When I run an ARM template that deploys a database by making a copy of an existing database it works perfectly. When I re-run that same ARM template it will fail the database deployment as the database already exists. I expect that as the database already exists it will leave it and skip this deployment.

reference cosmosdb from ARM template, similar to keyvault
This would be helpful for deploying parameters like IP lists on storage accounts, sql server. If I can reference a json array. current work around is convert to base64 and store in keyvault

"reference": {
"cosmosdb": {
"id": "/subscriptions/<subscription>/resourceGroups/<resourcegroup>/providers/Microsoft.DocumentDB/database"
},
"collection": "myjsonobject"
}

Currently Key Vault references is limited to 30. This seems like a very arbitrary limit. We currently have deployments that require more than that amount.

Check out session BRK3390 at Ignite 2018 for more info!

When including a Microsoft.Web/certificates resource in an ARM template, the deployment will fail with "Another certificate exists with same thumbprint XXXXXXXXXXXXXXXXXXXX at location xxxx in the Resource Group xxxxxx." if the certificate already exists.

The deployment should be idempotent like all of the other resource types and not fail if the resource already exists.

Otherwise, the certificate has to be deployed manually and cannot be included in an ARM template used for CI/CD deployments (ie: from VSTS)

app

I would like to see the ability to using management groups as the central management part for RBAC. This means that custom roles should be added to management groups because then I would not need to add custom roles to every underlying subscription.
If RG management would also be part of the management groups this would lead to a centralized point for RBAC.

The locks are fine however the lock is also applied/inherited on deployment resource which doesn't allow deletion of just deployments.

Deployments have a hard limit of 800. Because of the hard limit, we need to delete deployment resource regularly to make room for daily deployments.

We are finding a way to have lock applied on prod resource group and but then lets us allow to delete the deployment resource

WHY DO YOUR SERVERS ALL GET DISABLED AFTER THE FREE TRIAL????? I HAVE BEEN DOING WORK ON THOSE FOR WEEKS!!!!!! I HAVE NO PROBLEM PAYING BUT I THOUGHT IT WOULD BE SEAMLESS!!!!!

If I just wanted to search for Activity Log actions relating to 'Peer' I have to then hand select all '36' individual operations since there isn't a Select All feature. See screenshot

Using property copy in resources or variables can become complicated as the only value that can really change in each iteration is copyIndex().

It would be great if local variables could be used within these sections to simplify and make it more readable.

I have a couple of example files based on multiple webApps deployed into multiple location. The first works in the current schema, the second would be nicer if supported!

It would be great of these locals could also pull in reference(), parameter() and variables().

It would be useful to see what will be deployed after the parameters, variables, conditions, linked templates, etc...are processed.

Now the only way to get a secret is to pass it in each parameters file, it would be very useful to get a secret from keyvault in parameter default value. We are heavily rely on keyvault for our parameters.

Would be nice to have a custom RBAC role in the Azure portal created that allows a user to ONLY be able to set TAGS on resources, resource groups and/or subscriptions for billing purposes.

httpsOnly web app settings deployed using ARM not visible in portal but resource manager shows its set?

As an solution engineer, i would like to manage and pass security credential through key vault only but what i have noticed in custom arm template deployment, it is not accepting key vault information from parameter.jason file.
Can this feature enable?

Open source software applications, I love money it motivates the other hand. Love free, but earning is so much more.

As a User, it would be nice to build ARM Templates in a visual way. This would allow me to connect resources together, whether they exist or will need to be created at the time of building the template.

Example:
Create an Azure Function App that has HTTP Trigger, with Queue Storage as ingress and Table Storage as egress. Managed by APIM.

This would create a template for me and deploy the resources as well. I could then define specifics within the interface I am creating the template visually.