Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 3rd Party Patching - SCUP Integration with SCCM Console

    Integrate the SCUP tool on to SCCM Admin Console. This will give a single pane of glass view for all patching activities (including importing 3rd party patches).

    3,785 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    94 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Install Servicing Stack Updates Before Other Updates

    Currently, when servicing stack updates and regular updates are deployed in the same software update group, the patches do not apply in a determinant order. This leads to cases where a cumulative update that requires a new servicing stack is installed before the servicing stack itself.

    While this can be worked around by separately deploying the servicing stack update before updates that require said servicing stack, it would be much more convenient if the update installation process checked if there are any servicing stack updates to be deployed and automatically installed them first

    1,672 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    49 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
    completed  ·  Rae Goodhart responded

    SSUs will now be installed before other updates in the Configuration manager 2002 release, which is now released to the opt-in phase. You can opt-in and then download 2002 through their Admin Console now!

    Blog: https://techcommunity.microsoft.com/t5/configuration-manager-blog/update-2002-for-microsoft-endpoint-configuration-manager-current/ba-p/1272670
    Docs: https://docs.microsoft.com/configmgr/core/plan-design/changes/whats-new-in-version-2002
    Support Information: https://aka.ms/cmcssreleaseinfo

  3. Install and Shutdown / Install and reboot with Software Updates

    In Windows client, after receiving software updates from the SUP, I want you to be able to use the" install and reboot / shutdown and update" botton.

    868 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    17 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Using express installation files

    Integration of the express installation files from WSUS
    I think this is becoming mandatory with the size of updates of Windows 10.

    684 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    24 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Need WSUS Maintenance tasks

    There should be a few built in maintenance tasks to go through and complete all the maintenance tasks that are needed for WSUS. I find having to run through these steps every month to be quite tedious requiring a lot of change control each month to get the maintenance work completed for WSUS.

    Everything described in this article should be automatically done by CM: https://blogs.technet.microsoft.com/configurationmgr/2016/01/26/the-complete-guide-to-microsoft-wsus-and-configuration-manager-sup-maintenance/

    615 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    23 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Preferred Software Update Points

    Now that we have the option to define both Distribution Points and Management Points as preferred, it'd be terrific if we could have the same option for Software Update Points. It would make a strong case when designing a flat hierarchy.

    604 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    27 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. Automatically Publish Full Content for Third Party Software Updates

    With the release of CB 1806 we are now able to publish third party updates using custom catalogs. Ideally, third party patches would function exactly like first party patches from an administration and automation perspective. Currently there's two main areas where this is not the case.

    Synchronization Schedule:
    I could be wrong on this but I believe that subscribed catalogs sync automatically every 24-hours. While that's nice, it would be great to simply integrate with the existing sync schedule. Sync the catalogs, publish relevant metadata to WSUS, then sync the SUP(s).

    Automatic Deployment Rules:
    Currently, only update metadata is publishedā€¦

    448 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    18 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →

    This can now work, in #configmgr 2002 production (available now); as long as the 3rd party catalogs are authored in V3 of the catalog schema, and the customer is setting ADR rules at the catagory level. At this time, both PatchMyPC and Dell are authoring and offering 3rd party catalogs. PatchMyPC has a great overview in how to configure this optimally.

  8. Software Update Patch Tuesday Scheduling

    It would be really great if when configuring an Automated Deployment Rule you could configure it to run based on the number of days / weeks since "patch Tuesday" (especially in countries other than the USA where "patch Tuesday" is actually a Wednesday and not necessarily the second Wednesday of each month). I currently get around this by having a script detect when patch Tuesday has passed and subsequently execute an ADR and create one or more deployments based on the number of weeks since that date. This works fine, but an in product solution would be better

    369 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    42 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Change the maximum run time of cumulative updates to 30 minutes

    With the new 'cumulative updates' model I think it would be a good idea to change the maximum run time of cumulative updates to 30 minutes (or whatever is best suited). I have noticed more timeout issues with patching in the last couple of months due to the default 10 minutes not being enough time to install 'X' patches as a single CU. This would be preferred to manually overriding them every month.

    298 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    35 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. ADR New Search Criteria, Deployed = yes/no

    I propose a new search criteria for ADR, to avoid multiple deployments for a single update. This is a pain to clean up afterwards.

    222 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    13 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Show Machines within Console that Require Updates

    You know that "x" number of machines require this update. Would you please list the machines names below. Screenshot for what I would like.

