(General Feedback)
Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.
This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.
Remember that this site is only for feature suggestions and ideas!If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums
-
Allow tagging of "hidden" resources
Currently, you can tag most types of resources using portal.azure.com, Powershell or any other tool for that matter. Tagging "hidden" type of resources (for example Microsoft.Network/networkWatchers) is hidden on the portal, but they can be tagged by using a Powershell script which for example tags every resource inside a resource group.
This behaviour is inconsistent, because after this, listing tags on the portal show that the specific tag key:value pair is in use, but you won't see which resources use it. You need to rely on Get-AzureRmTag or other means to actually reveal which resources are tagged.
As of currently,…
14 votes -
EA: Managing subscriptions operations by multiple users, not by single account owner
This is regarding Azure account & subscription management in Enterprise Agreement
There is a scenario where the account owner is not available for considerable long time due to his/her sick/vacation leave or long biz trip for example, which cause subscriptions operations downtime.
To avoid that, we should be able to have multiple users for such subscriptions operations.14 votesFor your scenario, have you tried our RBAC and Admin roles features? https://docs.microsoft.com/azure/billing/billing-add-change-azure-subscription-administrator
-
Need more detailed level of firewall rule option to allow access from Azure Insight resources such as ADF,SA etc.
Azure SQL Database is a major output resource for Data Factory(ADF) and Stream Analytics(SA), but these PaaS applications do not have a static IP address.
Therefore making it impossible to setup a robust Firewall configuration.
We understand that [Allow access to Azure services] is designed to handle this sort of situations, but it is way too loose from security point of view, since it allows access from all the resources on Azure including those are NOT owned by the users.
which is a risk and to achieve more secured environment, many customers demand for a more detailed firewall option, which…13 votes -
Create RBAC role to buy VSTS extensions
Create a restricted RBAC role in ARM so users with this role on an Azure resource group or on the subscription, can buy VSTS extensions without the current need to be Contributor on the subscription level.
12 votes -
Allow Sticky tab Switching in Microsoft Teams
When switching back and forth from the "Chat" tab to the "Teams" tab in Microsoft Teams, your place in the "Teams" tab is lost and you have to browser to whatever Wiki/file/etc. you were looking at before.
It would be nice if switching back-and-forth between Teams tabs picked up where you left off.
12 votes -
aks+security
Currently AKS managed master is connecting to its nodes over internet. This will not work in case of private networks with internet connectivity disabled.
Since both the AKS managed master and nodes belong to the same data center (I assume), the connectivity between the AKS managed master and its nodes should happen over Azure managed infrastructure and avoid the internet all together.
12 votes -
Non-consumption marketplace services to show within the EA marketplace charges usage report
The request is for non-consumption marketplace services to show within marketplace charges usage report.
As some of the marketplace purchases are licensed based, there isn’t a sub ID that is shown anywhere on the EA portal as to which sub they are affiliated with.
Other consumption based marketplace charges can be seen with a sub ID if the customer goes to EA > Reports > Download Usage > Monthly Report Download > Marketplace Charges.
Please add license based marketplace services to the marketplace reports with the subscription IDs.
12 votes -
Application Gateway service tag for IPs used to obtain backend health probe status in the portal.
At this time in order for backend health probe status in the portal to work, we need to open port 65505-65034 on the app gw subnet to get a healthy status. Customers are not comfortable in opening these ports to the internet. We should create a Service Tag for source IPs in Azure that reaches out to the app gw to get this status. This would put the customer at ease and less reluctant on opening these ports.
11 votes -
Load balancer weight setting for backend nodes in a pool
Add the option to set “weight” to load balancer backend nodes in a backendpool. This enables the usage of active/passive virtual network appliances without the usage of route table adjustment scripts etc....
11 votes -
Enable encryption for Ubuntu 18.04 VM
Please implements Ubuntu 18.04 LTS disk encryption.
11 votes -
Azure Sponsorship
Please add spending limit for Azure Sponsorship, as it is not fair to the owner who has his/her PERSONAL credit card attached for a subscription that belongs to a corporate.
Upon depletion of the credit, the subscription shall be disabled and the owner's credit card shall not be charged, until the spending limit explicitly removed by the owner. Otherwise, this is a BIG TRAP that will put the owner in huge credit card debt (if the resources deployed are expensive).
10 votes -
Enable customer to request duplicate certificate from Azure Key Vault
Right now, customer uses DigiCert’s management portal to request duplicate certificates: https://www.digicert.com/ssl-support/wildcard-san-names.htm#sans_help_me.
It would be nice to if Azure Key Vault can help customer manage and auto update certificates to reduce manual work.
10 votes -
Improve SSL Certificate Installs
The process of updating your existing SSL certificates on an application gateway is overly complicated. Focus on making this a better user experience that doesn't require power shell and with clear instructions and documentation. Renewing SSL certificates isn't a task anyone wants to do and today's poor user experience is a detriment to the product.
10 votes -
Allow easy Security filtering through admin Interface or powershell for all services (IP Filtering, GeoLocation filtering, Account Filtering
We would like to have easy way from Service menu or Powershell, to filter access to service by IP, DomainName resolution, Mac Address etc...) instead of for example, manage it in the Web.cofig for Web App.
10 votes -
ask.azure.com
pl create ask.azure.com
where azure users can create stackoverflow like questions which can be answered by experts and other community members10 votes -
Open-source Azure Storage Explorer
Providing a github repo for Azure Storage Explorer would make it cheaper for Microsoft to develop this product, enhance it's quality and features, and let the community develop a browser-based version of the electron app.
10 votes -
Create Service Principal from CreateUIDefinitions like the Microsoft AKS definition has
I am trying to create a one click setup of an application running on top of Microsoft AKS. I want to create my UIDefinitions.json file, and I want it to have the option that Microsoft AKS wizard has which allows creation of a new service principal, and store the ID and securestring in a variable I can pass to my ARM template. However, I cannot find anything in the documentation that allows me to achieve that in the documentation (https://docs.microsoft.com/en-us/azure/managed-applications/create-uidefinition-overview) or the quick start templates on github.
How does one actually go about achieving this?
10 votes -
Add "Addtional Security Verification" page to Conditional Access
We need to add "Additonal Security Verification", which shows up for MFA enabled user to configure MFA setting, to the list of Cloud Apps in Conditional Access so that they can block access to the page for specific users or non admin users.
I have some customers whose admins configure MFA settings such as mobile phones and the method for their users manually, and do not want the users to change the settings, such as mobile phone number.
10 votes -
Add support for X.509 authentication
Add support for X.509 authentication. Allow me to configure which CAs to honor (allow me to honor just my own CAs). Allow me to associate X.509 certificates to Azure user accounts. This would enable authentication improvements for at least 2 use cases:
- Higher level of assurance (X.509 on smart cards) for authentication to Azure Portal (e.g., Global Administrator needs stronger authentication options than currently available).
- Mobile user authentication - certificates on mobile devices would be able to be used for authentication.10 votes -
Azure Data Lake Analytics: Schedule U-SQL Job
As discussed on Twitter (https://twitter.com/AzureSupport/status/1039492841431609344):
We currently have an Azure-only infrastructure, and we run both Azure Data Lake (ADL) and Azure Data Lake Analytics (ADLA). We use U-SQL jobs in ADLA to extract and store data from ADL for reporting and analytical purposes.
Because we have recurring jobs (both daily and monthly) we would like to schedule those to extract and store data without any human interaction.
Currently we see 2 options: automate a job-run through Data Factory, or Azure Automation (runbook that starts a U-SQL job). But a native scheduler in ADLA would be better. That way…
10 votes
- Don't see your idea?