(General Feedback)
Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.
This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.
Remember that this site is only for feature suggestions and ideas!If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums
-
Google App Engine is the best in terms of free tier for developers. I am sure Microsoft can afford it but they don't. That is too bad.
Google App Engine is the best in terms of free tier for developers. I am sure Microsoft can afford it but they don't. That is too bad. They will likely lose new developers to google.
569 votesThanks for the feedback.
-
office 365 group expiration
Within the Office 365 Group Expiration setup there should be a way to set it such that all groups *except* specific ones are subject to the expiration setting. As it stands now it's the other way around; all groups or only the selected ones. In an environment where users are permitted to created their own groups (something I was told even Microsoft allows) you really need the expiration feature enabled by default. But there are certainly use cases where as an admin you will want specific groups exempted from this setting.
123 votes -
Make DomainDNSName,NetbiosName & Samaccountname attributes avaialble to public to use AAD Join without AAD Connect
We use okta for synchronizing accounts to Azure AD.
We plan to use AAD Join for our windows10 devices, it works well with AAD Connect(As AAD Connect synchronizes attributes DomainDNSName, NetBIOS name & Onpremisesamaccoutnanme)
Okta could not update these attributes, I want to find a way to update the attributes(by using PowerShell or GraphAPI?).
And also would like to know if there is any possibility to sync MSDS-Keycredentiallink attribute to on-premise without using AAD Connect so that I can use windows hello.
70 votes -
Allow Static Public IP's on Virtual Network Gateways
Static Public IP's cannot be used with Virtual Network Gateways. This can potentially be very problematic if a Virtual Network Gateway ever needs to be re-created or re-provisioned.
Example: what if we have 30 separate tunnels to a Virtual Network Gateway and it needs to be re-created or re-provisioned? This would result in a new Public IP being provisioned (takes about 30-40 minutes - of downtime!) which would require 30 remote VPN Administrators to be engaged to rebuild their side of the tunnel. This could be easily resolved by allowing Static Public IP's to be associated with Virtual Network Gateways.
…
61 votes -
Add SQL Database & Data Warehouse as trusted Microsoft services in Azure Storage firewall settings
When we enable auditing & threat detection on SQLDB or SQLDW, we should be able to set up the firewall setting of Azure Storage. SQLDB & SQLDW is not included in the trusted Microsoft services now.
57 votes -
storage stamp option
Provide the option to define storage accounts to use the same of different storage stamps. we have scenarios where the ability to define same or different stamps make an huge impact in the end result.
55 votes -
Allow NSG for VPN Gateway Subnet
We want to connect several devices with our Azure VNET via the VPN Gateway. Therefore the VPN Gateway is configured for P2S connections.
We want to restrict the devices so that they can only communicate with certain other devices.
To implement this functionality we need to assign the VPN Gateway subnet a NSG. Furthermore this NSG should be dynamic, because the IPs provided by the VPN Gateway to its clients clould not be predetermined.
Currently NSGs are not supported for VPN Gateway subnets as well as there is no way to control IP allocation for connecting devices.
51 votes -
Moving IBM Mainframes to Azure
we need an easy way to lift and **** Mainframes/ AS400 to lift and **** to Azure. instead of replatforming if Microsoft can build a layer which AS 400 or Mainframe apps can run on, can help drive consumption of Azure. Hopefully Microsoft can do it before AWS
50 votes -
Expose IP address ranges via API
You can download an XML file of Azure IP address ranges from http://www.microsoft.com/en-us/download/details.aspx?id=41653. It's updated weekly.
It would be nice to be able to access this list via an API so that we could automate any changes required when the Azure's IP address list changes.
Kind of like what Amazon does: https://aws.amazon.com/blogs/aws/aws-ip-ranges-json/50 votes -
Allow custom code references in Application Insights multi-step webtests
Application Insights on Azure lets me upload a .webtest file to monitor application availability. My application is a REST/JSON service, and so my .webtest references a custom ExtractJSONRule derived from the ExtractionRule base class to pick out and check data from the JSON response. I can upload the .webtest file OK, but of course, without the custom C# code for the ExtractJSONRule, it always fails.
