Azure Active Directory

Welcome to the Azure Active Directory Forum.

How can we improve Azure Active Directory?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. MIM CM Portal support for modern browsers

    The MIM CM Portal still requires the use of Internet Explorer. This is highly restrictive with clients now an array of modern browsers, i.e. Chrome, Edge and Safari.

    Please enable modern browsers to be used to access the MIM CM Portal.

    1 vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
    • Web Service Connector Test Connection Bug

      Dear all,
      some little bug is present in the Web Service Connector Version 1.1.551.0.
      When you use the Test Connection function of the Management Agent, then the Management Agent does not use the Connectivity information defined in the Management Agent. The static value in the generated.config file will be used.

      2 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
      • Allow customization of PAM workflow process

        Allow disabling of implicit approval (not allow "self" approval) in PAM workflows.
        Allow configuration of email notification chains (who gets the emails at each point in the process.
        Allow multiple tier approvals in PAM, much like can be configured in a regular MIM workflow.

        1 vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
        • Add a way to change the MIM sync DB name to a custom name

          When you install MIM Sync you can not specify a different / custom name for the Sync DB.

          It would be great to change the name of the MIM Sync DB:
          * for new installations and
          * for existing installations.

          In this case you can host more then one MIM Sync DB at the same SQL-Server-Instance

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
          • Remove SCSM dependency for MIM Reporting

            Installing SCSM is time consuming and too much of a product when clients only need it for MIM Reporting.
            Also, when it comes to flowing custom attributes to the DW in order to customize the reports, it gets a bit tricky and also time consuming.

            4 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →

              Thanks for your feedback. We have heard the concerns that deploying System Center Service Manager and Data Warehouse are a high barrier to getting reports from MIM, so we are currently working on improvements to the hybrid reporting integration that will enable building reports on password resets and group membership changes in MIM to be much more straightforward. Thanks, Mark Wahl

            • Allow for programmatically changing service account passwords in MIM

              Allow programmatic resets of service account passwords, especially the Exchange Online mailbox password for the MIM service account.

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
              • 2 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                • Prepare documentation for MIM

                  Prepare full set of documentation for MIM, or just update FIM documents:
                  - Deployment guide (not just blog post, but full deployment guide, as it exists for FIM). With possible architectures, recommendations, etc.
                  - SSPR Deployment Guide
                  - Reporting deployment guide
                  - Reporting extensibility guide (as we have Test Lab Guide for FIM today)
                  - Capacity Planning Guide
                  - Configuration Migration Deployment Guide
                  - Disaster Recovery documents
                  - Best Practices documents

                  5 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                  • Add support for Windows Server 2012 R2 for MIM Reporting

                    According to https://docs.microsoft.com/en-us/microsoft-identity-manager/plan-design/microsoft-identity-manager-2016-supported-platforms, MIM Service Reporting supports Windows Server 2012 and Windows Server 2016, but not Windows Server 2012 R2, which is weird.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                    • Provide a decent tool for MIM servers sizing

                      Provide a proper tool for sizing MIM servers in terms of CPU, Memory, and DB requirements

                      2 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                      • Improved Connector Space Search

                        From a support point of view, the limited search options when viewing a connector's connector space can make finding an object somewhat time consuming especially when there is a high number of objects and distinguished names don't relate to the user (e.g Portal objects!). Trying to find an object usually means loading all objects, setting the columns, ordering and then manually looking through the objects.

                        It would be great if we could have a more advanced search feature when viewing the connector space to quickly find an object based on unique attributes (similar to the Metaverse search).

                        5 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                        • Add possibility to send cumulative Approval Requests in a single notification

                          Some customers not want receive emails for every event and prefer have a single email with list of all events.
                          I suggest to add a flag to Approval Action to send Approval notifications with a cumulative Emails to every approval user. Add an options in configuration can define a timer for send these emails.

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                          • Improve user experience in MIM Synch Client

                            A list of simple user experience improvements:
                            - Add Clipboard copy support from all cell and group of cells
                            - Add Clipboard copy support to all lists
                            - Add CSV Export capability to Opration list, Metaverse Search, Connectors Search, Joiner Search results
                            - Renew combobox (the actual allow digit only first char to search terms)
                            I've many more requests to submit about interface but I will post different suggestions

                            3 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                            • Add possibility to install Synch Engine Client on different Computer

                              Many customers not allow access with RDP to Server in specific zone of network (Like DMZ) except global admins. Without an external client in some case is impossible to manage MIM Synch Engine.

                              2 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                              • Custom objects with membership attributes

                                Thanks for adding the ability for users to join and leave the membership of a custom object in the recent hotfix. A really useful feature. Will you now be able to provide us with another hotfix that will give us the ability to refer to these objects in MPRs, and/or to include their membership in Sets (Resource ID in <custom object>)?

                                3 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                • When installing the MIM Language packs on a second server, provide the option to just install the local files and not update the MIM Service

                                  When installing the language packs on second portal servers, it would be nice to have an option to skip the installer updating all the locals in the Service/Database as this has already been done during the initial install on the primary server, and slows down the time it takes to patch the environments.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Provision Exchange Online Mailbox (Enable-RemoteMailbox)

                                    In an hybrid exchange Scenario when you only assign a license for Exchange Online to a synchronized user to Provision his mailbox the corresponding onPRem AD attribues are not set.

                                    So These mailboxes cannot be managed from the onPrem Exchange Admin console.

                                    So it might be a good idea to have also "Exchange Online Provisioning" wihtin the AD connector and not only onPRem Exchanges.
                                    Connector should call the "Enable-RemoteMailbox" cmdlet which sets the appropriate Attribute onPrem and after synch and assign license users can use their mailbox.

                                    Btw: Please rename the "Exchange 2010" provisioning option to "Exchange 2010-2016", in every…

                                    7 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Ability to export results from the Metaverse Search screen in sync engine

                                      Ability to export results from the Metaverse search screen in sync engine. This was an idea mentioned while I was out on client site. When one does queries the the "Metaverse Search" tab of the sync engine there is no way to save the results a csv or excel file. You could obviously query the backend SQL database but this isn't very customer friendly.

                                      4 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                      • In the Portal, on the home page, the Welcome message uses the Display Name Attribute, can this be made a customisable option.

                                        In the Portal, on the Home Page, the Welcome Message is currently hard coded to Welcome, <DisplayName>.

                                        Please can this be made a option or customisable so that it can be calculated based on FirstName and LastName or just so a different attribute can be used.

                                        The issue using Display Name, is that in AD, the display name format is LastName, FirstName and when it is set in the Portal, it means the welcome message is displayed as Welcome, Bassi, Ian which does not make a lot of sense.

                                        To get around this, you have to create a extra attribute…

                                        3 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                        • In the Sync Engine UI, update the Management Agent Tab so that additional attributes that are saved in can be displayed on the screen.

                                          Currently in the Sync Engine UI, on the Management Agent Tab, the following attributes are displayed. Name, Type, Description and State.

                                          It would be useful if the attributes displayed could be configurable, and additional attributes stored in the database such as ma_id, creation_date, modification_date and is_password_sync_allowed.

                                          The benefit of this is you can easily see how recently a Connector (MA) was updated, and if Password Sync is enabled for the Connector

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Microsoft Identity Manager  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4
                                          • Don't see your idea?

                                          Feedback and Knowledge Base