Microsoft

System Center Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building System Center Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the System Center Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Configuration Manager?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. AD Authentication for PXE boot

    It would be useful to integrate AD authentication in the WinPE boot image for PXE boot OSD.

    When deploying operating systems with MDT and WDS, users are prompted to authenticate against AD when PXE booting. However, in SCCM the only supported way to secure the PXE point is with a DP password that all users share.

    There are third party "hacks" which can integrate AD authentication in the WinPE boot image (Johan Arwidmark's ADSI drivers) but it seems like this would be simple to implement within the product itself since it is already done in MDT/WDS.

    36 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  2. Have a Task Sequence Step to call the Uninstall of an Application and support both the Standard Install and Dynamic Install.

    While a Step for Run Command line can be used for most Windows Installer, if an application uses a EXE it would be nice for the application to be downloaded and the exe used.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  3. Have the ability to pre-deploy an available application on a user’s primary device.

    Today in the application model you can only pre-deploy a required deployment of an application on the users’ primary device but this has 2 drawbacks:
    • Required means that the user doesn’t have the means to uninstall the application and potentially repair the application (uninstall+install).
    • Required means also that when the user logs on to another machine, maybe just to consult a web page, the required applications also get installed unless the global condition primary device equals true was set.
    This is all about provisioning a new machine for a user. Of course there are always common applications, like…

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  2 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  4. Maintenance Window for EP Definition Updates/Security Updates

    Please add the possibility in a MW to "apply this schedule to"
    - EP Defintion Updates (you may want to allow daily defintion updates, but you don't want to install anything else at that time)
    - Security Updates (not all Software Updates, as it is now, but only Security Updates)

    In this case make it multiselect too.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Client Push by OU

    Having the ability to use Client Push more granularly would be awesome. We have about 6 domains, and multiple OUs are defined in System Discovery, yet I don't want Client Push enabled on them all, so it is currently disabled. Maybe having an option in the Discovery area, for an OU that is added (right where it says "Search AD Groups and Search Child containers") that enabled Client Push on that discovered OU. Or More granular settings on Client Push itself, maybe a small GUI attached to it

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  4 comments  ·  Client Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  6. sccm catalog store fully integratedin windows store

    sccm catalog store fully integrated in windows business store directly.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.

    Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow to skip maintenance window for superseded appliciations made available to user collections

    Currently when a superseding application is deployed to a user collection I can enable the option "Automatically upgrade any superseded versions of this application". With this option set I'm able to specify a scheduling for the deployment. But the option to allow the installation or maybe the system restart outside the maintenance windows is greyed out.

    Would be nice to have the option to skip the maintenance windows for this type of deployment as well.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  3 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  9. App-V 5 Deployment Type publishing option

    App-V 5 Deployment Type should have the option per-deployment type of how the App-V 5 package is installed (per-machine, per-user or determined by target)

    Allow for this would offer;
    1. Consistency of options between deployment types (same as for MSI..)
    2. Ensuring a consistent application deployment which will ease admin management (decrease management overhead when removing the application as a sample)
    3. Allow to control deployment type based on end-point, not target collection.
    4. By allowing admins to set per-machine publishing a fully functional application can be ensured, which would leverage all integration points (not possible when using per-user publishing).

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  2 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  10. Decouple site component backup service from database server

    Configuration Manager currently installs binaries and configures the SQL backup site component service on the database server, running under LocalSystem authority. Many environments have separate groups that host and manage the SQL Server enterprise environment, and do not allow for services or additional software to be installed on them, creating unnecessary conflict and drama when SCCM needs to be installed. SQL Server is a networked service, there shouldn't be a reason to install software on the database server running under a privileged account in order to leverage backup routines.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  11. Open multiple files from command line with cmtrace

    What the description says. I'd love to open multiple files with CMTrace so it can more easily be integrated with 3rd party utilities!

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  9 comments  ·  Tools  ·  Flag idea as inappropriate…  ·  Admin →
  12. Ability to assign pre/post tasks to maintenance window

    Ability to assign pre/post tasks to maintenance window and prioritize content application within the window.

