Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. App Proxy for Intranet API

    We are using App Proxy for intranet API publication.
    The usage flow is below.


    1. SSO to applications SAML cooperating AzureAD.

    2. Use the SSO authentication token to hit the App Proxy API embedded in the application.

    On that basis, I am troubled below.
    · It can not be executed unless you access the API beforehand on the screen.
    I implement the following as HTML.
    <object data = "~ msappproxy.net / api /" type = "text / json" style = "visibility: hidden"> </ object>
    <input type = "button" value = "test" onclick = "postAPI ('~ msappproxy.net / api /')">
      
    · The…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    under review  ·  0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow Application Owner to have the ability to see App Proxy configuration

    Allow Application Owner to have the ability to see App Proxy configuration for the apps they own, but not apps they don't.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  3. More simple configuration between Dynamics Nav and Azure Active Directory

    Allow more simple application single sign-on between Azure Active Directory and Dynamics Nav i.e. use similar application as application proxy to create the federation between nav and azure ad.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    under review  ·  0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  4. I’d like to see the ability to run Set-AzureADApplicationProxyApplicationCustomDomainCertificate cmdlet when logged in as a ServicePricipal.

    I’d like to see the ability to run Set-AzureADApplicationProxyApplicationCustomDomainCertificate cmdlet when logged in as a ServicePricipal.

    Would help for automation for those who use LetsEncrypt certificates and automatically upload the new certificates to the App Proxy.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  5. Adit123

    Ganti sandi dengan adit123

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  6. Why are you forcing Croatian language on me?

    Why are you forcing Croatian language on me?

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  7. Azure Application Proxy - Multiple external URLs to same internal URL

    The ability to have more than one external URL point to the same internal URL.
    e.g
    1.external.com > internal.local
    2.external.com > internal.local

    you currently get this error
    "Creating new on premises application
    Internal url entered is already being used by another application"

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  8. Microsoft products are appl

    Microsoft products are applications such as Bing, Learn, Academy. Azure-Intune should provision the restrictive coding for proper federalramp reports. The preview shows Bing though no enrollment granted. Let's not systematic the Intranet wall with MAC addresses, however, chip technology to user settings a standard function by automatic machine language. Any ambiguity? Joe Tinger, MCE, MPE

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allows customization on Error codes with Azure App Proxy

    Currently the Error codes are very generic and disclosed the application hosting platform. If this error can be customizable and will not give a potential bad actor an obvious information that this application is hosting on Azure app proxy instance.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  10. AD Application Proxy should allow configuration controls through Azure policies

    We use policies to standardize resource configurations across all subscriptions and applications. It looks like Azure AD Application proxy service doesn’t have any policy aliases to implement policies.

    I want to create policies that ensure 1) the external URL’s can only be accessed through https; 2) the application proxy only allows Active Directory Authentication (not passthrough); 3) should only allow HTTP-only cookie; 4) application proxy should use only secure cookie; 4) shouldn’t be configured with persistent cookie.

    It would be a great enhancement if we have an option to implement policies on Application Proxies.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  11. 1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  12. Configurable Session Duration.

    Right now, when we use applications behind Azure AD Application proxy, we sometimes lose work when working in applications behind Application proxy.
    This because when we post the form we are entering, the session was expired and the browser goes to the login page, automatically signs us back in and takes us back to the page we where on (to an empty form).
    We would like a way to control how long the session duration lasts/lasts when idle.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  13. NTLM Windows integrated Authentication

    Currently we have an API that works with NTLM negotiation and that would be great to have it behind an App Proxy but there is at this moment no support available.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  14. Better error message for App Proxy

    When an Enterprise App is enabled for App Proxy, the owners of the app lose access to the SSO settings on the Enterprise App blade. This is intentional due to permission changes in the background, but the error message shown to owners when trying to access SSO settings is too generic. Please update the error message to provide some meaningful info on why the owner no longer has permission to access this setting

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support WIA SSO using SamAccountName for Multiple Domains

    Most of the app proxy use cases we have, don't want to use the solution as it doesn't supports SSO for applications authenticating users of different domains in the forest through SamAccountName attribute and they can't use different internal URLs for the applications or switch to UserPrincipalName attribute.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  16. 1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  17. Application Proxy private edge virtual appliances

    Can you please develop virtual appliances with application proxy that can be deployed on a customer site. This will hugely help with latency and improve performance for web applications hosted in countries without Microsoft data centers.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  18. Pass X-Original-Host header through to internal service

    When calling an application that uses AAD Authentication via the proxy, the client browses to the Proxy Url. The proxy then makes a request to the internal URL, which is protected by AAD Authentication. The request to the internal service only contains an X-Forwarded-For header, but no X-Original-Host or X-Forwarded-Host header. As a result when the service redirects to AAD Login, the redirect_url points to the internal host domain, not the Proxy domain. When the user logs in, the are redirected to the internal domain, which isn't accessible.

    By using the ForwardedHeaders middleware, we can pick out the X-Forwarded-Host or…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  19. Application Proxy permission set

    Should it be not possible to install the Application Proxy Connector with limited permission, instead of App Administrator at the highest level

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for sharing your idea/feedback on feedback.azure.com. Please share more information about your use-case/scenario and also which role you are suggesting to have permission to install App proxy connector. This will help us to understand and design this feature.

  20. allow azure application proxy to work with special characters (ex %9) and Java

    allow azure application proxy to work with special characters (ex %9) and Java

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Proxy  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base