Azure Resource Manager

How can we improve the Azure Resource Manager?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Application Gateway configuration operations are extremely slow

    I know there is already a post on this, but as it has apparently been resolved (it has not) it seems to be being overlooked.

    https://feedback.azure.com/forums/281804-azure-resource-manager/suggestions/19119910-application-gateway-management-operations-are-agon

    When configuring any resources within the Application Gateway, everything takes such a long time, 5-10+ minutes is not uncommon to add a listener or a rule.

    I have also found that you have to wait for the last request to complete before starting to add any other gateway feature as if you do not it is likely to error the original request.

    Please can you look into this, as it is unbelievably time consuming.

    35 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  2. Increase Keyvault Reference Limit in Parameters from 29 to 60+

    As of right now, the communicated limit for keyvault references in a parameters file is "30", but is actually in practice 29 (appears to be a bug?).

    This limitation is quite low for mature systems. Take, for example, the following potential data points:

    - Multiple SQL ids/passwords, storage account keys, AI instrumentation, Redis cache credentials, etc. for connection strings
    - App to app communication creds/API keys
    - Programmatically created dynamically named/numbered resources
    - References to signing keys for different purposes

    Many of the clients I work with are struggling with this issue, which seems easily fixable by increasing the limit…

    16 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Azure Deployment Manager  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog. Since this request came out of an escalation, I’ve engaged the feature owner to take a look and suggest next best step to validate and resolve the reported bug.

  3. Add DateTime calculation Capabilities with utcnow() in ARM Templates

    Having the possibility to generate SAS Tokens using listaccountsas() is a great step forward in arm template functions as it enables us to generate tokens to make use of linked templates residing on protected storage. However, we still have to provide a static value for token expiration to make use of that function.
    Being able to use datetime calculation functions together with utcnow() would enable us to close a gap and generate SAS tokens dynamically.

    A possible scenario could look like:

    addhours(parameters(utcnow(),1))

    and provide the result as expiration time inside the listaccountsas() function

    22 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  4. Creation/updation of Metric alert on Application Insights's Custom metric through ARM should be allowed even if there is no data emitted.

    As of today, if there is no data emitted in the past 24 hours for a custom metric at app insights, ARM does not allow to create or update a metric alert and shows "metric name not found" Error.

    To create/update an alert we have to wait for the data logging/emitting which does not make sense. It leaves us to perform two ARM deployment while it can be achieved in a single one.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Support ARM Template Deployments on Management Group Scope

    Azure Resources can be deployed on subscription or resource group level, but not on management group level.
    My particular use case is the deployment of Policy Definitions & Assignments using ARM Templates. While the deployment succeeds, it's not possible to define a management group as the deployment scope. As a result, the policy definition has the subscription assigned as scope and cannot be assigned on a management group level.
    The API version 2018-05-01 supports the argument "managementGroupId". https://docs.microsoft.com/en-us/rest/api/resources/policydefinitions/createorupdateatmanagementgroup

    18 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Specify CostCenter when creating Subscription from API

    It would be realy helpfull If I could specify the costcenter during the creating of a subscription.

    Currently there is no way to do this when creating an subscription
    https://docs.microsoft.com/en-us/azure/azure-resource-manager/programmatically-create-subscription?tabs=rest

    Without this i have to sign in to the EA Portal and specify the cost center manually

    8 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  7. Support linked ARM templates on private vnets

    In short, I'd like to be able to use BLOB storage on private vnets, and allow access to that storage when deploying with ARM templates. It shouldn't be necessary to open the BLOB storage up to public access (even if protected by SAS tokens) just to use the storage account during ARM deployment.

    My preferred solution is to either have the ARM deploy servers included in the "trusted Microsoft services" that I've granted access to the storage account; or add another checkbox (similar to keyvault) granting network access to the storage account when accessed during deployment.

    For example, I should…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  8. Add Set-AzSubscription cmdlet to Azure PowerShell AZ Module

    New Azure PowerShell module (AZ) has a cmdlet (Get-AzSubscription) to get list of all the Azure subscriptions. I did not find similar (Set-AzSubscription) cmdlet which I could have then used / piped along with Get-AzSubscription cmdlet to change active subscription. I have to rather use Set-AzContext cmdlet to do the same. Set-AzContext though does have its counterpart Get-AzContext to get current subscription information.

