General Feedback

Do you have an idea or suggestion based on your experience with Windows Server? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Windows Server customer. All of the feedback you share in these forums is monitored and reviewed by the Microsoft engineering teams responsible for building Windows Server. Suggestions can apply to both released and Technical Preview versions of Windows Server.

Important:

1. Remote Desktop Services (RDS)-related feedback must be provided in their UV site: https://remotedesktop.uservoice.com/forums/266795-remote-desktop-services-for-enterprises

2. Requests for feature changes around the end-user experience, such as desktop shell, start menu, individual consumer apps, etc. must be provided through the Windows 10 Feedback Hub tool. We have no ownership of these types of non-Windows Server components.

3. This forum (General Feedback) is used for any broad feedback related to Windows Server. Feedback for specific areas like Storage, Networking, Virtualization, Nano Server, etc., should be provided in one of the forums available on the right. It is not for bug filings. If you find a bug with Windows Server please open a support case at https://support.microsoft.com and report it – these cases are free.

If you have technical questions or need help with Windows Server, please visit our “TechNet Forums” https://social.technet.microsoft.com/Forums/windowsserver/en-US/home?category=windowsserver

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow us to hard set network location profile

    Network Location Awareness is very useful feature on desktops. Particularly in the current climate of people taking machines home, having them detect "Public" networks is useful.

    However, it is nearly unheard of for a Windows Server to be picked up and taken to an untrusted network. Instead of the benefits of this feature, there are many reasons wherein a server may decide it's in a public network and firewall itself from access. This will, for example, prevent a file server sharing files, or an Exchange server accepting email. If this occurs to Domain Controllers, it will trigger all other servers…

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  2. Kerberos using AES still not working where it should

    Establish a two-way forest trust.

    Try to establish Remote Desktop Connection from a computer in one forest to a computer in another forest, with an account that is a member of “Protected Users” security group. The connection will fail if the computer (from where you’re trying to establish RDP connection) does not have “RC4HMACMD5” kerberos encryption type enabled (i.e. it only has “AES256HMACSHA1” enabled).

    On the other hand, if the user that is trying to establish Remote Desktop Connection is using an account that is NOT a member of “Protected Users” security group, and only AES…

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  3. "add forest" in group policy management does not work unless RC4 is enabled

    We have two-way forest trust established and would like to manage group policy for both forests from one server.

    On a member server where Group Policy Management console is installed, these encryption types are enabled in “Network security: Configure encryption types allowed for Kerberos“:
    AES256HMACSHA1
    Future encryption types

    When I try to add another forest to Group Policy Management console (open “Group Policy Management” console, right click on “Group Policy Management”, click on “Add forest…”, enter domain name and then click “OK”), a message “Access is denied.” pops up.

    If I enable “RC4HMACMD5” on the server…

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  4. RDP for Windows Desktop

    A box beside the default / current listening port (3389) to change the port number on Windows computers instead of modifying the registry manually.

    Thank you.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  5. Windows Updates shouldn't fail constantly or take hours to complete

    I have a number of 2016 servers. It seems like 99% of them fail when doing automatic updates. I am able to install them manually by going through sconfig and selecting option 6 but it takes FOREVER. During installation, the CPU or Memory isn't maxed out at 100% so I have no idea what is causing it to take forever. All other previous versions of Windows run and install updates just fine in the same VMware environment.

    341 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    53 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  6. AOVPN

    Hi Team,

    AOVPN documentation is not clear and leaves lot of open questions.


