Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Task Sequence Pre-Cache for all Packages inside

    It would be nice to have the ability to conditionally pre-cache all packages in Upgrade TS and not only OS Upgrade step.

    To describe it in more details, in current design we are able to pre-cache only OS Upgrade step to computers based on conditions. This is not enough for companies with 20+ languages as best approach is to create en-us core image and then apply MUI on top of that. Doing this will cause system to report as e.g. de-de so we would need to download and distribute to 150+ DPs all supported Upgrade packages instead of distributing only…

    79 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    11 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Fix very slow content download (and constant certificate checks) - in a HTTPS Only infra - for OS upgrades through Task Sequence.

    Basically we observe a very slow content download ("Upgrade Operating System" + "Download package content" step, for the driver packs) when doing Win10 in-place upgrade through a TS over HTTPS.
    Issue occurs on both Win10 1607/1703, using SCCM 1802 (back-end and client).
    Approx. 90% of the smsts.log entries are all about certificate validation (sometimes even multiple times for 1 downloaded file).
    After each selection/validation action, a status of <success> is returned.. but only seconds later the same selection/validation is attempted over and over again.

    77 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    15 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Support the windows server OS being upgraded on Site Servers (in place), w/o backup & recovery or migration.

    Older version of windows server are falling out of support, or are deprecated for ConfigMgr current branch. i.e. Windows Server 2008 and 2008 R2. Support an easy way of upgrading those operating systems to newer versions of windows server.

    77 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  4. Run PowerShell Script item in Task Sequences should allow alternate credentials

    Right now, if I need to run a PS script in a Task Sequence requires to use the Run Command Line item using PowerShell.exe. However, if I want to run a script with parameters, then I must use the -command option for PowerShell.exe, which has some odd parsing problems that can cause scripts to fail when run this way.

    76 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Integrate /ResetBase and WIM Optimization/Exporting into Offline Servicing

    In the interest in making my OS deployment task sequences as fast and as optimized as possible, I always optimize WIM files anytime they're updated or re-created.

    In my build/capture task sequence, I add a step at the very end before capture to run DISM /StartComponentCleanup /ResetBase so that all of the superseded updates are removed from the base image before it is captured. This results in a smaller WIM file and obviously, faster deployment times.

    With the built-in Offline Servicing option for OS images, once new updates are added, they remain in the component store of the image when…

    76 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  6. rba viewer

    RBA Viewer from the toolkit no longer opens after the application of CU1 for SCCM 2012 R2 SP1. I show this VERY useful tool to almost every customer of mine as most of them struggle with creation of roles correctly. The viewer crashes with the following message in the debug.

    73 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Integrate MBAM fully in Configuration Manager

    Integrate MBAM fully in Configuration Manager so Bitlocker key management can be done from Configuration Manager.

    73 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Compliance Settings  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add Option to Bypass Proxy for Local Address for ADR Content Downloads

    It would be extremely helpful to have an option in the software update point site system to bypass a proxy for a local address. The only options today are (see Current-SUP-Proxy-Options.png):


    • Use a proxy server when synchronizing

    • Use a proxy server when downloading content by ADRs

    The issue is when an ADR tries to download a third-party software update, it will attempt to use a proxy server and often fail because the proxy doesn't route correctly to the internal WSUS server. For example in patchdownloader.log, you will see something like <Download-Error-PatchDownloader.png>.

    There needs to be an option to not use…

    72 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add support for tftp windowsize

    I think it would be great if SCCM could have a configurable value in registry for TFTP windowsize just as it has with TFTP blocksize. Both WDS and bootmgr.exe seem to handle it but there is no easy way to get this option into the generated BCD file upon PXE boot. Seems like a low hanging fruit.

    70 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Reduce the amount of time needed perform a CM upgrade

    For most companies, Configuration Manager is becoming a mission critical service the requires less and less downtime. Upgrading large environments/DBs can take up to 5 hours for the CAS, and 4-5 hours for primary sites. Also, most customers want to get the latest hotfixes installed right after performing an upgrade. In some cases, the hotfixes take just a long to complete as the original upgrade. Overall, this can require long outages (sometimes 2 days) to get current.

