Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Storage

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow automation account to access storage account

    If options 'selected networks' is selected in storage account's firewall, we can not access the storage account contents from the Automation Account runbooks. Automation account is not considered as trusted Microsoft service, so, by checking the "Allow trusted Microsoft services to access this storage account" option does not work. We can add the public IP addresses to whitelist certain IPs, but automation account takes wide range of IP addresses (over 270 small ranges) and they can change over time.

    The best way to allow automation account runbooks to access storage account is allow the option of adding service tags (like…

    12 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  2. Stored access policy for Storage SAS

    As per this documentation, I can see that "Stored access policies are not supported for the user delegation SAS or the account SAS.."

    https://docs.microsoft.com/en-us/rest/api/storageservices/define-stored-access-policy

    Ask: Are we planning to implement Stored access policies for the account SAS ?

    12 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  3. Alert on percentage use of a storage account

    Currently, the only metric on which an alert can be created on a storage account usage is usedCapacity(Avg) which is in bytes. A feature where an alert can be created for a certain percentage of storage account being full would be very helpful to monitor the usage of the storage account. For example, if a user wants to create an alert when 80% of the total capacity of a storage account is used, he should be able to do that very easily using portal, Azure CLI, and Azure PowerShell.

    28 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  4. Relax the restrictions on storage account name

    Unlike most other azure resources, storage accounts have an overly strict naming restriction (must be globally unique, 3-24 length of lowercase letters and numbers only).

    This means Azure users cannot add any meaningful naming conventions to them compared to other azure resources - e.g. they can't contain hyphens, must be less than 24 characters, they can't have the same storage account name per environment, and have to be different GLOBALLY, etc.

    This restriction is overly limiting and means storage accounts are a pain to manage.

    I think this restriction only exists because the storage account name is put in the…

    34 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  5. Extend lifecycle management to support deleting containers

    Unless I am mistaken, provisioning of lifecycle rules can support deleting only blobs (blockBlob, appendBlob). This request is to extend that to allow deletion of storage account containers

    7 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  6. Azure File Sync: Allow to change Sync Group Name

    Currently I backup my Drives in Azure using my machine name + driveletter in azure sync groups as name. In case I migrate my data on local machines I would love to change the Sync Group name accordingly. Currently this is not supported.

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  7. ARM resource for Blob Container Stored Access Policies

    Please provide an ARM resource for Blob Container Stored Access Policies.

    Our deployment currently has to do a little dance: deploy a Microsoft.Storage resource with its own IP added to the Allowed IPs ... ensure a Stored Access Policy exists ... then remove its own IP from the list.

    This dance is unnecessary complexity, and today is causing us grief because today Storage firewall updates are being very random and slow to take effect.

    We can skip the dance if we could just express the SAP as another resource in the template.

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add Microsoft.Web (App Service & Functions) to Resource instance Option List

    In the Resource Instance Rules feature introduced on below news release, we'd like Microsoft.Web to be added.

    https://azure.microsoft.com/ja-jp/updates/storage-resource-instance-rules-preview/

    6 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  9. Have the possibility of changing the ForEach limits in the logic app created by the Tasks.

    Our team tried to create a Task to delete old blob files inside a Storage Account we have, but after we created the task and it ran successfully we didn't see a difference in the folders that has the format of folder/YYYY-MM-DD/Hour. Each hour folder has many blob files, which was the reason of why we didn't see the difference, because there is a limit on the ForEach condition of 5000 which didn't allow to delete all the files we wanted to delete, the work around we implemented was to reduce the recurrence to run from x in x minutes…

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  10. Azure Storage Explorer Copy Paste Option grayed out

    Azure Storage Explorer support variety of features such as Copy, Paste, Clone etc. However, we did not see any documentation which explains which roles and permissions should be set to view these feature.

    Having such documentation should help us.

    9 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add email report for the lifecycle management executions

    Azure has provided the lifecycle management to clean up old files but we are not sure it can 100% delete those target files. Does it make sense for Azure to provide an option of email recipients during the rule setup? If it does not work as expected, it will send out corresponding alert to the email recipients.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  12. Relax Storage account name rules for improved readability

    Why can Azure storage account name be only up to 24 characters and cannot contain anything besides numbers and lowercase characters? Most Azure services allow at least "-" character, but Storage and Kusto are notable exceptions.

    I love to have an incident at 3 am and figure out if it is prodscr1weuncasrlt or prodscr1neuncasrlt, vs prod-scr1-weu-cas-rlt.

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  13. Support disabling "account key" based authentication to an Azure Storage Account

    Authenticating to a storage account using an AD principal is a greatly improved method of authentication, however since account key based authentication is always enabled there remains a critical security threat vector if since a key was compromised or inadvertently disclosed.

    It would be great if it was possible to entirely disable or block account key authentication for a storage account, or even to disable account key authentication for individual services (blob,queue,table).

    Taking the idea further would also allow for granular control of which containers/queues/tables would allow access key authentication.

    This would be an explicit choose by the user and…

    6 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allowed Access to Trusted services should be more granular

    Allowed Access to Trusted services lumps general access to some resources in with allowing more tightly control access for resources such as Cognitive Services via assigning roles to the instance Managed Identity. Why not split these categories into two flags?

    4 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  15. Flask's send_from_directory from Azure Container

    Does sendfromdirectory in Flask support the use of paths in azure storage container? The current test is not feasible.

    At present, sendfromdirectory only supports the use of the application path under the webserver.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  16. Alerts for expiring SAS key and storage account expiry

    Since we can't automatically renew SAS keys then we should be able to set alerts when a key or storage account comes close to expiry.

    31 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  17. Pass SAS Token in Authorization header

    It should be possible to pass a SAS Token in the Authorization header when accessing Azure Storage resources. It's more a secure and generally better design than passing SAS token as an URI parameter.

    Currently (see linked docs for ref) when using SAS Token it have to be passed in the URI as a parameter.

    I think such approach is less secure insecure: even when using HTTPS URI parameter is possible to be intercepted:
    - server can save it in request log
    - browser can save it in browsing history and it's possible to read it from history - by…

    52 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  18. Which Microsoft Azure Certification is designed for beginner?

    Since you are looking for Microsoft Azure entry level certification, the answer seems very simple and straightforward. Microsoft AZ-900 exam or Microsoft Azure Fundamentals certification is the way to move up the ladder.

    The Microsoft Azure Fundamentals AZ-900 exam will definitely help you validate your skills and knowledge of the key Microsoft Azure concepts. Then, depending on your learning and experience, you can choose an other Azure certification.

    https://www.justcerts.com/microsoft/microsoft-azure-fundamentals-certification-exams.html

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  19. Log entry when customer managed keys are auto-rotated

    Currently there are no logs generated when Azure storage encryption keys are auto-rotated.

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow Restriction to Web Apps

    Add Azure Web Apps or App Service Plan as an object we can use in the restrict access to. in the list of resource types in network security. The new in preview feature lists many types but not web apps. thanks!

    3 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6
  • Don't see your idea?

Feedback and Knowledge Base