Storage

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  2. Life cycle policy prefix match shall match container name instead of start with

    Currently when we set prefix match for container name in life cycle policy is actually query as container name start with which will affect all container name using similar container name . For example i got 2 container ALI and ALI-Monthly. If i put prefix match equal ALI. Both blob files in container ALI and ALI-Monthly will get deleted. Please enhance it so that only ALI will get deleted.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  3. Option to whitelist all internal data center IP addresses

    Currently there is no way to whitelist all of the internal IP addresses used in a data center. This means that if you have an Azure function app running in the same data center as your storage account, you will be IP restricted.
    Can we get a check box added in the "Firewalls and virtual networks" section that whitelists all IPs used by the data center that the storage account is hosted in?
    Thanks!

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  4. Filter and sort files/blobs easily

    Enable filtering of files/blobs by their type rather than only their name, and enable ordering list per date of modification or file size.
    Right now it's a bit cumbersome to use when we're debugging.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  5. Netapp Files AV Offload

    Azure Netapp Files should be able to offload AV scannign to a number of VM's running the stnadard ICAP model as it can when deployed onpremise.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  6. Please add Azure Disk Encryption support for RHEL 7.7 and 8.0 and CentOS 7.7 and 8.0 (as soon as it's available).

    Please add Azure Disk Encryption support for RHEL 7.7 and 8.0 and CentOS 7.7 and 8.0 (as soon as it's available).

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  7. Make storage service logging ARM managed

    Currently, it appears that the storage account diagnostic settings are controlled via service provider API and not ARM API. Therefore, Azure Policy cannot enforce storage service logging settings, although such logging can be a security requirement. From that perspective, it would be better if storage service logging (and perhaps the diagnostic settings generally) were moved under the control of the ARM API and given Azure Policy aliases.

    This is a similar request to:
    https://feedback.azure.com/forums/217298-storage/suggestions/34242376-azure-policy-for-preventing-public-blob-containers

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  8. User assigned identity in storage account (ARM template for custom key SSE)

    We are trying to define ARM template for storage accounts using custom key for SSE. Such definition is required for Azure Blueprints.

    Currently the only way to enable custom key for SSE is 3 step process: 1-Create SystemAssigned identity in storage account, 2-Update Keyvault access policies for that identity, 3-Update storage encryption settings.

    If we can get User (customer) assigned identity into storage account for accessing Keyvault, then we can pre-prepare / isolate step 1 and 2. Then we can have ARM template definition with custom key for SSE defined for a new storage account as a single step (3).

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  9. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow Azure SignalR service CORS rules to be applied via ARM template

    There is currently no support to configure CORS settings of an Azure SignalR Service using ARM templates.

    (See template reference: https://docs.microsoft.com/en-us/azure/templates/microsoft.signalrservice/2018-10-01/signalr)

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  11. Create an Azure Instance type with NVDIMM memories for high speed Storage Cache

    An NVDIMM (https://en.wikipedia.org/wiki/NVDIMM) is a type of memory used by Storage vendors as local cache, to accelerate High Performance Computing, Deep Learning, Deep Analytics, Simulations, and other storage-and-compute-intensive applications.

    Currently no cloud vendor supports instances with NVDIMMs, and Azure could break new ground here. We already have GPU's, FPGA's and other specialized hardware on our instances.

    NVDIMM would enable certain ISVs who cater for the HPC, Deep Learning, Simulation, and Deep Analytics crowd, and enable them to provide innovative solutions that today only exist in Private Cloud on on-premises applications.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  12. Immutable storage cannot be unlocked

    Function: Immutable storage

    Issue: Customer can easily lock his resources in storage accounts, but he cannot unlock them by himself when the lock is no longer needed.

    Ref document: https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blob-immutable-storage#faq

    Recommend: Provide an "unlock" button to customer.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  13. App Service AAD Authentication on Azure Storage Static Site Hosting

    Currently, after exposing a site through Azure Storage Static Site Hosting, the only login method is to use ADAL.js or similiar. This means that no private info can be kept in the static site, and has to be retrieved from a backend which is secured using AAD. This is because even if I redirect to login, search crawlers will pick up the info.

    In practice, as soon as I have a site with potentially sensitive info on it, I drop to using an App Service for just one feature: AAD Authentication.

    If we could have a system identical to App…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  14. Include Logic Apps in the Trusted Microsoft Services for Storage Accounts

    Include Logic Apps in the Trusted Microsoft Services for Storage Accounts when configuring diagnostic settings in the Logic App to "archive to a storage account". Security Center flags logic app for not having this configured but then after configuring the storage account is flagged for not restriction access, "Restrict access to storage accounts with firewall and virtual network configurations (Preview)". Since the logic app can not be assigned to a virtual network this cannot be resolved/secured properly without taking my environment in to an App Service Environment.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  15. Include Logic Apps in the Trusted Microsoft Services for Storage Accounts

    Include Logic Apps in the Trusted Microsoft Services for Storage Accounts when configuring diagnostic settings in the Logic App to "archive to a storage account". Security Center flags logic app for not having this configured but then after configuring the storage account is flagged for not restriction access, "Restrict access to storage accounts with firewall and virtual network configurations (Preview)". Since the logic app can not be assigned to a virtual network this cannot be resolved/secured properly without taking my environment in to an App Service Environment.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  16. API / CLI Request for max allowed size of storage account

    We have to know for an automation purpose the maximum size of storage accounts in all azure regions. There is currently know way to identify via API / CLI the max possible account size per region,

    Based on that, we have to create alerts rules for the storage accounts to monitor the used capacity / threshold.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  17. Forecast or Show Approximate Storage Size for Selected Items for Azure Backup before the actual/scheduled Backup

    Hi Azure Microsoft Team

    Highly appreciate if you can calculate or forecast the selected items to Backup in the Schedule Backup Wizard for Azure Backup so that we can determine the file size storage are being backup rather than after the backup job success.

    It will be another awesome feature to be added.

    Thank you

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  18. Search for container or files based on a date or date range

    I would like to search for blobs (container or file) by single date or date range using either Microsoft Azure Storage Explorer on my desktop or portal. This will allow me to delete or review items without having to know the name of the container or the file.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  19. Give size limitations on imports and exports. Is there any size limitation especially dealing with drives.

    Please update the documentation with import/export sizes and increase the level of detail with application in limitations.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  20. Firewall rule that can accept connections from VNET on the other AAD tenant

    Currently Storage firewall have a limitation, that source VNET must be in the same AAD tenant.
    https://docs.microsoft.com/en-us/azure/storage/common/storage-network-security?toc=%2fazure%2fvirtual-network%2ftoc.json#required-permissions

    It would be nice if cross tenant connection is enabled. It is quite useful to protect storage data by VNET basis and at the same time can accept connection from other partner companies who want to work on the specific storage account.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5
  • Don't see your idea?

Feedback and Knowledge Base