    1. Documentation doesn't clearly call out the Infra requirement for Device Tunnel...do we need NPS Server in device tunnel or not? What is the authentication flow?
      2.Where does the logs stored in RRAS Server and how to redirect to SQL for repository? etc

    2. Is it possible to configure device tunnel and user tunnel using same RRAS/VPN Server?

    4.In below document, looks like information regarding device tunnel is incorrect and its contradicting

    https://docs.microsoft.com/en-us/windows-server/remote/remote-access/vpn/vpn-map-da
    Functional Area:
    Use of a dedicated Infrastructure Tunnel to provide connectivity for users not signed into…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  7. ADFS 2019 DirectoryProperties disable autodiscover

    Hello,
    for ADFS 2019, there is a new cmdlet added, that autodiscovers the UPN's in the domain. This also discovers domains to which it doesn't have permission and thus gives errors in the eventlog.

    An option should exist to disable autodiscovery and only configure UPN's manually.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  8. Make this more known and easier to locate on ALL VPN configuration pages. "Device tunnel can only be configured on domain-joined devices run

    Device tunnel can only be configured on domain-joined devices running Windows 10 Enterprise or Education version 1709 or later.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add ability to use different account for gateway server than remote desktop

    My organization uses admin accounts for logging into servers, and normal accounts for logging into Remote Gateways. It seems this app does not support using different accounts for a connection that needs to connect via a gateway. This prevents my organization from using this app, as the Win32 version built-in to Windows allows for this.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  10. Cuando se usa un teclado físico, tanto bluetooth como por cable, los acentos no se colocan sobre las vocales sino que tienen es formato: 'a

    RDP en Android.
    Los acentos se colocan mal cuando se usa teclado físico. No parece problema de layout ya que las teclas coinciden con lo que se escribe.
    Además, la tecla de mayúsculas derecha, si se suelta antes de la letra, activa el caps look y sólo se desbloquea después de apretar caps look tres veces.
    Debe buscarse una solución rápida porque dificulta mucho el trabajo.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  11. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  12. Suggestion: Improve Windows Server update process and reduce down times

    Make Windows Server to be able to check, download, install updates while the server is running.

    like Android project Mainline.

    so at first there will be 2 OS drives instead of 1, they'll be clones of each other. when an updates pops up, the OS will download and install it on the other drive that is not used to run the OS. the updates can be installed and completely finished on that drive. the next time a system admin restarts the server, OS will boot up from the other updated drive without ANY downtime for installing or finishing updates. once…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  13. DNS policies for reverse-lookup zones

    Please implement support to configure DNS policies for reverse-lookup zones.
    We need a way to prevent sensitive private PTR records from being accessible on the internet in Split-Brain DNS configurations.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  14. VPN Always On LockDown

    Hello,

    We would like to use LockDown mode on our VPN Always On Device tunnel clients in order to restrict all flows only in the VPN tunnel (not local traffic). Can you tell me if this "Lockdown" feature is supported in a high security context?
    Currently, only LockDown mode limits all flows in the VPN tunnel and perfectly meets our needs. In Forcetunnel mode, local traffic is allowed. Of course we don't just want to allow local traffic.
    For information, Always On Device tunnel is installed on all of our Windows 10 Enterprise 1909 workstations.
    Thank you in advance for…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  15. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  16. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  17. allow UDP tracert because Verizon has done something with their network and your current Tracert only shows 2 hops.

    Currently Tracert only shows 2 hops on Verizon Fios networks. There were many more before they changed their settings. UDP traceroute on Linux and Unix have no problem. Change your tracert to allow configuration for UDP rather than ICMP. It's hard to use current tracert to determine what's wrong when most of the hops don't show up.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  18. Please provide a justify center option for task bar icons. widescreen monitors mean you have to go way to the left to select taskbar icon

    All the Data Center monitors are 32" or 38" inches wide. So when your having to select icons from the task bar at bottom of screen you always having to arrow all the way over to the left. If there were a justify center option for task bar icons then you could always drop straight down and select on of the 12 or 15 icons your always using.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add ability to retrieve saved password.

    Add ability to retrieve saved password.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
  20. Can I remove RDP all together and replace with VDI?

    RDP has been judged as dangerous in secured network. I will like to know if I can remove it all together and replace with VDI?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6 7
  • Don't see your idea?

Feedback and Knowledge Base