Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Download Package Content - Dynamic Option

    Modify the Download Package Content step to include a dynamic option similar to the Install Package step (see attached mock up). This will allow the ability to selectively download content that is not a direct task sequence reference. When deploying the task sequence, the direct references (common to every system) can be downloaded ahead of time and then the system specific items can be downloaded selectively at TS run time. OSDDownloadContent.exe already performs a dynamic content location request, which is super useful when needing to pre-cache or download driver packages, BIOS packages and other items that are machine specific.

    162 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. criteria in software updates filtering for Title

    During the software update filter section ,I want to exclude updates with title malicious,itanium and security only but for this ,if i choose title does not contain ,it doesnt have option to change AND instead of OR .
    OR will work only if the title contain but if i choose does not contain ,i left with undesired results. This is same for other filter sections .
    Attached the image for your reference.

    Can this be improved to customize based on the requirement.

    156 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    8 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. Collections should have a column for IP address

    When a collection of computers is opened we should have the option of displaying a column with the machines IP address. Or 2 columns, one for IPV4 and another for IPV6.

    152 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    15 comments  ·  Collections  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Animated GIFs as icons in Software Center

    It would be pretty šŸ”„if software center supported animated GIFs for App icons

    151 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    11 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Improve automatic SQL configuration, tuning, and maintenance of the SCCM DB & SQL Server

    Current architecture around SCCMā€™s management of SQL configuration and maintenance is old and hard to use. It requires a lot of manual oversight, and manual SQL tasks. And the default SQL settings created by SCCM are non-optimal. SQL is a powerful beast. Rethink ways SCCM can use it better, and keep it more optimally tuned and configured. Rethink how to run maintenance and backup tasks without downtime or impact to the production sites and deployments (this especially becomes more important with features like Conditional Access, that can never really have downtime.)

    150 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  5 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Install Servicing Stack Updates (SSU) Before Other Updates When User Initiated

    The Current Branch 2002 release introduced a feature to install SSUs first but only when triggered by the deadline.
    From the docs:
    "SSUs are installed first only for non-user initiated installs. For instance, if a user initiates an installation for multiple updates from Software Center, the SSU might not be installed first."

    A lot of work has been put into encouraging user-participation in the patching process. I want the user to decide when they're ready to install the updates and avoid situations where the deadlines impact their work. In those scenarios the behavior introduced in 2002 therefore not helpful.

    Iā€¦

    149 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Allow Changing In-use Global Conditions

    Currently, a Global Condition cannot be changed or deleted if it is in use in any existing revision of an application. This makes testing a new global condition or fixing an existing global condition extremely cumbersome, either resulting in many duplicates being created or many revisions of the application being deleted every time the global condition must be changed.

    While it is beneficial to make it difficult to break an existing application by preventing the global condition from changing, ultimately, SCCM users need the freedom to determine when it is appropriate to change an existing Global Condition on their own.

    147 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Add Support for MSA/gMSA for Standard Roles

    I would like the ability to assign managed service accounts or group managed service accounts to the standard roles for SCCM (i.e. Network Access Account, Domain Join account, Client Push account, etc.) so that those accounts can be secured without the need for knowing or managing the password.

    146 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    5 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Include the serviceui.exe functionality in task sequence environment by default

    Many organizations create their own front-ends for ConfigMgr Task Sequences (or leverage popular third-party ones like OSD++, Pretty Good Front End, etc.). However, these only are able to be used when the task sequence is in WinPE.

    Please add the serviceui.exe functionality into the default task sequence environment so it is possible to display Light Touch prompts when starting the task sequence from an existing operating system. Including serviceui.exe would be enough, or the functionality to launch interactive UI could be added to the environment natively.

    146 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →

    Updating status to started. See https://docs.microsoft.com/en-us/configmgr/core/understand/find-help#send-a-suggestion for an explanation of each value.

    Configmgr 2003 Technical Preview released today and has a new SDK method for task sequence progress.

    For more info:
    Doc: https://docs.microsoft.com/en-us/configmgr/core/get-started/2020/technical-preview-2003#bkmk_tsapi
    Blog: https://techcommunity.microsoft.com/t5/configuration-manager-blog/onboard-clients-to-microsoft-defender-atp-using-memac-and/ba-p/1266085

    This should address some of the asks here, please try it out and let us know your feedback.

  10. Change target computer mapping for state migrations (USMT)

    Please make it possible to change the target computer when using state migration points as a means of transferring user data to one pc to another.
    The scenario would allow the backup (scanstate) of the old pc data, utilizing all positive aspects of SMP (centralized, encrypted, storage based on boundaries). IT could then later set target computer, which may not be known at the time the data gets saved.
    Ideally this should be possible in the admin console by ā€œeditingā€ the state item to map to a new computer, just after it has already been created. ā€œLate mappingā€ so toā€¦

    139 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. RBAC for Desktop Analytics


    1. As of the role in Azure is desktop analytics administrator, which allow complete access to this blade, any plan for a read only role ? or read only is possible with any other role, considering there is only 3 roles in azure for devices ?

