Would be great to be able to add groups to application owners in AD instead of only users. Scenario is to use on-prem AD synced with Azure to keep management of application roles/groups/etc on-prem for cloud hosted solutions.
- Configurable password requirements (e.g., complex passwords, password length, character limitations etc)
- Configurable number of attempts before Account is locked
Hey folks, thanks for the interest in this, and we have some good news to share. Configurable lockout is in development now (mostly done, actually) and we’re aiming for June or July public preview.
For configurable password complexity, length, etc, we hear you. Longer passwords are in planning now, and we’re thinking about our approach to how we want to enable the other configurability features. I don’t have any more details to share on this for now, but we do have interest in building features.
The report "Irregular sign in activity" should show what's normal, and detailed why this was triggered.
If it's a atypical location: What is the typical?
Signed in from a location distant from the previous location: What was the previous?
If you have hundreds of users, sending just this list to an administrator is not sufficient.3 votes
Hey Anders, Mohammad,
Thank you for the suggestion. I have passed this along to the engineers responsible for this area.
Currently, if an account has been compromised, the hacker will have the ability to delete subscriptions, storage accounts, etc. including backups. So, there has to be an option where a customer should be able to disable subscriptions, so that no changes can be made and limit the amount of damage that can be done.
Once an account has been disabled, there should be an alternate way where the customer can be authenticated and the subscription handed back to them.5 votes
Interesting idea. We should think about this one.
We use to have a "URL to Grant Access" in the WAAD application configuration page. This has been removed recently (March 2014) and there is no documentation or help to explain what is the new way of granting access to other WAADs.
Even the documentation still specifies this "URL to Grant Access".
Please help!3 votes
Your suggestion has been passed on to the appropriate Program Manager.
Provide native security services in AppFabric such as XML firewalling (structure, grammar, semantics, algorithms, injections, etc), similarly like other XML virtual appliances .
Ideally, it would great if interception can be implemented between client and the end service by calling Worker / Web Role on Azure to perform this functionality (an possibly policy enforcement) – Customer may or may not to choose to deploy this solution at their own cost. The firewall can be reference implementation on codeplex and / or fully managed service provided by Microsoft.6 votes
Your idea has been sent to the appropriate Program Manager for review. Thank you for your input.
- Don't see your idea?