Microsoft

Microsoft Endpoint Configuration Manager Feedback

Suggestion box powered by UserVoice - Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more

Ideas

What features would you like to see?

All of the feedback that you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Microsoft Endpoint Configuration Manager, though we can’t promise to reply to all posts.

Please do not use UserVoice to report product bugs or for assisted support.
If you believe you have found a product bug, please send us a bug report through the Configuration Manager Console (1806 and newer). To do this, press the 🙂 button in the top right corner and choose “Send a Frown”. For more details, see https://docs.microsoft.com/en-us/sccm/core/understand/find-help.

If you require assisted support, please see https://aka.ms/cmcbsupport for more details.

Standard Disclaimer – our lawyers made us put this here ;-)
We have partnered with UserVoice, a third-party service, so you can give us feedback. Please note that the Microsoft Endpoint Configuration Manager feedback site is moderated and is a voluntary participation-based project. Please send only feature suggestions and ideas to improve Configuration Manager. Do not send any novel or patentable ideas, copyrighted materials, samples or demos. Your use of the portal and your submission is subject to the UserVoice Terms of Service & Privacy Policy, including the license terms.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Explanation of the future of MDM support in SCCM

    Hybrid MDM support is deprecated in SCCM. Details of this deprication is here:
    https://docs.microsoft.com/en-us/sccm/mdm/understand/hybrid-mobile-device-management
    If you are a Hybrid customer, Microsoft is very happy to work with you to make your migration to Intune seamless/painless. Please reach out to Microsoft support.

    While Hybrid support for MDM is going away, SCCM will innovate together with Intune, and will continue to grow closer together. More capabilities and better together scenarios will be coming soon.

    291 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  25 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  2. Conditional Access for SCCM managed devices

    We want to use Conditional Access to Exchange on-premises for Intune managed devices and SCCM managed devices as well. Conditional Access with Intune managed devices works. But for a SCCM managed devices ActiveSync registrations are blocked when users want to use the Mail app on Windows 8.1 managed devices. We are looking for a solution that Conditional Access does not block ActiveSync registrations from SCCM managed devices as well. In our opinion Conditional Access should only block unmanaged devices and allow SCCM and Intune managed devices.

    139 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  3. Remote-wipe feature for Windows 10 desktop managed by SCCM agent (SCCM agent / Intune MDM dual management)

    Currently, it is not supported to remote-wipe Windows 10 desktop managed by SCCM agent.
    Intune MDM have ability to remote-wipe Windows 10 desktop, but Intune MDM and SCCM agent dual management is not supported.
    We really need supported option to remote-wipe Windows 10 managed by SCCM agent like Intune MDM and SCCM agent dual management option.

    133 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  4. SCCM On Premise MDM Should Support Windows 10 Devices

    It would be great if SCCM On Premise MDM would support Windows 10 Devices for scenarios such as settings, required application deployment, wipe and retire.

    64 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  3 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  5. Unable to import state message from 'co-management' enabled client

    nable to import status message when following condition.
     ・Clients with co-management enabled
     ・If the state message(.SMX) contains Japanese

    ◆Error Log
    [statesys.log]
    SQL MESSAGE: spProcessStateReport - Error: Message processing encountered a SQL error 241 at record 53 for TopicType 810:
    " Conversion failed when converting date and/or time from character string.", Line 0 in procedure ""

    ◆state message(.SMX)
    -<StateMessage SerialNumber="593" MessageTime="20180427063011.557000+000">
    <Topic UserSID="" User="" IDType="0" Type="810" ID="CoManagementState"/>
    <State ID="105" Criticality="0"/>
    -<StateDetails Type="1">
    -<![CDATA[<ClientCoManagementMessage><MDMEnrollment><Enrolled Value="0" /><ServiceUri Value="" /><RegistrationKind Value="0" />
    <ScheduledEnrollTime Value="04/27/2018 06:30:11 午前" /><ErrorCode Value="2147549183" />
    <ErrorDetail Value="MDM enrollment hasn't been configured yet on AAD, or the enrollment url isn't expected."…

    58 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  6. Integrate Android for Work in SCCM/Intune Hybrid

    Android for Work has been actively integrated in to the web Intune Portal, I have not heard when this would make its way to the Hybrid SCCM instance so wanted to push this to uservoice since this will be very helpful in all with hybrid deployments. We are primarily iOS but having this functionality could allow companies to standardize on iOS or android devices with OS 6.0 or higher to support the work profile. Utilizing Intune with SCCM allows infinite customizability and the use of dynamically changing queries, along with multiple domains in my environment is critical in order for…

    33 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  7. Enable co-management using multiple ConfigMgr hierarchies to one Intune tenant

    Some customers has multiple SCCM environments (Test and Production), and want to enable co-management from multiple (two) ConfigMgr hierarchies.
    They need to test and verify that nothing is broken before moving into production.

