID = "{3C3D7A92-7971-4D35-ABBE-3DBA77126143}";
    TargetEndpoint = "direct:OfficeAnalyticsEndpoint";
    TriggerMessage = "<DAMessage MessageType='CollectOfficeData'/>";
    Triggers = {"SimpleInterval;Minutes=10080"}; // 1 week = 7 * 24 * 60
    };

    This populates the table OFFICEPRODUCTINFODATA
    and the view vGSOFFICE_PRODUCTINFO

    The issue is if you configure inventory to be less than 7 days, the data does not match in the vGSOFFICE365PROPLUSCONFIGURATIONS view until the OfficeAnalytics inventory has run. For example version.

    Please…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Desktop Analytics  ·  Flag idea as inappropriate…  ·  Admin →
  11. web portal for SCCM Dashboards for Windows 10, Office 365 and Software Updates, etc..

    Rather than all users needing a MECM Console and permissions to access the Graphical Dashboards for Windows 10 servicing, Office 365 and software Updates. Have a web link equivalent so that non-admin can either be sent an email with a link or have a sharepoint site with the dashboards available

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  12. Can we get Remove-ConfigurationItemRevisionHistory PS Command

    I can remove an Applications Revision History in PS but not CI's history via PS.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  13. Can we get Remove-ItemfromCMBaseline PS Command

    I can create/deploy/remove CI's and Baseline in PS but remove (CI/Update/Baseline) from a CM Baseline via PS.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  14. Can we get Add-ItemtoCMBaseline PS Command

    I can create/deploy/remove CI's and Baseline in PS but add (CI/Update/Baseline) to a CM Baseline.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  15. Antivirus exception control gap

    Since implementing antivirus exceptions are a control gap, please allow windows defender to optionally audit excluded directories in scheduled scans in an audit only mode.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Convert all Typographic/Curly Quotation Marks to Standard Quotation Marks

    We have this problem come up occasionally where we copy text from something like a word doc or modern SharePoint site and paste it into the deployment settings for an App and it ends up causing issues.

    For example: “...” will break stuff, "..." works fine.

    This issue presents itself most notably in the AppEnforce.log as follows:
    Invalid data file “example.cmd” to execute using file association
    PrepareCommandline failed with 0x87d01106 for cmdline “example.cmd”
    ScriptHandler::EnforceApp failed (0x87d01106).
    AppProvider::EnforceApp - Failed to invoke EnforceApp on Application handler(0x87d01106).
    CommenceEnforcement failed with error 0x87d01106.
    Method CommenceEnforcement failed with error code 87D01106
    ++++++ Failed to…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  17. Unused HW Inventory table columns in SQL DB should be defined as "Sparse"

    After enabling the collection of 3 attributes from the win32_process WMI class from our PCs, the database blew in size, as all other (30+) attributes of that class take up as much disk space as if they had data in them.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  18. Exclude Virtual Cluster from System Discovery

    This request ( https://configurationmanager.uservoice.com/forums/300492-ideas/suggestions/8414520-exclude-virtual-cluster-and-ou-from-discovery ) was not fully completed, but it was marked as complete. People have been commenting that it is NOT done.

    We appreciate the addition of OU exclusion, but Virtual Cluster exclusion is also a big part of what we need!

    I believe most of us don't want to have to pile up our cluster objects into a junk OU just to exclude them. My AD is organized such that it makes far more sense to see these objects sitting with the real computer objects.

    Please review the request for Virtual Cluster exclusion as a separate request…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Client Discovery  ·  Flag idea as inappropriate…  ·  Admin →
  19. Servicing Plans should evaluate builds on Availability Date not Revision Date

    Servicing Plans, effectively, don't work anymore. I had this process setup to be automated with different deployment phases at 30, 90 and 180 days. This process no longer works because Microsoft has been releasing newer versions of the upgrades that reset the release date.

    So now build 2004, which released over 300 days ago, doesn't qualify for my 180 day General Release plan. Microsoft released an updated upgrade file on 11/9/2020, only 142 days ago. This revision was also 14 days BEFORE the 180 days was up, so build 2004 was never picked up by my Servicing Plan.

    This forces…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  20. Ability to add bios password to Dell third party updates so they install via SCCM

    We have setup and are using third party updates from the Dell catalog.
    we have this working very well BUT we are only using it for drivers as bios and firmware updates will not work because we are not able to add our bios password to the Dell updates. It would be nice to have the ability to get this fixed as most enterprises that use SCCM would have there workstations protected with bios passwords.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 227 228
  • Don't see your idea?

Feedback and Knowledge Base