Add an option to have Peer Cache to work with boundary groups, subnet broadcast or both. My understanding is that 1607 Peer Cache will broadcast local subnet for peers that have the content, 1610 it's based off of Boundary groups. In environment, using boundary groups for peer cache will not work, like to have the option to tell the clients to use boundary group, subnet broadcast or both?

We should be able to deploy SCCM Gateway servers for deployment to DMZ, Internet and Remote locations where opening ports to the management servers / domains are not feasible. We are unable to forward ports from the internet to our LAN and must use a DMZ. There is no way to implement SCCM for IBCM because of this.

By default you can pause a Task Sequence by adding a step in the TS that will display a msgbox.

It would be cool to be able to pause a TS when you want and as many times you want.

It is possible by changing the ztiutility.vbs file and add the below process:
- Create a new TS variable TSPause
- If this variable is configured to True a msgbox is diplayed

See a post I did about this:
http://www.systanddeploy.com/2020/02/pause-task-sequence-when-you-want-with.html

The UBR registry key is responsible for displaying the subversion of a Windows 10 build to the end-user. For example 14393. where is the UBR string. If this is added to the HINV list of default classes this will allow for administrators to retrieve this information!

This is located in: HKEYLOCALMACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion

UBR REG_DWORD

This will help administrators differentiate what intermediate builds of Windows 10 they have install and also support patch management because they can easily compare the released patches to the subversion build each month.

Currently, some functionality is only available in the application catalog, and not in software center. Make it so everything can be done in software center, so we can remove application catalog... and Silverlight... and local site security configurations.

Is it possible to add a column to device collections for OS build / release id (i.e. Windows 10 1703 or Windows 10 15063.xxxx) to easily identify the installed Windows 10 version. The column Operating System is sometimes not quite enough information. Thanks!

Being able to edit task sequences with PowerShell would make managing task sequences much easier. Some possible new cmdlets could include:

Add-CMTaskSequenceStep
Get-CMTaskSequenceStep
Remove-CMTaskSequenceStep
Set-CMTaskSequenceStep

Add-CMTaskSequenceGroup
Get-CMTaskSequenceGroup
Remove-CMTaskSequenceGroup
Set-CMTaskSequenceGroup

We need support for multiple hierarchies in one Azure Tenant. Currently there is only support for 1 commercial ID and CM hierarchies. We have 4 spread over the world but only one Azure tenant.

In order to avoid using distributed PXE Servers a support of the Option on PXE DHCP Handshake would make proper inter tenant forwarding possible.

The new Softwarecenter supports list view and tile view. users should be able to save the view-settings.

With 1806 we have the ability to add a custom tab to Software Center. This makes this the place to go for all your IT needs.

We would like to see this extended further by allowing admins to add more than one tab to Software Center. Hopefully our users would never need to leave Software Center for their IT experience in Windows with this feature.

In our organization only signed scripts may be executed on the clients. However, the scripts from CMPivot queries are not signed and are therefore not executed. This restriction is set by GPO and cannot be overridden by "PowerShell execution policy" in the SCCM client computer agent.

SCEP policies do not have the ability to set security scopes. This is a problem because our SCCM is shared by several departments and colleges in the university. For example, someone may inadvertently (or intentionally) modify a policy for DCs which can have a catastrophic effects. Having the ability to set security scopes will restrict who has access to individual SCEP policies.

Support for Endpoint protection on Windows Server 2016 Core.

Please add the following registry keys to WinPE whenever a Boot Image is created/updated to prevent it from asking every time if we want to use CMTrace as the default viewer for log files:

Reg add HKU\Software\Classes.lo_ /ve /d Log.File /f

Reg add HKU\Software\Classes.log /ve /d Log.File /f

Reg add HKU\Software\Classes\Log.File\shell\open\command /ve /d ""x:\sms\bin\i386\CMTrace.exe" "%%1"" /f

See more here: https://miketerrill.net/2017/05/13/how-to-open-cmtrace-in-winpe-like-a-boss/

It would be good if we are able to have a ring based model for Application Deployment and management as we have for Windows 10 CB rollout with early adopters ring, Pilot ring, Production ring . This will help a lot as we are seeing the benefit of the ring model in Windows 10 Deployment.

This is a DCR requesting that we improve the logic around MP, SMP and SUP selection by clients. Currently, we gather AD Site and IP Subnet details for DPs, store that in DPInfo and include that information in the XML body returned on content lookup requests. Why can we not do this for other server roles so that the client can choose the best server to connect to based on matching AD Site and/or IP Subnet? This would provide a far better solution than having to populate AllowedMPs, too.

In ConfigMgr TP 1701 the Hardware Inventory now collects UEFI information. To complete the story the Secure Boot should also be included by default.