Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow prioritization of Pass-Through Authentication Agents

    When deploying pass-through authentication agents to multiple data centers it would be ideal to set a cost or implement some form of location/proximity awareness to control latency of secure password verification process. For example, US users shouldn't be validating their password against an agent in Europe or Asia (or vice versa) except in a failover scenario.

    10 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. Update Pass Through Authentication to support MFA/App Passwords

    We all have limitations where app passwords are in place, it'd be great to see this supported in Pass Through Authentication which would negate the requirement for ADFS.
    Thanks!

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for reaching out. This forum is feedback suggestion forum, you can post your unlock/change password issue to community forums to get faster resolution like https://stackoverflow.com/questions/tagged/azure-active-directory with few additional details on your scenarios (scenario you are trying, error or issue you are running into, repro steps etc.), that will help us to review scenario and provide quick resolution.

  4. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Remove User Agent based check for Azure Active Directory Seamless Single Sign-On

    Seamless SSO doesn't work on all browsers that don't match some specific user agent strings. Instead of forcing users to change/fake user agents in order to get this to work, please remove this useless user agent based behaviour change. This is the origin of many issues and not adding any value.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. In case AAD log in permission setting is blocked, OIDC log in authentication pop up is keep showing.

    When I try to log in OIDC, it’s successfully logged in to login.microsoftonlin.com through redirection Uri. But in case AAD login permission setting is blocked, OIDC log in authentication pop up is keep showing.

    I assume that the reason this happened is the information about ‘redirection Uri’ was disappeared during this login.microsoftonline.com -> login.live.com -> login.microsoftonline.com steps. So, I’m wondering if you could change design as showing a message(DCR) ‘Login fail’ or ‘Login has been blocked’ or something when AAD login permission setting is blocked.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Hello, is it possible that I accidentally deleted the authenticator software on my phone and there is no backup, how can I restore the data?

    Hello, is it possible that I accidentally deleted the authenticator software on my phone and there is no backup, how can I restore the data?

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Control specific group of PTA agents to be operational for Disaster Recovery purpose in single domain, single forest architecture.

    Require to control specific group of PTA agents to be operational for Disaster Recovery purpose in single domain, single forest architecture. If there is intermittent network connectivity or planned outage or for the purpose of DR, instead of stopping the MS AAD Connect Authentication Agent service on the PTA agent server (so that bootstrap connection is not initiated), we can select a group of agents that would be active at a time.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. Microsoft recommendation for PTA and AADConnect for Host Based Logging

    Hi,
    Trying to find out security best practices for PTA Agent and AADConnect Servers.
    "Do Microsoft specifically state that Host Based Logging should be avoided for PTA Agent and AADConnect Servers?"

    Appreciate if this can be documented and make it available for ready reference.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. 1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. sucks

    make it easier for me to log in

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. Stop Apps for everything.

    It locks you in a box without some tools you will need.If you own your on PC you shouldnt be forced to use only what the OS will sell you.That is Apples biggest problem and that makes people want to get into the OS and make changes.They wont all the money MS wants it all there self and money shouldn't be your biggest concern.You once had a reputation for letting the people decide what to do with their own personal computer.Your loosing to Androidand Linux for Desktops now

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Pass-tru Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base