    2. Can we have more granular role based access model in here with RBAC ?

    136 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Desktop Analytics  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Allow OS Upgrade and Custom Task Sequences to queue status messages during offline execution

    When OS Upgrade and Custom task sequences are running offline (such as following a reboot while on VPN) all task sequence manager status messages are discarded. While this is expected in WindowsPE, it would be beneficial for troubleshooting/reporting if OS Upgrade and Custom task sequences would queue status messages locally just like Executive Manager does with software installation status.

    135 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Management Insights: Show Microsoft Products detected in your environment that are not enabled on the SUP

    Managing your SUP can be challenging in large environments where other teams may be implementing new Microsoft products and forgetting to notify the SCCM Admin that it might be a good idea to patch the product.
    With Management Insights now available in the Console it would be nice to show insights in what Microsoft products are detected in your environment as being installed, but are not enabled on the SUP hence creating a potential security risk.

    134 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    5 comments  ·  Admin Console  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Option to use SYSTEM context for detection method for a user-based application deployment

    The application detection method only runs in the user context if it is deployed to a user collection. This would be reasonable if the Deployment Type user experience were set to "Install for User" (User context), however the detection method runs in the user context when this is set to "Install for system" installation behavior (SYSTEM context).

    135 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  12 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Task Sequence Version Control

    Please create a function to enable task sequence versioning. This feature would be very helpful for reverting back to a previous task sequence as well as accountability for the last user that modified the task sequence.

    We write a lot of WMI queries as well as set various task sequence variables. These settings change over time and it would be a great feature to look back on a previous version to view the changes as well as the last user modification.

    We currently make copies of our task sequences for this archival purpose. This process works for us now, butā€¦

    134 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →

    Thank you for your feedback.
    Updating status to planned, see https://docs.microsoft.com/en-us/mem/configmgr/core/understand/find-help#send-a-suggestion for an explanation of each value.

    Our 2006 release is now in the opt-in phase (fast ring)
    Blog: https://techcommunity.microsoft.com/t5/configuration-manager-blog/update-2006-for-microsoft-endpoint-configuration-manager-current/ba-p/1569562
    Docs: https://docs.microsoft.com/mem/configmgr/core/plan-design/changes/whats-new-in-version-2006
    Support Information: https://aka.ms/cmcssreleaseinfo

    This releases adds the Community Hub https://docs.microsoft.com/en-us/mem/configmgr/core/servers/manage/community-hub which addresses some of the User Voice asks you have added for task sequence version control, auditing, revision history etc.
    The Hub is nascent and we will continue to iterate, improving and adding new features.
    As part of this process we would appreciate your comments and feedback on the Hub.

  16. Software Center Error - Display Error Code Details

    When a deployment fails in Software Center, and you click the "Failed" link, it will then show an error code. Ten, we have to Google (excuse me, I mean Bing) the error code or look in CMTrace to find out what it means. Could Software Center do the same thing that CMTrace does, and look up the error and display what it means there in the Software Center window?

    133 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  5 comments  ·  Software Center  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Show live distribution status within the console

    Show the live status of content copying to distribution points (status bar) in the Admin console, Essentially the existing DP Job queue Manager

    130 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  2 comments  ·  Content  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Use SQL Backup with Compression for the backup task

    With CM 1511, SMS Backup task enabled by default. And that does a volume shadow copy of the DB which means full-sized files. For my tiny lab that means I'm backing up 8 GB alone.

    For production it'll mean 850GB per primary site. Under CM12 when we backup just SQL using compression, it's just 160GB per primary site.

    Please allow an option to just invoke a database backup instead so that compression can be used and I don't need to go order terabytes of data just for backups.

    Also the current backup just erases the last backup. But in aā€¦

    126 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Have updates automatically handle MP replicas

    It's a real pain to have to tear down and rebuild the MP replicas every time I want to install a servicing update. It would be great to have the update process automatically save the replica state, point the MPs at the primary DB, tear down the MP replicas, do the update and then put it all back.

    125 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Apply Boundary Groups to WinPE Management Point selection

    Currently it appears that when the SCCM agent in the WinPE boot image connects to a Management Point, it selects one without using the Boundary Group rules, instead selecting one from the AD published list, starting with the first alphabetically.
    Instead this should behave like the full blown Windows SCCM Client and select a Management Point based on Boundary Groups such as IP range.
    It is worth noting that Distribution Points are selected correctly according to Boundary Group by the WinPE client, for OSD content.

    124 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    5 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base