Please provide a mechanism to allow .webtest files which reference one or more custom .cs files for custom ExtractionRule and ValidationRule classes.
49 votes -
Harmonize the offer types (CSP/Open/EA/PAYG)
CSP is a great purchasing model for small and medium businesses, but has some serious problems.
1) Migrating between CSP and any other offer is a very laboursome and expensive project (not to mention that many resources cannot be migrated). This can cause Vendor lock-in and some other major risks for customers using CSP. Currently even PAYG to CSP is not easy.
2) CSP customers are unequal to other Azure users despite the fact that they pay the same or sometimes even more, because they do not have the same services available to them.
3) CSP resellers have to put…
48 votes -
For Virtual machines, allow configurable outbound TCP timeout.
Currently you can only configure the inbound tcp timout. The default outbound timeout for TCP connections is 4 minutes and is non configurable/by design. It's important that users have the ability to change this, perhaps up to a value of 30 which is similar to the inbound properties.
45 votes -
Feature of testing if alert mail or message would be sent correctly in Azure Monitor.
When I create an alert rule in Azure Monitor to send an email, I want to test if the email would be sent and received correctly.
Now, it doesn't seem to have this feature in Azure Monitor.
So it is better for me if there is this feature.44 votes -
Azure's status board availability
The Microsoft Azure status board should live outside Azure's ecosystem just because when there is a problem with some Azure´s service, the Microsoft Azure status page may not be available for the same issue.
44 votesThanks for the feedback. We are working on a fallback site for Azure Status for scenarios of Azure outages.
-
Allow Azure Resource Move for Virtual Machines with Managed Disks
The idea is simple. Please allow Azure Resource Move for Virtual Machines with Managed Disks attached.
43 votes -
Enable CSP Partners to offer Visual Studio Cloud Subscriptions through the scheme
Enable CSP to be used to fund the Visual Studio Cloud Subscriptions.
40 votes -
RBAC Role for Reserved Instance creation WITHOUT Owner role on the Subscription
RBAC role created so a group can be added for the single purpose of Reserved Instance creation, without keys to the kingdom (Owner rights). Capacity and Procurement would not need such keys as they would only be creating RI’s, following Least Privilege Access.
40 votes -
Azure Sql Import Bacpac slow
We are testing a production database migration to Azure SQL. The database is 50GB and even on the S3 tier we are going on 30 hours still and the import isn't complete (pegged at 100% DTU). At this point I couldn't even tell you when this will finish. I understand I could have chosen the highest premium tier to import this and it might have been quicker, however I only want to test this database and right now I've lost 3-4 days on this (importing at S0, S1 tiers). My suggestion is to allow an option when going through the…
39 votes -
Azure MFA needs anti-phishing features such as include location details and notification to users about new devices
Users can sometimes approve MFA notifications on their device because they do not know whether it is their device authenticating or a hacker who has phished their credentials. Therefore, to help users know why they are being asked to accept authentication include additional details such as the application name, IP address and location in the MFA prompt. Apple includes the location and a map of the location in their own two-factor implementation.
Additionally, users should be notified with an email any time a new device is used to authenticate to their account.
38 votes -
Prevent Creation of Classic Machine Learning Web Services so Tags can be Enforced
Prevent Creation of Legacy Machine Learning Workspace Commitment Plans and classic web services so Tags can be Enforced.
Our organization sets a Tag policy on resource groups so that newly created resources within that resource group will inherit tags. The main tag is 'Department Code', and is used for Chargeback for resource usage. Any Machine Learning 'classic' web services, that were created using the Machine Learning Studio portal will be created outside of the standard tagged resource group and thus, will not inherit standard tags used for Chargeback.
We also need a migration method for existing classic web services to…
37 votes
- Don't see your idea?