At this time in order for backend health probe status in the portal to work, we need to open port 65505-65034 on the app gw subnet to get a healthy status. Customers are not comfortable in opening these ports to the internet. We should create a Service Tag for source IPs in Azure that reaches out to the app gw to get this status. This would put the customer at ease and less reluctant on opening these ports.

Create a restricted RBAC role in ARM so users with this role on an Azure resource group or on the subscription, can buy VSTS extensions without the current need to be Contributor on the subscription level.

it will be good if we have feature to resize the disk. Currently when we any disk size, we can not increase it. VMware technology has this feature .

When switching back and forth from the "Chat" tab to the "Teams" tab in Microsoft Teams, your place in the "Teams" tab is lost and you have to browser to whatever Wiki/file/etc. you were looking at before.

It would be nice if switching back-and-forth between Teams tabs picked up where you left off.

The request is for non-consumption marketplace services to show within marketplace charges usage report.

As some of the marketplace purchases are licensed based, there isn’t a sub ID that is shown anywhere on the EA portal as to which sub they are affiliated with.

Other consumption based marketplace charges can be seen with a sub ID if the customer goes to EA > Reports > Download Usage > Monthly Report Download > Marketplace Charges.

Please add license based marketplace services to the marketplace reports with the subscription IDs.

I'd suggest to have a functionality of Excel exporting in Azure Policy so security administrator or system administrator can export and report to ISM/CISO level.

For example, I should be able to sort my virtual machines by IP address.

AIP requires mail enabled groups, documentation states any type of mail enabled group even dynamic. However EOL Dynamic mail groups do not show in Azure AD.

Please implements Ubuntu 18.04 LTS disk encryption.

Please add spending limit for Azure Sponsorship, as it is not fair to the owner who has his/her PERSONAL credit card attached for a subscription that belongs to a corporate.

Upon depletion of the credit, the subscription shall be disabled and the owner's credit card shall not be charged, until the spending limit explicitly removed by the owner. Otherwise, this is a BIG TRAP that will put the owner in huge credit card debt (if the resources deployed are expensive).

pl create ask.azure.com
where azure users can create stackoverflow like questions which can be answered by experts and other community members

Providing a github repo for Azure Storage Explorer would make it cheaper for Microsoft to develop this product, enhance it's quality and features, and let the community develop a browser-based version of the electron app.

I am trying to create a one click setup of an application running on top of Microsoft AKS. I want to create my UIDefinitions.json file, and I want it to have the option that Microsoft AKS wizard has which allows creation of a new service principal, and store the ID and securestring in a variable I can pass to my ARM template. However, I cannot find anything in the documentation that allows me to achieve that in the documentation (https://docs.microsoft.com/en-us/azure/managed-applications/create-uidefinition-overview) or the quick start templates on github.

How does one actually go about achieving this?

We need to add "Additonal Security Verification", which shows up for MFA enabled user to configure MFA setting, to the list of Cloud Apps in Conditional Access so that they can block access to the page for specific users or non admin users.

I have some customers whose admins configure MFA settings such as mobile phones and the method for their users manually, and do not want the users to change the settings, such as mobile phone number.

Add support for X.509 authentication. Allow me to configure which CAs to honor (allow me to honor just my own CAs). Allow me to associate X.509 certificates to Azure user accounts. This would enable authentication improvements for at least 2 use cases:
- Higher level of assurance (X.509 on smart cards) for authentication to Azure Portal (e.g., Global Administrator needs stronger authentication options than currently available).
- Mobile user authentication - certificates on mobile devices would be able to be used for authentication.