(General Feedback)
Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.
This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.
Remember that this site is only for feature suggestions and ideas!If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums
-
Azure Firewall Allow Control of SNAT
The Azure Firewall automatically performs a NAT for all non-private IP ranges. This can cause issues when public IP addresses are used internally (e.g. peering with service providers). When these IP addresses are routable on the internal network, it would be ideal not to perform a NAT for traffic to these destinations.
Adding the ability to control the SNAT would be greatly beneficial in these situations.
151 votes -
key vault is triggered once when the secret/key/certificate is found found near expiry in 30 days currently allow additional triggers
Allow key vault to trigger when a secret/key/certificate is 30 days, 15, 10, 5 and 1 day from expiry or make this customizable
129 votes -
Azure Data Factory (ADF) & Dynamics 365 / CDS Connectors
The option of using Azure Data Factory v2 to migrate data to the Power Platform / CDS / D365 is good, although there are a few features that are missing that almost negate considering the tool as a viable option. Two such examples are:-
- You cannot write to the createdby field on any entity as the createdby is always set in the context of the user in the Linked Service and does not respect the data that is passed to it as part of the Sink data source
- There is no way to migrate data into the native CDS /…
116 votes -
Make Azure available in Haiti
Microsoft Azure should be available for developers and businesses in Haiti. This country lack of a power supply system you can rely on for business, so the cloud is our best options. Please consider adding Haiti in the list of supported countries while signing up for Microsoft Azure.
107 votes -
Easy invoice management (especially for many subscriptions)
It would be nice to have one list of all invoices. It is important especially in case where there are many subscriptions within one account.
And this list should have invoice title on it, now there are only dates.
Now it is very hard to find invoice using invoice title (using bank statement)91 votesHi there,
This is one of the many improvements our development team is hoping to include in future iterations of our product. I can’t guarantee that we have the resources to get this done any time soon, but it definitely should be in the pipeline.
-Adam (Azure Billing Team)
-
Authenticate to Azure Files from Azure AD joined device
We can use Azure AD DS and AD (in preview) to authenticate users to Azure Files, but only if their device is Azure AD DS joined, or AD joined respectively. I want to be able to do this from Azure AD joined devices.
71 votes -
support multiple values for the same key when tagging. If i want to allocate multiple departments while tagging i should be able to do that.
Currently AzureRM tagging only supports one value for one key. This means if i want to tag multiple departments to one resource it is incapable of handling it.
62 votes -
Allow Azure CDN to display the Twitter card
Currently, any Microsoft Standard CDN powered website will not allow the Twitterbot to access the required meta tags for displaying a Twitter card. This is a huge setback for anyone looking to promote their Azure-powered site on Twitter.
Can you please allow the Twitterbot to display the Twitter card?
For reference: https://webmasters.stackexchange.com/questions/127812/twitter-cannot-fetch-content-from-our-domain-hosted-on-an-azure-cdn-even-though
61 votes -
Support for SSL passthrough with Azure Front Door
I want to transfer a client certificate to the backend with Azure Front Door.
However, Azure Front Door doesn't support the SSL passthrough function.
I would like to support transferring the client certificate used in the TLS session established between Azure Front Door and the client to the backend.56 votes -
RBAC Role Assignments 2000 limit Constraint
Hello Team,
Customer is having high distress in regard to the RBAC Role Assignments 2000 grant limitation. Customer is using Managed Identity and Storage access patterns relying on RBAC grants, it worried customer that it’s a trap and customer will hit that limit in a very short time. These RBAC roles are so useful for the customer but it’s only a matter of time before it hits the limit.
Thank you for your consideration.
56 votesApologies for the delay in updating this item. We are aware of the challenges around this limit and are actively working to be able to raise it; however, we don’t have an ETA yet.
We will update this item as we get more clarity on the timeline. Stay tuned and thank you for the understanding.
-Arturo Lucatero
@ArLucaID -
Allow granular management access of AAD groups by service principals
We have a scenario where we would like to use automation to manage membership of an AAD group.
