General Feedback

Do you have an idea or suggestion based on your experience with Windows Server? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Windows Server customer. All of the feedback you share in these forums is monitored and reviewed by the Microsoft engineering teams responsible for building Windows Server. Suggestions can apply to both released and Technical Preview versions of Windows Server.

Important:

1. Remote Desktop Services (RDS)-related feedback must be provided in their UV site: https://remotedesktop.uservoice.com/forums/266795-remote-desktop-services-for-enterprises

2. Requests for feature changes around the end-user experience, such as desktop shell, start menu, individual consumer apps, etc. must be provided through the Windows 10 Feedback Hub tool. We have no ownership of these types of non-Windows Server components.

3. This forum (General Feedback) is used for any broad feedback related to Windows Server. Feedback for specific areas like Storage, Networking, Virtualization, Nano Server, etc., should be provided in one of the forums available on the right. It is not for bug filings. If you find a bug with Windows Server please open a support case at https://support.microsoft.com and report it – these cases are free.

If you have technical questions or need help with Windows Server, please visit our “TechNet Forums” https://social.technet.microsoft.com/Forums/windowsserver/en-US/home?category=windowsserver

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow us to hard set network location profile

    Network Location Awareness is very useful feature on desktops. Particularly in the current climate of people taking machines home, having them detect "Public" networks is useful.

    However, it is nearly unheard of for a Windows Server to be picked up and taken to an untrusted network. Instead of the benefits of this feature, there are many reasons wherein a server may decide it's in a public network and firewall itself from access. This will, for example, prevent a file server sharing files, or an Exchange server accepting email. If this occurs to Domain Controllers, it will trigger all other servers…

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  2. RDP for Windows Desktop

    A box beside the default / current listening port (3389) to change the port number on Windows computers instead of modifying the registry manually.

    Thank you.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  3. Kerberos using AES still not working where it should

    Establish a two-way forest trust.

    Try to establish Remote Desktop Connection from a computer in one forest to a computer in another forest, with an account that is a member of “Protected Users” security group. The connection will fail if the computer (from where you’re trying to establish RDP connection) does not have “RC4HMACMD5” kerberos encryption type enabled (i.e. it only has “AES256HMACSHA1” enabled).

    On the other hand, if the user that is trying to establish Remote Desktop Connection is using an account that is NOT a member of “Protected Users” security group, and only AES…

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  4. "add forest" in group policy management does not work unless RC4 is enabled

    We have two-way forest trust established and would like to manage group policy for both forests from one server.

    On a member server where Group Policy Management console is installed, these encryption types are enabled in “Network security: Configure encryption types allowed for Kerberos“:
    AES256HMACSHA1
    Future encryption types

    When I try to add another forest to Group Policy Management console (open “Group Policy Management” console, right click on “Group Policy Management”, click on “Add forest…”, enter domain name and then click “OK”), a message “Access is denied.” pops up.

    If I enable “RC4HMACMD5” on the server…

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  5. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  6. GPO to schedule KrbTgt (Golden Ticket) password reset

    We need a fully automated way to reset the KrbTgt (Golden Ticket) password. This is not a manually created or managed account thus the system should manage it's password. Currently, by default, the password would never change. If you want to change the password it is not as simple as a normal password change event.

    I want a GPO that controls the schedule of KrbTgt (Golden Ticket) password reset. It should default to every 6 months. This would make the default configuration of domain controllers much more secure.

    This would be in line with the guidance found in the following…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  7. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  8. Enable file indexing / Windows Search service feature for server core installations

    We would love to see file indexing / Windows Search service feature enabled for server core installations.

    Especially for lean and dumb fileservers in a network there's no need for a UI server. But without UI there's no Windows Search. Without Windows search, there's no fast client initiated search.

    That's a mess.

    AND: When there's no fast searching available anyway, why spending money for Windows server core licenses instead of using linux samba fileservers for free?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  9. no da solucion esto

    Microsoft Windows [Versión 10.0.17763.1098]
    (c) 2018 Microsoft Corporation. Todos los derechos reservados.

    C:\WINDOWS\system32>partdisk
    "partdisk" no se reconoce como un comando interno o externo,
    programa o archivo por lotes ejecutable.

