Microsoft

System Center Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building System Center Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, seeĀ https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the System Center Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.

How can we improve Configuration Manager?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinkingā€¦)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow "Applications" to run under alternate account other than "SYSTEM"

    Allow "Applications" to run under alternate account other than "SYSTEM". Some applications will not run under a s SYSTEM account and have to run with a domain account. It is only possible when using a task sequence to accomplish this now and it can only be done with packages.

    36 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Fix 'CI Version Info Timed Out' error

    My applications are successfully installing on client devices however the Console is showing an error for the deployment in the monitoring section. The only description of the error is 'CI Version Info Timed Out'. I have tried all the workarounds found online.
    - Deleting and recreating a package to reset the revision number
    - Deleting deployment and recreating deployment
    - Updating collection and redistributing content

    Nothing works permanently the errors come right back

    36 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  4 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. AD Authentication for PXE boot

    It would be useful to integrate AD authentication in the WinPE boot image for PXE boot OSD.

    When deploying operating systems with MDT and WDS, users are prompted to authenticate against AD when PXE booting. However, in SCCM the only supported way to secure the PXE point is with a DP password that all users share.

    There are third party "hacks" which can integrate AD authentication in the WinPE boot image (Johan Arwidmark's ADSI drivers) but it seems like this would be simple to implement within the product itself since it is already done in MDT/WDS.

    36 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  4. Application Model - Fast Retry interval

    By default Fast rety interval is 2 hours. There is no option to change this setting. We would like have option to change this internval.

    Note in Pacakage model we have option to change this setting through site control file

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  0 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Have a Task Sequence Step to call the Uninstall of an Application and support both the Standard Install and Dynamic Install.

    While a Step for Run Command line can be used for most Windows Installer, if an application uses a EXE it would be nice for the application to be downloaded and the exe used.

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
    Noted  ·  sangeev responded

    Updated by bobmn for sangeev/OSD

  6. Windows Firewall With and Advance Security integration

    So this portion is currently listed under EP in the SCCM console so im posting here. i would like to see an enterprise solution to deploying the windows firewall similar to the way DCM relationships are. Not the existing feature in SCCM where you can simply enable or disable the firewall policy. i would like to see Individual Firewall rules are created as Configuration items and then grouped into Baselines to be applied at a granular level to computers. that way we can remove the GPO dependency on where a computer is placed or at which level its place. SCCMā€¦

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Maintenance Window for EP Definition Updates/Security Updates

    Please add the possibility in a MW to "apply this schedule to"
    - EP Defintion Updates (you may want to allow daily defintion updates, but you don't want to install anything else at that time)
    - Security Updates (not all Software Updates, as it is now, but only Security Updates)

    In this case make it multiselect too.

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. Client Push by OU

    Having the ability to use Client Push more granularly would be awesome. We have about 6 domains, and multiple OUs are defined in System Discovery, yet I don't want Client Push enabled on them all, so it is currently disabled. Maybe having an option in the Discovery area, for an OU that is added (right where it says "Search AD Groups and Search Child containers") that enabled Client Push on that discovered OU. Or More granular settings on Client Push itself, maybe a small GUI attached to it

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  4 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. sccm catalog store fully integratedin windows store

    sccm catalog store fully integrated in windows business store directly.

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.

    Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. SCCM Console UI: Multiple window support

    It would really help having multiple window support in day to day operations, ie Right click Software Library - Open in New Window

    35 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  2 comments  ·  Admin Console  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Allow to skip maintenance window for superseded appliciations made available to user collections

    Currently when a superseding application is deployed to a user collection I can enable the option "Automatically upgrade any superseded versions of this application". With this option set I'm able to specify a scheduling for the deployment. But the option to allow the installation or maybe the system restart outside the maintenance windows is greyed out.

    Would be nice to have the option to skip the maintenance windows for this type of deployment as well.

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  3 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Decouple site component backup service from database server

    Configuration Manager currently installs binaries and configures the SQL backup site component service on the database server, running under LocalSystem authority. Many environments have separate groups that host and manage the SQL Server enterprise environment, and do not allow for services or additional software to be installed on them, creating unnecessary conflict and drama when SCCM needs to be installed. SQL Server is a networked service, there shouldn't be a reason to install software on the database server running under a privileged account in order to leverage backup routines.