    Example:
    1. patches
    2. appilication deployment A has higher priority than application deployment B
    3. packages
    4. task sequences
    5. settings mgmt remediation

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  1 comment  ·  Collections  ·  Flag idea as inappropriate…  ·  Admin →
  13. WPF Support in WinPE

    A lot of folks are building WPF apps and frontends that are used at the start of OSD. The most recent PE has stopped supporting this all together. I'm not sure if this is the correct user voice, but the ability to whip up an app to run in PE makes OSD a lot more flexible. It'd be excellent to have it back and to have it be a bit more robust.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →

    Updating status to Noted.

    Thanks for the feedback, certainly understand the frustration at not being able to use WPF anymore.

    I’m not really sure what to do with this item as we do not own WinPE. Also, the documentation here – https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/winpe-add-packages--optional-components-reference – calls out WPF is not supported.

    There’s some more information and a workaround posted here – https://techcommunity.microsoft.com/t5/Windows-10-AMA/WPF-Support-in-WinPE-for-ADK-1809/td-p/301520

    You mentioned ‘correct user voice’ – I could not find one for WinPE. This is the Windows Server UV – https://windowsserver.uservoice.com/forums/295047-general-feedback

    Let us know if any of this information helps.

  14. Preflight checks support in OSD for Win10 upgrades

    Provide a better way to support preflight checks for OS upgrades in terms of success/error being shown to users. Being able to show users a warning sign instead of a hard stop error would give better user experience. Currently, we either get "Installed successful" message, with having continue on error checked, or hard stop or scary error message that's presented to users if requirements aren't met. Everyone uses preflight checks now for OSD, please support it better with better notifications (customized) and error/warning handling.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the feedback – updating status to Noted. See https://blogs.technet.microsoft.com/configmgreng/2016/03/11/configmrguv/

    As mentioned there’s some excellent samples provided from our MVP community. We’ll likely break this item to distinct pieces e.g. expanding Check Readiness step to test for Battery/Is Wired etc.

    As well as preflight using /Compat prior to upgrade can help with finding issues before deployment. For 1806 that will now run without stopping CCMExec (setting ProvisioningMode).
    Coupled with using /Compat for upgrade Windows produced SetupDiag to help diagnose upgrade blockers in more detail – see https://docs.microsoft.com/en-us/windows/deployment/upgrade/setupdiag

  15. suport Azure PaaS for SQL DB

    Support ConfigMgr to be installed on Azure VM IaaS using SQL Paas as DB.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  2 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriate…  ·  Admin →
  16. Create folders under "Deployments"

    Allow the creation of folders under "Deployments"

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  2 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  17. Integrate a References tab on Application objects

    Application objects should have a References tab that is identical in functionality to the References tab on Task Sequence objects.

    The current References tab in an Application object's properties is very limited (Shows App dependencies, App Supersedence, and Virtual Environments).

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  5 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
  18. O365 ADR for New Office Installs

    We have the ability to setup ADR's for O365 updates, but we need the ability to create O365 ADR's for downloads and deployments of the newest O365 Installers to new images that do not have O365 installed yet.

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriate…  ·  Admin →
  19. Improved alerting for SCEP

    Configuration Manager allows the creation of subscriptions to alerts for the following Endpoint Protection events:

    * Malware outbreak - the same malware detected on multiple computers
    * Multiple malware detected on one computer
    * Same malware repeatedly detected on one computer

    The ability to subscribe to alerts for these events is useful, but this feature could be improved.

    For example, I don't need to be alerted when malicious JavaScript on a website is repeatedly detected and blocked on a user's computer, but there is no way to filter notifications for a specific class of threats. On the other hand, I…

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Option to use SYSTEM context for detection method for a user-based application deployment

    The application detection method only runs in the user context if it is deployed to a user collection. This would be reasonable if the Deployment Type user experience were set to "Install for User" (User context), however the detection method runs in the user context when this is set to "Install for system" installation behavior (SYSTEM context).

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Noted  ·  6 comments  ·  Application Management  ·  Flag idea as inappropriate…  ·  Admin →
1 2 5 7 9 32 33
  • Don't see your idea?

Feedback and Knowledge Base