Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Put a refresh on the AAD Connect OU selection screen.

    Put a refresh on the AAD Connect OU selection screen.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure AD Connect  ·  Flag idea as inappropriate…  ·  Admin →
  2. Azure AD guest user profiles are sometimes empty after invitation is accepted

    When inviting a guest user (B2B) the guest user must consent and authorize Azure AD to read the guest user account Name and Email address.
    However, most of the time the user profile that is created in Azure AD is not filling the "Name" attribute. This behavior is not consisted across different Azure AD environments.
    It would also help a lot to enrich the guest profiles with other attributes like "First Name", "Last Name" and "Display Name" because it will greatly reduce the effort needed to modify these accounts manually.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2B  ·  Flag idea as inappropriate…  ·  Admin →
  3. Detect if Managed Identity is enabled on VM

    It is possible to detect if an existing VM has Managed Identity enabled? All code samples for enabling on existing VM only shows how to use the Set-AzVm cmdlet, but not how to detect if it was enabled in the first place!
    This feature would be handy if you for example wanted to set New-AzRoleAssignment only if VM uses Managed Identity

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add a find and replace Claims transformation for collection type

    The issue faced:
    We got a string collection claim that holds some preset GUID returned from an Azure AD tenant.
    We wanted to map this GUID into another values so that the GUID will get translated into a readable text. Currently there is a similar string claims transformation: LookupValue, but there is no similar claim transformation for string collection type.

    Currently we can solve this issue by adding a helper Rest API endpoint to do this conversion, but it will be helpful that the custom policy natively supports this claims transformation.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  5. Enable browser restriction in Conditional Access rules

    Currently there is only an option to include or exclude "browser". We need the ability to specify which browsers are allowed or blocked. For example, select Browser, and add sub-options to specify a specific Browser or ever higher or lower version number. Some apps only work properly on Chrome or Firefox. It would be great to specify the exact browser that is permitted, and all others blocked (or permitted).

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  6. Support POST OpenID Connect authentication requests

    Supporting POST authentication/authorization requests is not mandatory for clients, but would be a nice addition if I wanted to use idtokenhint without being it captured in server logs in the referer header response.

    >Authorization Servers MUST support the use of the HTTP GET and POST methods defined in RFC 2616 [RFC2616] at the Authorization Endpoint. Clients MAY use the HTTP GET or POST methods to send the Authorization Request to the Authorization Server. If using the HTTP GET method, the request parameters are serialized using URI Query String Serialization, per Section 13.1. If using the HTTP POST method,…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. when we are able to login the Microsoft account in mobile phones using bio metric, why can't you provide same bio-metric authentication for

    when we are able to login in the Microsoft Authentication App. using the Microsoft account (xyz@hotmail.com) in mobile phones with bio metric Authentication, why can't you provide same bio-metric authentication for PC signing In. the option using Microsoft account signing In is already available, additional requirement is signing using. Mobile signing In using Microsoft Authentication App. For this additionally you have to provide the mobile Icon in the login Screen in windows 10 OS.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Poor experiencing

    Been trialling B2C directory for a month and have to say it has been a disappointing experience. We had a number of issues deleting unused tenants and have been in contact with Azure support for over a month. Even now these issues are still unresolved. It feels the platform as a whole is immature. We have decided to stop evaluating Azure as our cloud platform.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  9. This is not an idea but a feedback

    I find the idea of entering the OTP everytime I login ,very absurd. atleast you should not ask for OTP on the same system which I was logged

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  End user experiences  ·  Flag idea as inappropriate…  ·  Admin →
  10. Include Conditional Access in Microsoft 365 Business

    Include Conditional Access for Microsoft 365 Business customers without Azure Premium subscriptions.

    Right now, a lot of the compliance features that comes with the intune in M365 Business are useless because they cannot be enforced via Conditional Access, because CA is not included in the business edition of Microsoft 365.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
  11. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow App Owners to approve permission requests to their own application

    We would like to use Azure AD as our authentication and authorization framework for all APIs, however, one issue we believe we have run into is the requirement that an Administrator must approve all Application only requests (vs the expected below).

    Scenario

    Our company has two app registrations
    - Business API 1
    - Scope: Feature.Critical (application role)
    - Business API 2

    Business API 2 requests Application only Feature.Critical permission of Business API 1.

    Expected Result

    The Azure AD App Owner(s) of Business API 1 are the SMEs for this permission knowing best what data and functionality may be released. The…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →
  13. Lotus Notes to PST Converter

    The most reliable NSF to PST converter tool is designed by ATS team that easily export Lotus Notes data into Outlook PST and other file formats like EMLX, MBOX, HTML, EML, vCal, vCard, MSG and CVS. It is the best method for completing the conversion process. At a one time, you can convert single as well as multiple files in a few moments. Its preview facility show recovered mailbox before the actual conversion task. You can directly convert your data into cloud-based application Office365 & Live Exchange Server that is the best feature of it. A free demo version is…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Devices  ·  Flag idea as inappropriate…  ·  Admin →
  14. How to fix my outlook not accepting password

    Get outlook not accepting password solution via the technical support phone number experts as my outlook not accepting password in windows etc.For solution call 1855-345-8210 toll free number for help.

    https://www.outlooktechnicalhelpline.com/outlook-not-accepting-password/

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  15. How to Create Gmail Account Without Phone Number

    Are you looking to Create Gmail Account Without Phone Number? If Yes, then you are at right place. Today I’m going to Share How to Create Gmail Account Without Mobile Number For Free?

    How to Create Gmail Account Without Phone Number?

    Open Google Chrome Browser On your Mobile or PC.
    Click on three dots from top right corner and then click on “New incognito window” or simply press Ctrl+Shift+N on your Keyboard.
    Now, Open https://accounts.google.com/SignUp in your private browsing mode.
    Here, Enter your details like Name, Username & Password and then Click on Next.
    Create Gmail Account Without Mobile Number …

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2B  ·  Flag idea as inappropriate…  ·  Admin →
  16. Prevent users from adding mailbox rules

    Ability to disable end user's ability to create mailbox rules. Would be nice to have when an account breach happens and you want to lock this capability down to prevent malicious 3rd parties from creating rules and hiding email responses.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  17. Enable Groups (AAD or Synchronized) to be members of AAD Roles

    For AAD roels, ie Security Admin, allow Groups to be added. Currently only Users can be added through the portal.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    under review  ·  0 comments  ·  Role-based Access Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Face id

    Rien avec FaceId, plutôt qu’un système de codes compliqué ? C’est pas très top

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ok Google Not Working 1-866-374-7444

    Ok Google is not working for you: Here are Possible Fixes
    Have you ever been faced with the pop up in the image above? That is, you try opening Google Assistant/Google Now with the normal: “Ok Google” command and instead, you get the message above in return. Quite annoying!. Ok read on for the fix.

    The “Ok Google” voice commands lets you open up, Google Assistant or Google Now just by saying out the command instead of using the normal: long press and hold the Home Button method. Reminds me of Bixby.

    Most lazy users or people who like trying…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  20. How To Remove completely Norton 360 from windows

    There are several times when there is a need for uninstalling a few software. If you are expecting for one such answers or solution for uninstalling of Norton then you are at the right place. The blog will tell you about How To Remove completely Norton 360 from windows. You need not to use any special software for this purpose, you can simply remove it or say uninstall it.

    Click the start button on the right so that you can open the win + X menu. After that tap on run to open the accessory.
    appwiz.cpl - to be typed…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base