Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we canā€™t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the šŸ™‚ button in the top right corner and choose ā€œSend a Frownā€. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer ā€“ our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Have ccmeval fix a corrupt GPO cache file

    With 8000+ workstations we regularly see a corrupt GPO cache file. This breaks the policy updates, including policies for SCCM (security) updates.
    Detection:
    - Event log
    - gpudate command fails with error
    Remediation:
    - Delete file c:\windows\system32\grouppolicy\machine\registry.pol
    - Run gpudate /force
    - Restart ccmexec service

    27 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  2. Allow maintenance windows to be targeted for ONLY client upgrades

    Allow maintenance windows to be targeted for ONLY client upgrades. In 1810, you can target a MW at all deployments, software updates or task sequences. It would be nice to have an option for client upgrades as well. That way you don't have to shuffle groups and software updates advertisements around when its time to upgrade.

    24 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  3. WMI Fix integrated with SCCM Console

    WMI Fix integrated with SCCM Console and improve client installation description error.

    23 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  4. Download content before starting required Task Sequence

    If the task sequence is deployed as "Available" it's possible to download the content before starting TS. But if I create a "required" deployment it's not possible to download the content before the user gets the pop up to start the task sequence.
    For the normal user is it not easy to find the TS in Software Center without any information. Because of this fact is it interesting to implement to pre-download function also to the "required" type.
    First of all, the content should be downloaded and afterwards the user should see the pop up to start the TS/Operating System.

    ā€¦

    23 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  5. Lock down of Good Client Health State for later restores

    Client health issues are one of main pain areas admins deals. Post client install, registration, policy download succeeds, client should create a golden state of its own on WKS and similarly one golden info of client at SCCM server level also in DB in separate table or so,... in case of client broken situation, using these two copies we can restore back. This way may prove much better than current situation where enormous amount of time, dealing different components with still no guarantee to fix it.

    19 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  6. Improve client auto upgrade options for servers

    Enhance site auto upgrade option for servers. Provide the ability to control the schedule for server operating system client upgrade using the auto upgrade feature. Server changes in production fall under change management control. It would be great to be able to specify when the upgrade will take place so that we can align to the change process. So include schedule option for servers and collection selection

    19 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    4 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  7. When configuring cache size via client settings - cache cannot be deleted

    When using the new option in 1606 branch for configuring client cache size - the options to delete cache from the client's size is grayed out.
    either it's by design or not - it blocks the reason to use this feature as deleting cache is one of the most basic troubleshooting tasks for deployments and it is not possible to be done unless deploying a custom script...

    18 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  8. FIX Bitlocker Recovery if, PXE boot is in the first place.

    The abortpxe.com is somehow "untrusted" by the Bitlocker boot process. If UEFI changes the boot order to PXE boot, Bitlocker Recovery comes along.
    https://techcommunity.microsoft.com/t5/System-Center-Configuration/Bitlocker-Recovery-with-PXE/m-p/224704

    18 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  9. Fix BUG SMS 429592 - Thin Client / embedded stuck in servicing mode.

    Thin clients get stuck at the "This computer is being serviced" screen when the managed write filter is off and a deployment becomes suspended because the client agent realizes it does not have enough time left in it's maintenance window, but the maintenance coordinator cannot seem to effectively communicate with the write filter to abort the execution of the program or task sequence and enable the write filter and boot out of servicing mode. The work-around for this is to have no maint window or an exceptionally large one.

    18 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  10. Full support for ECC Certificates

    Machines with an EEC client certificate can connect to the DP to download the content and install the agent but the client never registers with the site.

    once i suspected the ECC certs I was able to find thread on technet which confirms the same issue I was seeing
    https://social.technet.microsoft.com/Forums/en-US/cc9ec0ff-5998-4225-9ce1-2c7b5fe5677d/sccm-and-ecc-certificates-not-supported?forum=ConfigMgrDeployment

    17 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  11. Certificate selection tool

    I think a simple certificate selection tool for clients would be really handy. I am thinking in exactly the same way as momcertimport.exe in SCOM where you can run the exe either as GUI or cmd line and choose a specific certificate to use.
    As we know, current certificate selection is not fool proof and can be very tricky when multiple certificates are installed on one device. A simple certificate picker or override tool would assist massively when dealing with HTTPS environments, particularly in DMZs. Numbers are often much smaller and we are dealing with the final 5% which canā€¦

    13 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  12. ACP functionality with Automatic Client Upgrade

    ACP functionality with Automatic Client Upgrade - it would be nice if the automatic client upgrade would utilize the deployment methods available to alternate content providers to reduce WAN impact

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  13. Add option for client upgrades outside maintenance windows

    Mobile workstations may seldom be online during a maintenance window. We need a new option to allow for client upgrades outside of the maintenance window. Below is a suggested UI improvement to support such an option:

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  14. change automatic agent upgrade behaviour

    currently using the automatic client upgrade process on servers causes the SCOM agent to be stopped ahead of the upgrade causing hundreds of SCOM alerts that then need closing or investigating. The option of "don't upgrade servers" still causes the SCOM agent to be stopped.

    Either provide the option not to stop the SCOM agent during client upgrade or honour the "don't upgrade servers" check before you stop the SCOM agent.

    12 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    3 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  15. Client Push installation status in ConfigMgr console

    It would nice to have a client push installation status in the console. We already have client installation status messages (FSP), so why not display them in the console? As a consultant I always see a disappointment in the admins faces when I try to explain that they have to wait for the client flag, search client logs or use reporting for client installation status.

    11 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    2 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  16. Fix this problem Software Center not working after SCCM Client update from 5.00.8540.1007 to 5.00.8540.1611

    Fix this problem Software Center not working after SCCM Client update from 5.00.8540.1007 to 5.00.8540.1611 also the clients are not upgrading properly. You have to run a repair to get the ner client to finish installing.

    https://social.technet.microsoft.com/Forums/en-US/98f762ac-6367-4705-a2b4-b6af2ee844a7/software-center-not-working-after-sccm-client-update-from-50085401007-to-50085401611?forum=ConfigMgrAppManagement

    10 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  17. Do not enforce software apps or packages at shutdown

    Client should not enforce any application or package when shutdown is initiated. It can cause delayed shutdown on few occasions which is not suitable.
    Client agent should be able to differentiate a user logoff and a logoff caused by shutdown.

    10 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  18. Azure Automation runbooks during task sequence

    Implement a similar MDT integrated feature as executing Orchestrator runbooks but for Azure Automation runbooks during task sequence.

    10 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  19. Client does a full uninstall and forces deletion of CCM,CCMSetup and CCMCache directories

    On SCCM CB 1702
    Currently when you do:
    A client push from the Console and select ā€œUninstall firstā€
    A manual CMSetup /uninstall
    Neither will fully delete all 3 directories, leaving corrupted SQLCE/SDF files ( there may be others , but you get the idea)
    I have had to resort to a rough script to meet my goals
    http://britv8.com/powershell-sccm-client-sledgehammer-aka-reset-cmclient/
    A switch to nuke from orbit would be very useful in GUI and for CCMSetup

    10 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    0 comments  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  20. Improve logging and control of automatic client upgrades

    Automatic client upgrade feature works but is painfully slow (on a 10,000 client site it's taken 3 weeks to get to 88% upgraded) and contains no consolidated logging on the server side, so progress is hard to track. It would be great if this process could address pre-req issues more easily (i.e. .Net requirement), although that's likely a ccmsetup.exe issue.

    7 votes
    Vote
    Sign in
    (thinkingā€¦)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinkingā€¦)
    1 comment  ·  Client Deployment  ·  Flag idea as inappropriateā€¦  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base