Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

We have a new log in experience integrated with Azure AD, and we strongly recommend you log in with your Azure AD (Office 365) account. If your UserVoice account is the same email address as your Azure AD account, your previous activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

How can we improve Azure Active Directory?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add an option to bypass service plan dependency check when assigning license to group

    The Azure portal does not allow assignment of an add-on license to a user group unless a base license with prerequisite service plans is also assigned to the group. Example: Audio Conferencing can only be assigned to a group if (e.g.) Office 365 E3 with the Microsoft Teams service plan enabled is added to the group at the same time.

    The problem is that most of our customers have a mix of Office licenses. In order to avoid service plan conflicts and unnecessary license usage, we would need to create a group for each possible combination of the addon and…

    38 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  2. Real time alerting for Break Glass Admin accounts

    Maintaining a backup admin account which can be used in “break glass” scenarios is important but the account would not be enabled for MFA to avoid being locked out of the tenant in the event of MFA issues or service outages. Per guidance by Microsoft these types of accounts should be normally unused and monitored for any activity but there is no native mechanism for generating real time alerts in the event of activity.

    Being able to designate a couple accounts that immediately generate email and SMS alerts would be highly beneficial enhancement. Ideally this should be available as a…

    7 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  3. Ability to prevent subscription association to Azure AD tenant

    In terms of Azure governance many customers want to control or rather disable the ability to associate pay-as-you-go subscriptions to their Azure AD tenant, quite similar to controlling who can register applications to the tenant. This is especially evident in an Enterprise Enrollment scenario where consumption is driven by a monetary per-commitment. Often customers aren't even (made) aware of this "loop-hole".

    16 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  4. Management of OAuth Consent Expiry Renewal

    Hi,

    OAuth2 Consent objects include an Expiry Time. Management of expiring consent stands to be a significant issue for administration, for any consent scopes/roles that require elevated permission (and especially for those of us that do not allow end-user consent).

    Please consider a feature to identify consent that will be expiring soon, and a button for admins to press to renew.

    As it stands, without running automation scripts, users will suddenly be blocked with a message that looks like the IT department has revoked their access. This is not good for our internal relationships :)

    Regards.
    Ben

    3 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  5. Make Azure Security Groups owners of other Azure Security Groups

    We have added single users as group owners within the portal, this is great and keeps us from distributing the User Admin role. With that said, my team would like to add security groups as group owners as well. This would help as our user base is constantly changing and we'd rather have one group as an owner of all our groups and make changes within it compared to having to go to each group and add/delete owners as they are hired/terminated.

    6 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  6. sorting users in groups alphabetically

    The fact that the portal displays users in groups in some random fashion with no ability to sort alphabetically is unbelievable. Also, the fact that we do not have a "show all" option for lists, instead we have to load more which doesn't show much more at all. It would also make sense to have a search function built in to the groups page I don't understand why there isn't. Please add in the functionality to at least automatically sort alphabetically.... I would be eternally grateful!

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  7. Add ability to sort/filter by column in users and groups list

    The "All Users" and "All groups" views in the AAD portal should allow sorting and filtering on all columns.

    35 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow only a group of user to do user consent on their behalf.

    In current user settings, it just allows enable or disable user consent on their behalf.

    We want to have a feature to allow just a part of user to do user consent on their behalf, NOT for all users.

    Thanks

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  9. Reserved instances

    When a reservation instance is created from an Enterprise Agreement, only the creator can manage the resource, even if all other EA Managers are given the Reservation manager role, they cannot see it, therefore they cannot manage until manually given the Owner role over the RI.
    Making this default would ease several users.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  10. Linux VM login using AAD connection string is shown in incorrect case

    The documentation for using AAD login for Linux VMs states (correctly) that the AAD username used for login to a Linux VM must be entered in all lowercase. However, in the Azure Portal, when browsing to a VM and choosing 'Connect' shows the name in the connection string (in the "Login using Azure Active Directory" box) using uppercase characters, if your username has those. In our organisation (And I expect many others) the usernames consist of something along the lines of FirstnameLastname, having 2 uppercase characters. A user should just be able to copy/paste this connection string (SSH command) but…

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  11. Enable password policy for each users or groups

    Azure AD should be able to set a password policy for each users or groups like OUs and GPOs in on-premise AD.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  12. notifications

    If there is an ongoing issue in Azure AD, can there be a mouse-over tool-tip to indicate when a feature is experiencing an ongoing issue? For example, the "require device to be marked as compliant" under conditional access policies is experiencing an on-going issue according the tech support. If there was a tool-tip to show that to Azure admins then it would greatly reduce the amount of support calls because it would be obvious that it isn't working. This would save admins time and it would save MS tech support time.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  13. Policy to disable inactive accounts

    We'd like a policy to automatically disable user accounts after a certain number of days of inactivity.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  14. User Initiated Certificate Generation for Import / Use in O365 apps

    Allow administrator and users to generate certificates to use in O365 apps for securing data transmissions and storage protection.

    I would simply like to download a fresh certificate for SMIME setup.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  15. 1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  16. Adicionar um botão para exportar os grupos e seus respectivos membros

    Poderiam adicionar uma opção para exportar para planilhas os grupos e seus membros.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  17. Tell us what Authenticator is for❗️What is its purpose ❓

    I Don’t know what this app is for: should I delete it ❓

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  18. Hide Subscriptions from Filter

    We currently have 90+ subscriptions in a directory but the filter will only filter 50 subscriptions, max. Some of the 50 that are showing up are disabled, Visual Studio subscriptions, or other subscriptions that I don't need to be reviewing or want included. But some of the other 40 I do want to include but can't due to the 50 max filter limit.
    It'd be helpful if I could hide or exclude subscriptions from the subscription filter option so that I can filter on those that are important and exclude unused or disabled subscriptions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  19. Powershell console in Admin Portal

    Will be nice, if we can get a PowerShell console in Azure Admin Directory.

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  20. Create a separate admin role for the Power Platform administration

    Today, Power Platform administration requires Global Admin rights. It would be helpful if we could have a separate role for administering the Power Platform environments and policies without granting them global admin rights to the entire tenant.

    2 votes
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 11 12
  • Don't see your idea?

Feedback and Knowledge Base