    Potential Solutions:


    1. The ability to upgrade directly to the latest hotfix as noted here:
      https://configurationmanager.uservoice.com/forums/300492-ideas/suggestions/33166225-upgrade-sccm-directly-to-rollup-version


    2. Reduce the time needed to regenerate DRS sprocs…

    66 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow us to copy information out of the "Asset Details" pane in the Deployment Status screen

    Currently the Asset Details window in the Deployment Status screen is a good overview of what is going on with any given deployment. However, many times assets in the Error or Unknown tabs require additional steps from us. I'd like to propose that the ability to copy information from the Asset Details window (much like Ctrl+C on a collection) is added to the Configuration Manager console.

    This would allow us to automate many actions with scripts and provide quick reports without having to write custom queries

    65 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Deployment Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  12. SCCM On Premise MDM Should Support Windows 10 Devices

    It would be great if SCCM On Premise MDM would support Windows 10 Devices for scenarios such as settings, required application deployment, wipe and retire.

    64 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  3 comments  ·  Mobile Device Management  ·  Flag idea as inappropriate…  ·  Admin →
  13. Improve and speed up adding or removal processes of direct members to collections, optimize handling in backend

    We need a quick way to quickly populate or empty collections. Targets should be imported as rules without triggering other processes in the background (eval/re-built). The same also applies to removal rules.

    Please implement something like an cmdlet “Add-CollectionMemberRules” / “Remove-CollectionMemberRules” with fast adding rules method, without delays, without rebuilding the complete collection sets in the background. The cmdlet should support especially adding rules like "DirectMembers".

    Note:
    This will help to control and steer application (ramp-up / ramp-down) rollouts, depending on device target lists, created by internal IT or delivered by business partner. The lists could based on different information…

    64 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  14. Client Settings - Computer Restart - Allow longer than 1440 minutes, show friendly time

    Currently, the maximum an administrator can give users to reboot their systems is 1440 minutes (24 hours). Please let us specify up to 7 days. The goal of the delay is to allow a reasonable amount of time for an end user to save their work and reboot without losing anything. The 24 hour limit means that if a user is gone for a day, there is a strong chance they could lose their work. Allowing up to 7 days seems like a better compromise between end user control and respecting admin intent/organizational need.

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Admin Console  ·  Flag idea as inappropriate…  ·  Admin →
  15. Office 365 required updates in 1710 Should Not Force Applications to Close

    Please do not force applications closed when applying office 365 updates. We have had to suspend the deployment of office 365 updates due to user impact until we can work this out. This same topic was marked as complete in the feedback section but it is still happening with SCCM 1710 and KBKB4057517 Installed.
    reference:
    https://configurationmanager.uservoice.com/forums/300492-ideas/suggestions/32048548-office-365-required-updates-in-1706-should-not-for

    Also I have not seen any user presented countdowns when the deadline approaches. Thanks.

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  7 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  16. Distribution point ordering/intelligence

    Make it possible to assign multiple DP's to a boundary group with the ability assign an order in which they are accessed by clients. ATM if there are multiple DP's per boundary group and all are defined as fast (or slow), the DP is chosen randomly. At the very least a DP that resides in the same subnet with the client, should always take precedence,

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Content  ·  Flag idea as inappropriate…  ·  Admin →
  17. Support for custom table synchronization into Data Warehouse

    Issue: Support for custom table synchronization into Data Warehouse

    Currently, although a method exists to extend tables that can be imported into the Data Warehouse, we learnt recently that this is not supported. We feel this represents a gap with the following impacts:
    - Not all tables from the SCCM database are currently synced into the DW. Even a common AI table like InstallSoftwareData must be synced via this custom process. This is a table used heavily in AI based software title reporting and therefore a common addition to the DW.
    - Custom inventory tables – inventory extension/customization…

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. Remove the need for App Catalog, by providing all functionality in Software Center

    Currently, some functionality is only available in the application catalog, and not in software center. Make it so everything can be done in software center, so we can remove application catalog... and Silverlight... and local site security configurations.

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Peer Cache Options

    Add an option to have Peer Cache to work with boundary groups, subnet broadcast or both. My understanding is that 1607 Peer Cache will broadcast local subnet for peers that have the content, 1610 it's based off of Boundary groups. In environment, using boundary groups for peer cache will not work, like to have the option to tell the clients to use boundary group, subnet broadcast or both?

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  4 comments  ·  Content  ·  Flag idea as inappropriate…  ·  Admin →
  20. SCCM Gateway Servers for Deployment to DMZ's

    We should be able to deploy SCCM Gateway servers for deployment to DMZ, Internet and Remote locations where opening ports to the management servers / domains are not feasible. We are unable to forward ports from the internet to our LAN and must use a DMZ. There is no way to implement SCCM for IBCM because of this.

    61 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base