    Point is every 'get' cmdlet should be paired with a 'set' cmdlet to make it easy for user to understand its purpose.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  9. Deleting Process

    My ideas to create a subscription based on Dev,test or production environment,reason for this any resource can be deleted by click of a button,if you want to win a customers confidence on an virtual IT infrastructure on the cloud it has to be resilient like a physical asset that no matters which employee is administrating the cloud owner knows that nothing can be deleted in virtual world without any intimation or outages and the asset is safe for one week even after deletion.

    Thought process is to enhance the resource lock process for production environment where virtual servers in prod…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  10. duplicate resource group button

    I think it would be very useful to have a functionality that would allow cloning a resource group, for example a typical button or something like that.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  11. Deploy-AzureResourceGroup.ps1 relies on outdated AzureRM module instead of new AZ module

    Azure Resource Group Visual Studio template generates Deploy-AzureResourceGroup.ps1 that relies on outdated PowerShell module - AzureRM. New module named AZ should be used.
    Also, this script doesn't contain a #Requires -Modules instruction for non default modules, which leads to errors in the middle of script execution for those, who already migrated to AZ module.

    https://docs.microsoft.com/en-us/powershell/azure/new-azureps-module-az?view=azps-2.4.0#continued-support-for-azurerm
    "The existing AzureRM module will no longer receive new cmdlets or features."

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
  12. Support tags for individual machines in a Scaleset.

    In AWS for example, an instance in an auto scaling group is exactly the same as any other instance and can be referenced individually by it's instance ID. Additionally, Azure itself has a unique "name" identifier for each instance in a Scaleset, why not just add this as it's resource identifier as well? It seems that It's impossible to individually tag instance in Azure VMSS as there is no resource type for VMSS instance, just for the type of Microsoft.Compute/virtualMachineScaleSets.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Apply tags from the day resources are created and not the day the tags are created.

    Apply tags from the day resources are created and not the day the tags are created. Currently tags are only available from the day the tags are created and not the day the resources were created.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  14. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  15. Certificate Manager on Azure like AWS Certificate Manager

    AWS has a Certificate Manager service that can easily provision, manage, and deploy public and private SSL/TLS certificates for use with AWS services.

    https://aws.amazon.com/certificate-manager/

    It would be great if Azure can provide similar service so that customers don't have to buy and bring their own ssl certificates when using Azure services.

    I am aware that Azure CDN supports custom domains and it can automatically provision a custom ssl certificate for that domain for free. But you can't do similar things on Application Gateway, or Azure Web Apps, etc.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Please increase the subscription 12,000 read requests per hour limitation

    We have a subscription's "12,000 read requests per hour" limitation: https://docs.microsoft.com/en-us/azure/azure-resource-manager/resource-manager-request-limits.

    It can't fullfill customer requirement when the subscription is shared by multiple AAD client application.

    Please increase this limitation

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  17. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Increase RBAC Role assignment limit or allow Resource Group nesting

    With the limit for RBAC Role assignment at 2000, the number of role per resource groups can be attained relatively quickly with larger deployments. I was thinking of 2 ways to bypass the issue, either allow us to increase the limit to Role Assignments in a subscriptions or allow us to do resource group nesting. That way we could apply the roles to the main resource group to use inheritance instead of using multiple role assignments for all the similar resources.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow count = 0 for copy in ARM template

    Copy command for ARM templates has a paramter called count which determines the number of times it iterates to create the resource. This paramter must take a positive number (not 0). This causes a problem when a template could be reused but the resource that copy applies to is not needed, so the count could be set to 0.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  20. restoring a deleted Resource group as building the resources from activity log takes much time if the RG is deleted by mistake

    A feature for restoring a deleted Resource group would be great as building the resources from activity log (preview) takes much time if the RG is deleted by mistake which leaves many resources deleted.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

← Previous 1 3 4 5 20 21
  • Don't see your idea?

Azure Resource Manager

Feedback and Knowledge Base