Ideas
What features would you like to see?
All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building System Center Configuration Manager, though we canāt promise to reply to all posts.
Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the š button in the top right corner and choose “Send a Frown”. For more details, seeĀ https://docs.microsoft.com/en-us/sccm/core/understand/find-help.
If you require assisted support, please see https://aka.ms/cmcbsupport for more details.
Standard Disclaimer ā our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the System Center Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Microsoft Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.
-
Would like to replace the Windows defender icon with the SCEP icon when managed by Endpoint Protection
In windows 10 when managed by SCCM+Endpoint Protection, we get Windows Defender as the Endpoint Protection client, which is fine as they use the same engine.
However the icon is for Windows Defender which doesn't make sense.
Can we change it to the SCEP icon instead which would make more sense and go along with the installed software SCEP in control panel which does have the correct icon (in Programs and Features).
Having the SCEP icon would be a nice visual clue (aside from looking at applied policies) that SCEP was managing Antivirus rather than Windows itself
173 votes -
Fix the Update button in SCEP
Currently, the Update button in SCEP does not perform any function when you want to use the SUP as a definition source. Per: https://support.microsoft.com/en-us/kb/2831244 - When you click Update in the SCEP UI, the client looks for a FallbackOrder registry key in HKLM\Software\Policies\Microsoft\Microsoft Antimalware\Signature Updates. The client will check each update source in the FallbackOrder registry key in the order that they are listed until it locates a source that has available definitions. If it goes through all sources without detecting available definitions, it returns an error and the update attempt is unsuccessful. Configuration Manager is never listed in theā¦
62 votes -
SCEP Malware Alerts - Customized
SCEP Malware Alerts - Customized
The ability to customize the text and have the ability to select which fields you wish to include within the Malware email alert.60 votes -
blocking usb
Add the option to allow/block USB devices on the endpoint protection.
53 votes -
SCEP Antimalware detection history view does not show accurate remediation detail
The v_AM_NormalizedDetectionHistory view in the SCCM database does not accurately reflect the RemediationType for detected threats. It almost always shows NoAction, even though the threat was quarantined or removed.
We are using this view to report status to our SIEM system, and our security team would prefer that it actually show how the threat was remediated.
48 votes -
Windows Firewall With and Advance Security integration
So this portion is currently listed under EP in the SCCM console so im posting here. i would like to see an enterprise solution to deploying the windows firewall similar to the way DCM relationships are. Not the existing feature in SCCM where you can simply enable or disable the firewall policy. i would like to see Individual Firewall rules are created as Configuration items and then grouped into Baselines to be applied at a granular level to computers. that way we can remove the GPO dependency on where a computer is placed or at which level its place. SCCMā¦
35 votes -
Maintenance Window for EP Definition Updates/Security Updates
Please add the possibility in a MW to "apply this schedule to"
- EP Defintion Updates (you may want to allow daily defintion updates, but you don't want to install anything else at that time)
- Security Updates (not all Software Updates, as it is now, but only Security Updates)In this case make it multiselect too.
35 votes -
Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.
Right Click on a Computer no matter where I am looking at in SCCM and do a Virus Scan.
34 votes -
Improved alerting for SCEP
Configuration Manager allows the creation of subscriptions to alerts for the following Endpoint Protection events:
* Malware outbreak - the same malware detected on multiple computers
* Multiple malware detected on one computer
* Same malware repeatedly detected on one computerThe ability to subscribe to alerts for these events is useful, but this feature could be improved.
For example, I don't need to be alerted when malicious JavaScript on a website is repeatedly detected and blocked on a user's computer, but there is no way to filter notifications for a specific class of threats. On the other hand, Iā¦
32 votesCan you give more examples? Definitely want to innovate in these areas.
-
Policy resultant for SCEP Policy like Clients Settings Resultant
A overview about the SCEP Policy as we have in Client Settings Resultant Box on every Client, that would be nice to show which Policy is finally running on a client. if you have more than 1 Policy you get the really end result of excludes or settings...
31 votes -
SCEP integration with SCSM
SCEP integration to SCSM, so that alerts would create an incidents. It should be possible to configure, so that SCSM wouldn't be flooded with the same alert over and over again for a particular computer, or if there is a major outbreak.
31 votes -
Make the same report functions available in EP Mac client as on Windows
Make the EP for Mac enterprise friendly
29 votes -
Option to disable EP icon activity when scanning
It would be great if there was an option to disable the icon showing there is an active scan in progress in taskbar on client computers. The icon should remain, but it should remain static, not to show when the scan is on progress. We have many users, complaining their computer is considerebly slower when EP is scanning, which is ofcourse not true, because the EP is set to only use 10-20% of cpu. Many of those complaint would be non existent, if the the icon would not show when EP is doing a scan :)
28 votes -
Include always latest SCEP client in the SCCM client directory/package
Please include always latest SCEP client in the SCCM client directory/package.
e.g. in SCCM1610 still the SCEP client 4.7.214.0 is included.
Current version is 4.10.209.0.So additional effort can be reduced as the SCEP client will be updated with SCCM client auto-upgrade function.
27 votes -
Endpoint Protection client for Mac - 64-bit app
See Apple's support article HT208436 "32-bit app compatibility with macOS 10.13.4 High Sierra" at https://support.apple.com/en-us/HT208436.
SCEP version 4.5.32.0 runs as a 32-bit app, so it warns users about compatibility, displaying error "SCEP is not optimized for your Mac. This app needs to be updated by its developer to improve compatibility."
This error does not instill our supported users with much confidence about their security.
25 votes -
SCEP can configure scan history retention period (ScanPurgeItemsAfterDelay)
Antimalware policy cannot configure ScanPurgeItemsAfterDelay in it.
It would help all admins if we can set the value in the policy.
QuarantinePurgeItemsAfterDelay can be set in the policy. So let's have ScanPurgeItemsAfterDelay configurable in order to achieve full control on antimalware history management.25 votes -
SCEP: Option to randomize scheduled scan over a sliding time period, seperate from the random update start time control
I would like to change the randomization for scheduled scans more than SCEP seems to allow. There seems to be an option in the Advanced 'tab' that is a simple yes/no setting to change enable 30 minute randomization of scans and update start times.
for one I feel this is to short of a randomization time, and would like it to be configurable.
secondly I think these two events should not be governed by the same control.
On a Server farm for example using shared storage I would want my Servers running their scheduled scan across a longer time period,ā¦
18 votes -
Streamline Defender/Endpoint Protection settings
Minor thing, but in Defender under Win10, excluded Files and Folders are separate, and Items in Antimalware policies, regardless weather File or Folder are shown in Defender/Win10 settings under Excluded Files. (the exclusion however still works so that is why it's a minor thing)
15 votes -
Endpoint- Add ability to submit false positive or new virus submission from console
We have encountered quite a few false positives since converting to Endpoint via SCCM. So far the biggest problem has been submitting a false positive report to MS (one that will actually get listened to at least). We should have the ability from within the console to submit a file or report detailing a false positive and receive data on whether or not that file is rated as a threat with current virus definitions. If the Endpoint team is going to speak proudly of its low false positive rate, they should make it much easier for an Enterprise client toā¦
15 votes -
Allow for editing of client and scep policy priority
The change priority option of policies is a very slow process when there a many policies in place or even when adding a new policy to get it to priority 1. It would be ideal if the editing of the policy order was allowed or a drag and drop approach to ordering the policies
14 votes
- Don't see your idea?