    191 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    8 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. Configure multiple deployments in an Automatic Deployment Rule

    When creating Automatic Deployment rules, it would be useful to be able to configure multiple deployments.

    You may for example want test, pilot and live deployments to different collections and possibly with different settings. It doesn't make sense to have to create different rules with the same updates criteria just for additional deployments.

    The CM administrator may choose to have the additional deployments disabled to allow for testing, but enabling a deployment leaves less room for error, and is less administrative overhead than creating these additional deployments manually each time for pilot/live.

    It would also be useful to have theā€¦

    181 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Wants to get display notifcation message in clients to close any opened Office 365 apps while updates installation started

    In SCCM 1610 users are not displaying notification message in clients to close any Office 365 opened apps before Office updates installation started in "Software Center" and even we set forceappshutdown=False switch in Configuration.xml file for Office 365

    161 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    15 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. Office 365 Required Updates in 1706 Should Not Force Applications to Close

    We can not have production applications close automatically.

    Revert back to having required Office 365 updates install at reboot by default and make the force closing of applications with optional display/postpone options a separate configurable option which can be selected per deployment (not client policy).

    137 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    23 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Add 80072ee2 as a default code to the WSUS Scan Retry Error Codes

    If a SUP/WSUS server is offline or in a disaster situation, clients should be allowed to failover to another SUP.

    Currently if a SUP goes offline, clients simply will never scan again, and this is not an ideal situation.

    103 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. When Expiring Updates based on Supersedence Rules also Decline them in WSUS

    When SCCM expires updates based on the configured Supersedence Rules it only does so in SCCM, not WSUS. Additionally, SCCM does not approve updates in WSUS.
    Because of these two facts the WSUS Cleanup Wizard will never decline superseded updates. They are neither expired (as they are in SCCM) nor are their superseding updates approved (a requirement for the WSUS Cleanup Wizard). This causes a bloated Update Catalog that can cause very real client issues. There are scripts available to handle this situation but this is the last mile issue in regards to WSUS maintenance. If the product declined theā€¦

    95 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    6 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Allow software update installation at shutdown

    Everyone who knows WSUS misses the feature in ConfigMgr to allow the installation of software updates when the machine is shut down. This is being requested for a very long time now. For most businesses it's not the best approach to install updates only when a user is logged on. Of course the scenario changes with Windows 8 and 10, but it's still a valuable addition to the option a ConfigMgr admin should have.

    90 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Add Option to Bypass Proxy for Local Address for ADR Content Downloads

    It would be extremely helpful to have an option in the software update point site system to bypass a proxy for a local address. The only options today are (see Current-SUP-Proxy-Options.png):


    • Use a proxy server when synchronizing

    • Use a proxy server when downloading content by ADRs

    The issue is when an ADR tries to download a third-party software update, it will attempt to use a proxy server and often fail because the proxy doesn't route correctly to the internal WSUS server. For example in patchdownloader.log, you will see something like <Download-Error-PatchDownloader.png>.

    There needs to be an option to not useā€¦

    72 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    7 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Office 365 required updates in 1710 Should Not Force Applications to Close

    Please do not force applications closed when applying office 365 updates. We have had to suspend the deployment of office 365 updates due to user impact until we can work this out. This same topic was marked as complete in the feedback section but it is still happening with SCCM 1710 and KBKB4057517 Installed.
    reference:
    https://configurationmanager.uservoice.com/forums/300492-ideas/suggestions/32048548-office-365-required-updates-in-1706-should-not-for

    Also I have not seen any user presented countdowns when the deadline approaches. Thanks.

    63 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    completed  ·  7 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Rework express updates for faster client installation

    Per: https://docs.microsoft.com/en-us/sccm/sum/deploy-use/manage-express-installation-files-for-windows-10-updates

    "Using express installation files provides for smaller downloads and faster installation times on clients."

    Through a case I opened with Microsoft, it was communicated to me that the current express update design is solely meant to reduce network bandwidth. There is no promise of expedited installation time. This is misleading and limits the purpose of express updates for remote office scenarios.

    Additionally the express update deltas have to be decompressed and recombined in order to complete the installation which requires significant CPU usage.

    The combination of these issues causes express updates to provide little benefit to customers inā€¦

    58 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Software Updates  ·  Flag idea as inappropriateā€¦  ·  Admin →
← Previous 1
  • Don't see your idea?

Feedback and Knowledge Base