Azure Active Directory

Welcome to the Azure Active Directory suggestions and feedback site! We love hearing from you. If you have suggestions, please submit an idea or vote up an idea. We are monitoring the site actively.

Thank you for joining our community and helping improve Azure AD!

Wehave a new log in experience integrated with Azure AD, and we stronglyrecommend you log in with your Azure AD (Office 365) account. If yourUserVoice account is the same email address as your Azure AD account, yourprevious activities will be automatically mapped to your Azure AD account.  You can read more here for details: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Putting-customers-first-for-f...

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. password

    The current SSRPT does not give a 3rd option to enter a new password because its expired (90day policy) it currently provides 1. I have forgotten 2. I know my password but i cant login (unlock feature). This is language issue is causing a lot of confusion to our user.

    The site also needs to return a meaningful error msg when the user is unable to reset the password.. not a generic one like whats available today.

    Finally it will be handy to have listed when i last logged in successfully or failed attempt using my password..

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. For Federated Single Sign On, please

    Regarding Managing Certificates for Federated Single Sign-On in Azure Active Directory:

    Please provide an option for customers to customize the Expiration Date for our Federation Certificates beyond 3 years. 15+ years would be preferable.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  3. Extend AAD Connect to track which forest a User came from to support onboarding small, disconnected Environments with just PTA

    Scenario:
    AAD-Connect runs in Azure IaaS to sync Corp-HQ via S2S-Tunnel. A small, disconnected company is bought by Corp. and should be onboarded to Corp-AAD without establishing any Trusts between their AD and Corp-AD.
    Is the following feasable or is there any easier solution:
    - Install P2S-Tunnel on the SmallCo. AD DC for AAD-Connect to reach out and OnBoard Small-Co AD-Users (without having to establish an IPSEC-Tunnel from/to Small-Corp because they have only NAT and no public IP-Ranges)
    - Use AAD PTA for SmallCo would only be possbile if AAD knew where the account was onboarded from to send out…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure AD Connect  ·  Flag idea as inappropriate…  ·  Admin →
  4. The new Azure portal is blocked on Firefox 53.0 (64-bit) on Linux.

    Secure Connection Failed

    An error occurred during a connection to portal.azure.com. Invalid OCSP signing certificate in OCSP response. Error code: SECERROROCSPINVALIDSIGNING_CERT

    The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
    
    Please contact the website owners to inform them of this problem.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow more than 250 characters for 'Sign-in Page Text'

    Currently the maximum character count for the 'Sign-in Page Text' is 250. This is not suitable for many organisations who want their staff to adhere to a longer Access policy.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  6. Security Reports Include other attributes in Reports

    I am missing the ability for the reports to include more attributes than the UPN, many organizations use another alternate id than their e-mail as a UPN and with that the Reports doesn't really give any value.

    So adding other attributes like smtp and sip would be beneficial for an example the users at risk report.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Identity Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Proceed with Sign-up if clicked on Sign-in and no account exists

    Currently, if the user clicks on Sign-in and use Facebook/Linkedin, if no account is found, there is a generic server error returned back to the website.

    Ideally, the system should display a more meaningful message or even proceed with the sign-up instead.

    Sign-up if the account is already in the system, works better, as the correct message is displayed.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  8. give the multiple user delete facility to login user

    suppose i am adding mote than 500 users to Azure AD from csv or excel file and i want to delete 100 or 200 user from Azure AD so at that time multiple delete option will be helpful to user otherwise he bored with his work.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide ability if we want to use SP or IDP auth for apps in the marketplace

    I'd like the ability to pick what form of auth is used for apps I install from the marketplace. For example, if I install the Salesforce app it only allows setup for SP. In order to use IDP I have to create a non-gallery app.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  11. Data Residency in HKDC, SGDC and Japan

    The Asia division of a global insurance company has many customer facing applications that would like to consider using our B2C services. Due to the regulatory requirement, they need the data to be reside in the local regions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  B2C  ·  Flag idea as inappropriate…  ·  Admin →
  12. Addition of DAU

    Add in DAU data

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  13. The AD blade does not load properly in chrome 57.0.2987.133 (64-bit)

    In other browsers (IE11, Edge, FF) this parts starts greyed out, but after seconds it is selectable.

    In Chrome it stays greyed out.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. shared mailbox

    How do I stop paying for whatever it is that is costing $$$$$$$$$$$$$? It looks like I'm being charged $9 per shared mailbox imported from o365 with no clarity as to who what why or how to fix.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  15. Login with live not working showing error

    This item might not exist or is no longer available. After clicking login with live . what needs to be done using hybridauth.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Developer Experiences  ·  Flag idea as inappropriate…  ·  Admin →
  16. consolidate the old MFA Trusted IPs page

    Collapse/consolidate the old MFA Trusted IPs page (contains bugs we've discovered into the Ibiza portal. Its very confusing & we've discovered bugs ).

    https://account.activedirectory.windowsazure.com/usermanagement/mfasettings.aspx

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Admin Portal  ·  Flag idea as inappropriate…  ·  Admin →
  17. I feel when we use **** directory option, it should be directed to selected one menu rather than main menu.

    I feel when we use **** directory option, it should be directed to selected one menu rather than main menu.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Azure Ad Connect - Add possibility to disconnect a jobject with custom Rule

    There is no-way to disconnect a connected object with a rule.

    CASE:
    - I've user Mark.Lee@tailspin.com has contact from a AD of my Contoso.com Domain
    - I've a custom rule that Set CloudFilter = true for all contact with @tailspin.com suffix address
    - I reiceve a user with same email address from AD tailspin.com

    PROBLEM:
    Both connector will joined to same metaverse object and user is not exported to Office365 and CloudFilter=true

    I'already found some workarounds to avoid this but these not acceptable from customer for workload needed.

    PROPOSAL FOR A NEW FEATURES:
    - Add possibility to disconnect a connector…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure AD Connect Health  ·  Flag idea as inappropriate…  ·  Admin →
  19. The Enterprise application pages stays in loading state in Chrome 56

    The page https://portal.azure.com/#blade/MicrosoftAADIAM/ManagedAppMenuBlade/objectId/{objectId} stays in loading state in Chrome 56.0.2924.87 (64-bit).
    It seems to work in other browsers though.
    No errors shown in dev console.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Why I can sign-in to Azure Portal or why I cannot?

    I have 2 test accounts (c0,c1), c0 can sign-in Azure Portal, c1 cannot. These 2 accounts are under their individual parent admin account (p0, p1), which I compared p0 & p1 on Office Portal Admin, and found no differences. And on Azure Portal, I cannot find any information on subscription of c0. I'd like to know why c0 can sign-in, c1 cannot.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base