    C:\WINDOWS\system32> diskpart

    Microsoft DiskPart versión 10.0.17763.1

    Copyright (C) Microsoft Corporation.
    En el equipo: DESKTOP-BMHEU7M

    DISKPART> list disk

    Núm Disco Estado Tamaño Disp Din Gpt


    Disco 0 En línea 119 GB 1024 KB *
    Disco 1 En línea 931 GB 0 B *
    Disco 2 En línea 3726 GB 3726 GB

    DISKPART> select disk 2

    El disco 2 es ahora el disco seleccionado.

    DISKPART> clean

    DiskPart ha limpiado el disco satisfactoriamente.

    DISKPART>…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  10. Hostable Core is useless

    Work Folders feature is completly useless as it is running use IIS Core, and it cannot be managed using normal IIS tools and it is incompatible with any other web software on the server.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  11. Windows Updates shouldn't fail constantly or take hours to complete

    I have a number of 2016 servers. It seems like 99% of them fail when doing automatic updates. I am able to install them manually by going through sconfig and selecting option 6 but it takes FOREVER. During installation, the CPU or Memory isn't maxed out at 100% so I have no idea what is causing it to take forever. All other previous versions of Windows run and install updates just fine in the same VMware environment.

    343 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    53 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  12. AOVPN

    Hi Team,

    AOVPN documentation is not clear and leaves lot of open questions.


    1. Documentation doesn't clearly call out the Infra requirement for Device Tunnel...do we need NPS Server in device tunnel or not? What is the authentication flow?
      2.Where does the logs stored in RRAS Server and how to redirect to SQL for repository? etc

    2. Is it possible to configure device tunnel and user tunnel using same RRAS/VPN Server?

    4.In below document, looks like information regarding device tunnel is incorrect and its contradicting

    https://docs.microsoft.com/en-us/windows-server/remote/remote-access/vpn/vpn-map-da
    Functional Area:
    Use of a dedicated Infrastructure Tunnel to provide connectivity for users not signed into…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  13. ADFS 2019 DirectoryProperties disable autodiscover

    Hello,
    for ADFS 2019, there is a new cmdlet added, that autodiscovers the UPN's in the domain. This also discovers domains to which it doesn't have permission and thus gives errors in the eventlog.

    An option should exist to disable autodiscovery and only configure UPN's manually.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  14. Make this more known and easier to locate on ALL VPN configuration pages. "Device tunnel can only be configured on domain-joined devices run

    Device tunnel can only be configured on domain-joined devices running Windows 10 Enterprise or Education version 1709 or later.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add ability to use different account for gateway server than remote desktop

    My organization uses admin accounts for logging into servers, and normal accounts for logging into Remote Gateways. It seems this app does not support using different accounts for a connection that needs to connect via a gateway. This prevents my organization from using this app, as the Win32 version built-in to Windows allows for this.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  16. Cuando se usa un teclado físico, tanto bluetooth como por cable, los acentos no se colocan sobre las vocales sino que tienen es formato: 'a

    RDP en Android.
    Los acentos se colocan mal cuando se usa teclado físico. No parece problema de layout ya que las teclas coinciden con lo que se escribe.
    Además, la tecla de mayúsculas derecha, si se suelta antes de la letra, activa el caps look y sólo se desbloquea después de apretar caps look tres veces.
    Debe buscarse una solución rápida porque dificulta mucho el trabajo.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  17. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  18. Suggestion: Improve Windows Server update process and reduce down times

    Make Windows Server to be able to check, download, install updates while the server is running.

    like Android project Mainline.

    so at first there will be 2 OS drives instead of 1, they'll be clones of each other. when an updates pops up, the OS will download and install it on the other drive that is not used to run the OS. the updates can be installed and completely finished on that drive. the next time a system admin restarts the server, OS will boot up from the other updated drive without ANY downtime for installing or finishing updates. once…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  19. DNS policies for reverse-lookup zones

    Please implement support to configure DNS policies for reverse-lookup zones.
    We need a way to prevent sensitive private PTR records from being accessible on the internet in Split-Brain DNS configurations.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  20. VPN Always On LockDown

    Hello,

    We would like to use LockDown mode on our VPN Always On Device tunnel clients in order to restrict all flows only in the VPN tunnel (not local traffic). Can you tell me if this "Lockdown" feature is supported in a high security context?
    Currently, only LockDown mode limits all flows in the VPN tunnel and perfectly meets our needs. In Forcetunnel mode, local traffic is allowed. Of course we don't just want to allow local traffic.
    For information, Always On Device tunnel is installed on all of our Windows 10 Enterprise 1909 workstations.
    Thank you in advance for…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6 7
  • Don't see your idea?

Feedback and Knowledge Base