Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Authenticator App fully displays UPN on accounts list

    When I register the Authenticator application to multiple tenants with the same name (for example, default tenant name), I can't know which passcode is for a tenant that I am trying to sign in.
    The reason is that UPN isn't fully displayed omitting by "..." after a certain length depending on the screen size.

    ex)
    UPN "testuser01contoso.com#EXT#testuser01@fabrikam.com"
    displayed UPN "testuser01contoso.com # EXT ..."

    Alternative improvement idea is to display a tenant id next to a tenant name.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. The Authentication methods usage & insights (preview) page is great, but not accurate

    The Authentication methods usage & insights (preview) page is great, but the MFA registration column is not accurate. I have users that have registered and their registration methods show, but they show as unregistered on the report.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Reduce the DIRECTORY steps to select MFA......simplify number of mouse clicks, use pull down menu to select MFA from main menu

    Reduce the DIRECTORY steps to select MFA......simplify the number of mouse clicks, use pull down menu to select MFA - New User / Existing User

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. MFA Account Throttling

    Currently per MS:
    • The user attempts to validate a phone number 5 times in one hour.
    • The user attempts to use the security questions gate 5 times in one hour.
    • The user attempts to reset a password for the same user account 5 times in one hour.

    Please implement a powershell option to clear this throttle-flag on a per-user basis. Telling a user to wait 24 hours is not a viable solution.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Display requesting device name in approve notificatins

    It's useful to display requesting device information such as OS, model name and name in Authenticator app approval when multi factor authentication is configured to approve via notification method.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. que el rol de administrador de autenticación con privilegios permita visualizar, bloquear y desbloquear usuario de MFA

    que el rol de administrador de autenticación con privilegios permita visualizar, bloquear y desbloquear usuarios de MFA

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Revoke MFA Sessions | PowerShell | Graph API

    Hello,
    Please make it possible to do "Revoke MFA Sessions" using PowerShell or Graph API.
    Thank you!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Change the number of digits to identify an alternative phone

    My work phone and my personal phone both have the same last two digits (this is a 1:100 likelihood), hence I can not differentiate between them when asked for the last 2 digits. Please change the number of last digits required to identify a phone, I would suggest a minimum of 4. Alternatively and better, also allow the user to select which digits to use, maybe the FIRST 4 digits or a sequence from the middle of the number.
    Thanks

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. Require specific Multi Factor Authentication method for App

    When using Conditional Access to give access to a specific application it will today per default use the user specified preferred Multi-factor Authentication method.

    We would like to be able to protect the access to some apps a little further to ensure that the user must unlock the phone and open the authenticator app.

    Add support for forcing the authentication method towards specific apps with Conditional Access

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow us to set up multifactor authentication method policies

    Sometimes I want to assign an authentication methods for a user without necessarily enable that method for the entire company. For example, we may want to require user to complete an awareness training before using a certain method. This becomes especially important for the upcoming passwordless authentication. Therefore it would be very useful to be able to create policy groups for different combinations of authentication methods.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. Create custom AAD role for only editing MFA information

    Azure Active Directory (AAD) role to only updating the Strong Authentication information (such as Reset MFA, Revoke session token), but not for resetting users passwords.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  14. la aplicacion me pide un codigo qr y la pagina de office no me lo da

    la aplicación me pide un código QR y la web de office no me lo da

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. sign-in logs

    Provide a capability to filter on successful and failed MFA authentications for the user sign-in activity logs within the AzureAD Portal. As a consumer of an AzureAD directory of 120k plus user director using MFA, this is critical for reflecting usage and availability of your services.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Improve UX of MFA Enrollment Process when Requiring an Authenticator App

    We use a conditional access policy to enforce MFA enrollment for all users, including guest users, since the data that everyone is accessing is highly confidential. In addition, because SIM-stealing attacks are becoming more and more common, our MFA policy is configured to require an app rather than relying on codes provided by SMS or phone calls.

    With this combination of settings, we find guest users to be very disoriented, confused, and frustrated by the current MFA enrollment process. Since this process is often the user's first impression of our technology and Microsoft Azure, it's important for the user experience…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  17. xclude the carriers terminating via SIMBOX for successful authentication

    The issue of concern is the authentication calls arriving us local numbers (Simbox) which results in failed authentication process.
    We request you to urgently to exclude the carriers terminating via SIMBOX for successful authentication process for MFA Authentication connect requests.
    We note that the authentication from VPN login terminates via SIMBOX/Bypass routes and thus increase login failures as the #prompt may not be send back for authentification as well us it is fraudulent in nature.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. landline verf option.

    I am currently a victim of spoofing (piracy) for over 8 mos. anything I type or submit electronically is copied by the hackers. A Mutli factor authentication using a landline that I can register as my number might be helpful.. I can register my job number. corp security or even the police officer's number. either they provide my authentication or the spoofer attempts to pirate the number and caught with a back trace.I have over 15 email address attempting to access my account information because there is not a secure way to retrieve your old account without creating a new…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. IPv6 support for access to Azure Active Directory - login.microsoftonline.com - only IPv4 reachable

    Add support for IPv6 to Azure Active Directory to be reachable via IPv6 as well.

    MFA etc. should be supported via IPv6 only as well.
    login.microsoftonline.com and other URLs used.

    br,
    georg

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  20. Calendar aware MFA Risk Score Trigger

    Went to Team Collaboratorium today and was suggested to post this here for the IDM team -- would love to have the Calendar integration that can tell MFA that you are traveling so it can expect logins from a foreign location for this user (traveling to Berlin, Germany, expect a login to occur from there) and ignore home base of USA...

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 15 16
  • Don't see your idea?

Feedback and Knowledge Base