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Add a check box to Maintenance Tasks to disable all temporariliy

    When doing an upgrade to SCCM, it has been recommended to disable some, or even all of the site maintenance tasks. (per the upgrade checklist) Would be awesome to have a box on the Maintenance Tasks screen to temporarily disable ALL tasks while the upgrade is being performed. (as opposed to manually disabling all of them) An "upgrade/maintenance mode" box essentially!

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  4 comments  ·  Setup and Server Infrastructure  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Open multiple files from command line with cmtrace

    What the description says. I'd love to open multiple files with CMTrace so it can more easily be integrated with 3rd party utilities!

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  9 comments  ·  Tools  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Ability to assign pre/post tasks to maintenance window

    Ability to assign pre/post tasks to maintenance window and prioritize content application within the window.

    Example:
    1. patches
    2. appilication deployment A has higher priority than application deployment B
    3. packages
    4. task sequences
    5. settings mgmt remediation

    34 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  1 comment  ·  Collections  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Preflight checks support in OSD for Win10 upgrades

    Provide a better way to support preflight checks for OS upgrades in terms of success/error being shown to users. Being able to show users a warning sign instead of a hard stop error would give better user experience. Currently, we either get "Installed successful" message, with having continue on error checked, or hard stop or scary error message that's presented to users if requirements aren't met. Everyone uses preflight checks now for OSD, please support it better with better notifications (customized) and error/warning handling.

    33 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →

    Thanks for the feedback – updating status to Noted. See https://blogs.technet.microsoft.com/configmgreng/2016/03/11/configmrguv/

    As mentioned there’s some excellent samples provided from our MVP community. We’ll likely break this item to distinct pieces e.g. expanding Check Readiness step to test for Battery/Is Wired etc.

    As well as preflight using /Compat prior to upgrade can help with finding issues before deployment. For 1806 that will now run without stopping CCMExec (setting ProvisioningMode).
    Coupled with using /Compat for upgrade Windows produced SetupDiag to help diagnose upgrade blockers in more detail – see https://docs.microsoft.com/en-us/windows/deployment/upgrade/setupdiag

  18. WPF Support in WinPE

    A lot of folks are building WPF apps and frontends that are used at the start of OSD. The most recent PE has stopped supporting this all together. I'm not sure if this is the correct user voice, but the ability to whip up an app to run in PE makes OSD a lot more flexible. It'd be excellent to have it back and to have it be a bit more robust.

    33 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Operating System Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →

    Updating status to Noted.

    Thanks for the feedback, certainly understand the frustration at not being able to use WPF anymore.

    I’m not really sure what to do with this item as we do not own WinPE. Also, the documentation here – https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/winpe-add-packages--optional-components-reference – calls out WPF is not supported.

    There’s some more information and a workaround posted here – https://techcommunity.microsoft.com/t5/Windows-10-AMA/WPF-Support-in-WinPE-for-ADK-1809/td-p/301520

    You mentioned ‘correct user voice’ – I could not find one for WinPE. This is the Windows Server UV – https://windowsserver.uservoice.com/forums/295047-general-feedback

    Let us know if any of this information helps.

  19. Improved alerting for SCEP

    Configuration Manager allows the creation of subscriptions to alerts for the following Endpoint Protection events:

    * Malware outbreak - the same malware detected on multiple computers
    * Multiple malware detected on one computer
    * Same malware repeatedly detected on one computer

    The ability to subscribe to alerts for these events is useful, but this feature could be improved.

    For example, I don't need to be alerted when malicious JavaScript on a website is repeatedly detected and blocked on a user's computer, but there is no way to filter notifications for a specific class of threats. On the other hand, Iā€¦

    32 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    9 comments  ·  Endpoint Protection  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. App-V 5 Deployment Type publishing option

    App-V 5 Deployment Type should have the option per-deployment type of how the App-V 5 package is installed (per-machine, per-user or determined by target)

    Allow for this would offer;
    1. Consistency of options between deployment types (same as for MSI..)
    2. Ensuring a consistent application deployment which will ease admin management (decrease management overhead when removing the application as a sample)
    3. Allow to control deployment type based on end-point, not target collection.
    4. By allowing admins to set per-machine publishing a fully functional application can be ensured, which would leverage all integration points (not possible when using per-user publishing).

    32 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: facebook google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    Noted  ·  2 comments  ·  Application Management  ·  Flag idea as inappropriateā€¦  ·  Admin →
1 2 5 7 9 32 33
  • Don't see your idea?

Feedback and Knowledge Base