We assign group owner permissions to the service principal. However, operations against that group (using Powershell cmdlets like Add-AzureAdGroupMember) fail with a 403 Forbidden.
We cannot grant Directory.ReadWrite permissions to the AAD application, because that would allow write permissions on the entire AAD directory, not just the group that the AAD application owns.
According to Azure support, the scenario where I would like my service principal to manage groups that it owns is not currently possible. Can we make it possible?
50 votes -
Support proxying of NTLM traffic for Application Gateway/WAF V2
Instead of Application Gateway/WAF V1, the Application Gateway/WAF V2 doesn't support NLTM traffic proxying. This prevents organizations to publish LOB-apps that require NTLM authentication on their backends, and thus the ability to use the modern scaling capabilities of AG/WAF V2.
50 votes -
Azure VPN with Azure MFA should require two-factor authentication every time it connects
We are using Azure VPN client with Azure MFA, and the client requires the second factor (code via SMS) only when the user connects for the first time. After that, every time we click on the VPN icon, the VPN client connects automatically, ignoring the MFA requirement, even if we log off the user or turn off the PC. It seems that, after the first authentication with MFA, the client turns into a "one-factor authentication" access, requiring only userid and password. If someone obtains the Windows credentials for a user, an attacker with access to the laptop can connect remotely…
48 votes -
Cost Management Export API should Export Cost and Amortized Cost in the same file
When using the export API to export my costs, I should be able to include Amortized and non-amortized Cost in the same file. This would assure that if I need both data sets, they are assured to be using the same time range, and also would prevent me from having to join the data based on the line item IDs.
48 votes -
Enable Oauthentication 2.0 on Power Automate Service Now Connector
The Service Now Connector only support Basic Authentication.
In our company the Infosec team do not allow any connection with Basic Auth.
For that reason is very important enable another authentication method48 votes -
SQL Server Management Studio - IntelliSense for Azure SQL Datawarehouse
Currently, we can't use IntelliSense for developing Azure SQL Datawarehouse in SQL Server Management Studio or even Visual Studio.
That's a very basic feature for all developers and should be TOP(1) priority for your development team.
Current (but not a very good one) workaround is using Visual Studio Code... but even here, there's a bug. IntelliSense only works, if the user has read permissions on EVERY database that is available on that Azure SQL Server.47 votesWhile IntelliSense support for Azure SQL was completed, we do not have plans to add support for IntelliSense with Azure SQL DW.
-
extend the 30 day trial period, it's just not enough time to learn azure and write a new product to run under it. www.aunebakk.com
extend trial period
46 votes -
CentOS Data Science VM
Microsoft announced Deprecation of CentOS DSVM Images.
Then Ubuntu is the only Linux flavour in Data Science Virtual Machine .
CentOS is considered to be a more stable distribution compared to Ubuntu because package updates are less frequent. Also Enterprise Linux (CentOS) is considered more secure out of the box.Depreciation notification - https://docs.microsoft.com/en-us/azure/machine-learning/data-science-virtual-machine/reference-deprecation
Considering these facts we need a Data Science Virtual Machine image with CentOS Operating System , with latest version (CentOS 8)
44 votes -
alert when a VM I/O limit is reached
When a VM hits its global VM-wide IOPS or bandwidth limit and throttling kicks in, provide a facility for creating an alert based on this situation.
Currently, the methods to detect I/O throttling rely on collecting guest OS statistics and comparing them to the limits specified by Azure. It would be a real benefit to determine at the hypervisor level when I/O throttling has taken place and record this in customer-visible metrics. These metrics are already internally visible to Microsoft support, so the data is collected-- just not presented.
At a minimum, the disastrous situation where whole-VM I/O throttling has…
43 votes -
Auto-renew of certificates should create and event in the portal in case GoDaddy change their policies and need aditional validation.
Auto-renew of certificates should create and event in the portal in case GoDaddy change their policies and need aditional validation.
Even certificate with Auto-Renew, because changes of policies of GoDaddy Azure didnt renew automaticly like was configured.
Seems GoDaddy sent an email to admin of Azure account but should appear in the Portal an alert about certificate expiration.
43 votes
- Don't see your idea?