Azure Active Directory

Welcome to the Azure Active Directory Forum.

How can we improve Azure Active Directory?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support invitations to consumer email addresses (such as hotmail.com, Gmail.com, or comcast.net)

    Support invitations to consumer email addresses (such as hotmail.com, Gmail.com, or comcast.net)

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  B2B  ·  Flag idea as inappropriate…  ·  Admin →
    • User Search in Admin Portal by UserName, not just Name

      All of our self-registered user accounts show up in the portal as "unknown" as the name. The search function only operates against that property at the moment. It would be super valuable to find a user by searching for a value across the UserName attribute, which for us is generally their email address that they used when signing up to the B2C tenant.

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
      • Add ability to upload additional Propriety protocol providers to B2C.

        Have the ability to upload custom code as a Proprietary Protocol Handler, the same as the RestfulProvider.

        This would then allow the ability to do complex transformations and processes.

        <Protocol Name="Proprietary" Handler="MyNamespace.MyClass, MyAssembly, Version=1.0.0.0, Culture=neutral, PublicKeyToken= 00000000000000000 l" />

        1 vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
        • Provide the ability in B2C to provide claim values as the source for Multi-Value Dropdowns

          I currently have a requirement for a selection to be made within the user journey based on a multi value claim.

          An example use case would be receiving a list of email addresses and allowing the user to select their primary.

          At the moment there is the ability to use dropdown list to get the user to select a value, however the values used for the selection must be hard coded within the policy.

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow for deactivating "Windows Hello" and "Set Up PIN" for good on Azure AD joined devices

            Dear Microsoft,

            We are midst in rolling out Azure AD joined Windows 10 clients (primarily notebooks) and right now, with every restart, the system prompts for setting up Windows Hello and a PIN. Since the latter only works with a mobile phone number and we do not provide every of our employees with a corporate phone, we cannot possibly force this on them.

            Please allow quickly to deactivate these two settings in Azure AD, right from the start. It kills user experience to click this away every single time.

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Domain Join  ·  Flag idea as inappropriate…  ·  Admin →
            • 3 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)

                We’ll send you updates on this idea

                started  ·  1 comment  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
              • AzureAD Group self-service setting naming in 'new' Portal

                In the old portal the setting for enabling AzureAD Group self-service for users has named like this: USERS WHO CAN USE SELF-SERVICE FOR SECURITY GROUPS. This is what this setting is doing. The same setting within the new portal is named like this: ‘Users who can manage security groups’.
                To me this new 'naming' of the same setting is confusing because of the word 'manage' in the new naming. Personally I think the old naming is more descriptive for this setting. I don't know what other people are thinking?

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
                • Resolve issue with Mail enabled contacts and Guest users being able to co-exist in Azure AD

                  Currently mail enabled contact objects in Azure AD and Guest users are unable to co-exist.

                  This blocks being able to use guest accounts for access to Office 365 workloads for any of those contacts.

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  B2B  ·  Flag idea as inappropriate…  ·  Admin →
                  • 3 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
                    • 12 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        1 comment  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
                      • 4 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
                        • Make it possible for users to view own devices and bitlocker recovery keys on account page.

                          Make it possible for users to view own devices and bitlocker recovery keys on account page.

                          Would also be nice as an administrator to easily get a list of all joined devices, the user and the bitlocker recovery keys for each device. Today recovery keys and devices are really located deep in the UI.

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                          • Duplicate accounts are impossible to fix

                            We have just gone live with ADFS and SSO. Most of our accounts are fine, but a few ended up with duplicate entries - in Azure and O365 they each have a user@domain.com and a user@domain.onmicrosoft.com.

                            Fixing this seems to be impossible, all of the tools involve changing the UPN of the user which doesn't work because it already belongs to the other one - e.g. if I try to change the onmicrosoft UPN to the domain.com UPN, it fails because the O365 user already has that UPN.

                            The only solution appears to be to delete either the email…

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Azure AD Connect Health  ·  Flag idea as inappropriate…  ·  Admin →
                            • Support for restore user from AzureAD graph api

                              Support for restore user from AzureAD graph api, today this task is done through MSOL cmdtlets. we would like to see this capability from one api. it would help svps to build custom solutions based on azure ad graph api to focus on one api.

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Graph API  ·  Flag idea as inappropriate…  ·  Admin →
                              • Support for query deleted users (recycle bin) from Azure AD graph api

                                Support for query deleted users (recycle bin) from Azure AD graph api, today GET user on AzureAD graph only return user who is not in recycle bin.

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Graph API  ·  Flag idea as inappropriate…  ·  Admin →
                                • The Add a Group feature does not work in Chrome

                                  The Add a Group feature does not work in Chrome through a Remote Desktop. Clicking appears disabled, though you can tab through the first two fields.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
                                  • SVG Login Buttons

                                    Branding guidelines are available which offer up login buttons to be used in web applications that use Azure AD for authentication. The branding guidelines are here:

                                    https://docs.microsoft.com/en-us/azure/active-directory/active-directory-branding-guidelines

                                    The buttons on that page are PNGs. It would be good to publish SVG versions of these buttons, as many web apps incorporate SVGs rather than binary files served up statically.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Display Summary of Conditional Access Assignments

                                      Instead of requiring admins to click every Assignment to see the details of the CA rule they created, show a summary of what the policy does, in the users native language.

                                      See attached file to get an idea of what I'm saying.

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Test Authentication Request (Synthetic Transaction) failed to obtain a token.

                                        Hi Team,

                                        I am receiving ADFS alerts as mentioned in the subject, but while I test the ADFS Server health, the test is getting passed. But I offen get this alert, can some one help me in fixing this.

                                        thanks in advance.

                                        Regards,
                                        Naveen Ramakrishnan

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Azure AD Connect Health  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Have one portal

                                          There are too many portals for administrators and end users. Users can be confused by the myapps.microsoft.com and portal.office.com/myapps pages. Each of these pages provides a different end user experiece. Administrative portals are a nightmare. Trying to provide temporary MFA code for a user involves going thorugh multiple portals to get to the appropriate area, and the user experience for this is still not clear.

                                          2 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  End user experiences  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 31 32
                                          • Don't see your idea?

                                          Feedback and Knowledge Base