(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. support multiple values for the same key when tagging. If i want to allocate multiple departments while tagging i should be able to do that.

    Currently AzureRM tagging only supports one value for one key. This means if i want to tag multiple departments to one resource it is incapable of handling it.

    45 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow granular management access of AAD groups by service principals

    We have a scenario where we would like to use automation to manage membership of an AAD group.

    We assign group owner permissions to the service principal. However, operations against that group (using Powershell cmdlets like Add-AzureAdGroupMember) fail with a 403 Forbidden.

    We cannot grant Directory.ReadWrite permissions to the AAD application, because that would allow write permissions on the entire AAD directory, not just the group that the AAD application owns.

    According to Azure support, the scenario where I would like my service principal to manage groups that it owns is not currently possible. Can we make it possible?

    41 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Allow GitHub Enterprise to be a source to sync Azure Automation Accounts

    Currently there is only three options under the source control blade which allows you to sync Azure Automation Accounts with the latest runbooks. I would like there to be an option to use GitHub Enterprise as a source as a lot of the work that is developed can not be stored on a normal GitHub and my organization pays for GitHub Enterprise

    37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. AADSTS50126: "Invalid username or password" returned even when the password is valid

    While trying to log in to Microsoft 365 with OAuth2, some customers are getting this error code, although the username and password is indeed correct.

    This is because this error code appears to be returned for another error situation which is not related to the password that the user entered.

    No matter the actual cause of the error, it is crucially important to properly pinpoint the actual cause of the error, so that the software can respond correctly. Different error cases need different responses from the software.

    From the client software side, the perspective of a client software developer, we…

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. Outstanding Payment

    Need Payment history and total outstanding per subscription.

    As a subscriber I can only see invoices at azure, but there is no payment history which tells me how and when azure has captured this payment.

    It is our legal right to see the payments captured by AZURE. Tomorrow AZURE go and capture another payment from my card how I will reconcile which payment is for what.

    If you are taking payment then you must show somewhere that we have captured this payment via this way against this invoice or for this purpose.

    Also there is no way I can see…

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  6. Make Azure DevOps Agents an Azure Trusted Service

    Make Azure DevOps Agents an Azure Trusted Service.
    It is very frustating having to code workaround because of this, i.e. when there are firewall rules for key vault or storage.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. Azure VPN with Azure MFA should require two-factor authentication every time it connects

    We are using Azure VPN client with Azure MFA, and the client requires the second factor (code via SMS) only when the user connects for the first time. After that, every time we click on the VPN icon, the VPN client connects automatically, ignoring the MFA requirement, even if we log off the user or turn off the PC. It seems that, after the first authentication with MFA, the client turns into a "one-factor authentication" access, requiring only userid and password. If someone obtains the Windows credentials for a user, an attacker with access to the laptop can connect remotely…

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  8. Privileged Identity Management (PIM) - Start and End Time in PIM email to be in local time not UTC

    Require new feature to customize the time from UTC to local time in the PIM email.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add the "created by" and "created on" metadata to Azure objects

    It would be helpful for each object in Azure to have the account that created the object and the date/time of the creation imbedded in the metadata for the object. This would avoid the current method of having to get that information from the Activity Log and store it somewhere else that is more permanent.

    29 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  10. App Service update history

    I would like to know the exact date and time when the Azure platform update was actually performed on Azure Portal.
    I've heard many complaints about not being able to do that.

    Many vendors need to report exact date and time to end users.

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. enterprise portal auditing

    The EA portal needs auditing capabilities.

    27 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  12. Monitor alert: Throttling Health Event's title and cause needs to be more specific rather than word like "UserInitiated"

    properties: {

        title: This storage account was throttled because it exceeded Azure Storage partition request per second, partition bandwidth, or IP scalability limits.,
    
    details: null,
    currentHealthStatus: Degraded,
    previousHealthStatus: Available,
    type: Downtime,
    cause: UserInitiated
    },

    ==========================

    Storage account throttling can be caused by busy storage partitions on the server side which is not related to customers' usage.

    The "UserInitiated" wording in the health event cause would lead to misunderstanding of reaching service limit when customers' traffic is not there yet. Maybe we can change the wording to "ClientInitiated".

    More specific alert cause can help both customers and support team to identify…

    27 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  13. Custom Roles AssignableScope for root ("/")

    Currently Custom roles cannot have an AssignableScope set to root ("/"). Capability must be addded to have all subscriptions federating to a certain Azure AD tenant inherit a custom role. Maybe the AssignableScope parameter must be modified to also accept a tenant id or name for the scope of the role. The global admin of the tenant must be afforded the privilege to create this role.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  14. AAS as a Data Source.

    Hi Team,

    Currently Azure is not supporting AAS as a datasource. Suppose i created the Datamodel in AAS and i want to use same in another AAS model, it is not working. Can we have any idea when it will support AAS as a datasource

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  15. Modify QnA Maker provisioning process to support selection of an existing App Service Plan instead of a new App Service Plan being created

    Provisioning a QnA Maker Service provisions a Public App Service App <yourAppsName>.azurewebsites.net, but you are not given any control over the App Service Plan for which the App Service resides. My first choice would actually be an App Service Plan in our ASE environment, but if that isn’t doable at least let us select one of our existing public App Service plans to host this in.

    A 1-1 ratio of App Service Plan to App Service is extremely inefficient.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  16. Migration of Azure CSP subscriptions to EA tenants

    It's relatively straightforward to migrate an Azure EA subscription into CSP, but not in the opposite direction.

    There's a workaround available to move CSP subscriptions out into EA tenants (by using a separate PAYG subscription as a temporary staging area), but it has issues and is not commonly documented.

    Please refine, formalise and publish the process.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  17. GiveSetting to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    we hosted application in Azure VM and configured WAF Application Gateway. But we are getting following error

    Request body no files data length is larger than the configured limit (131072).. Deny with code (413)

    For this we done so much googling and found the solution that we need to increase following parameters in the application gateway. If not possible then need configuration to by pass this limit checking so our application will not stuck because sometime application need to send request with this length.

    Request to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    Many others…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  18. [ASE] Improve the ASE Scaling operation time

    Scaling out our App Service plans in an App Service Environment can take over 30 minutes normally (sometimes >50mins). it's very impact the ASE application availability, we would like to know is there other way to reduce the time? Like:

    1) Is there any pre-allocated settings in ASE?
    2) Is there any action/plan to optimized the scaling time?

    thanks in advance.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enable reset of PRT to allow for immediate Eligible Device Administrator role through Azure PIM

    As it currently stands, if you want to permit specific sets of users to be Device Administrator "eligible" through Azure PIM you may have to wait up to 4 hours for the Primary Refresh Token (PRT) to be updated via Azure before your Azure AD joined devices will acknowledge the Device Administrator role.

    This is a big flaw which basically renders this PIM function useless and needs to be fixed by Microsoft. All other Azure AD roles within Azure PIM work just fine when assigning an "eligible" role.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  20. SQL Server Management Studio - IntelliSense for Azure SQL Datawarehouse

    Currently, we can't use IntelliSense for developing Azure SQL Datawarehouse in SQL Server Management Studio or even Visual Studio.
    That's a very basic feature for all developers and should be TOP(1) priority for your development team.
    Current (but not a very good one) workaround is using Visual Studio Code... but even here, there's a bug. IntelliSense only works, if the user has read permissions on EVERY database that is available on that Azure SQL Server.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 77 78
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base