    29 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add all iOS compliace Policies to SCCM

    Please add more, or ALL iOS compliance policies to the SCCM console.  It seems that users running in Hybrid can only deploy a fraction of the iOS restrictions/compliance options.

    For example, I am unable to find any of the "Supervised Mode" compliance policies like "Allow Account Modification" in the SCCM console.

    Thanks

    Rosy_55

    16 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  9. Predeclared Devices needs to be administered by ConfigMgr users who are not full site admins

    Within ConfigMgr 1606 the ability to predeclare devices was added, allowing you to import single or multiple 'company' mobile assets. Only full site admins can perform this action, this needs to be enabled as a security role or permission allowing non full site admins to complete the task.

    15 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
    completed  ·  Tyler Castaldo responded

    We added permissions for the entire Corporate-owned Devices node — including Predeclared Devices — for the Asset Manager and Company Resource Access Manager roles back in the Configuration Manager 1610 Technical Preview as described here: https://docs.microsoft.com/en-us/sccm/core/get-started/capabilities-in-technical-preview-1610#additional-security-role-support

    We did roll this change into the Configuration Manager 1610 current branch release as well.

    Does this meet your needs?

  10. Windows 10 Desktop Full Wipe in Intune Hybrid Implementation

    Currently, only retirement/partial wipe is supported for an Intune enrolled Windows 10 Desktop device when Intune is in a hybrid implementation with Config Manager ('Current Branch' 1602 in my testing).

    In Intune standalone, full wipe is supported on Windows 10 Desktop. I'd like to request this feature makes its way to Intune Hybrid.

    15 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  11. API for Microsoft Intune ?

    To leverage stand alone intune in custom application , it would be nice to have REST API available for Intune

    14 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  12. My ADR rules for syncing from windows update broke last week

    Sometime last week - my ADR rules can no longer sync. I'm getting an error trying to sync new updates. Infact, it doesn't even work when I don't use ADR, and just do a manual sync. ????

    7 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  2 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  13. Switch the MDM authority from Configuration Manager to Intune

    Migration path to change authority from CM to Intune without user interruption. This is documented as a feature to be released in 1610, but has not been released.

    https://docs.microsoft.com/en-us/sccm/mdm/deploy-use/manage-intune-subscriptions

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  14. Enable Azure Resource Management for Cloud DPs

    It would be great if you had the same ability to create a cloud DP like you can with the cloud gateway. Utilizing the classic installation type of using a certificate to create the cloud DP is cumbersome and prone to simple errors.

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  15. 3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  16. Console Client policy update for mobile devices

    In the console you can currently force a policy update for a Windows computer. I would like this option to be available for mobile devices.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  17. Push Email profiles to andriod andsets from hybrid Intune managed devices.

    Currently you can only push email profiles to andriod handsets that are knox 4.0 + capable, when in a hybrid SCCM/InTune. Having the ability to push email profiles to other andriod handsets like the new "Andriod for Work" would be great.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
    completed  ·  Tyler Castaldo responded

    We added Android for Work support in Configuration Manager 1702 current branch, so you should be able to do this for Android devices that support work profiles. However, you will need to re-enroll your Android devices as Android for Work if you choose to do this.

  18. Force Web Apps to open in the Managed Browser with hybrid SCCM/Intune

    Currently in Intune Standalone it is possible to create an external link and enable the option "Require a managed browser to open this link (Android and iOS only)". For the hybrid SCCM/Intune it is not possible yet. This feature would be nice to add to hybrid SCCM/Intune

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
    completed  ·  Tyler Castaldo responded

    Hi, Frans.

    You actually can force web apps to open in the Intune Managed Browser. There’s no checkbox in the SCCM console, but changing the protocol of the web app’s URL from “http” to “http-intunemam” or from “https” to “https-intunemam” prevents it from being opened in a non-managed browser.

    This has been documented here, right near the bottom: https://technet.microsoft.com/en-us/library/mt629356.aspx

  19. 1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
  20. android (disable webbrowser)

    disable the web browser is possible in intune stand alone but it is not supported in hybrid. it should be supported. the gap between intune stand alone and hybrid for android management is too wide and should be closed

    0 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Cloud services  ·  Flag idea as inappropriate…  ·  Admin →
    completed  ·  Tyler Castaldo responded

    This setting was added in Configuration Manager current branch 1610, along with about 20 other Android settings we added in order to close the gap (or at least get really close).

  • Don't see your idea?

Feedback and Knowledge Base