As an Azure VM user/administrator, I would like to be able to take an existing VM priced at one rate, and "upgrade" the pricing to include licensing for products installed after provisioning. I would like this to provide flexibility (e.g., if I want to install SQL Server on a Windows priced VM, without losing install/configuration work already undertaken on that VM and without independently licensing SQL; or if I want to add BizTalk to a Win/SQL-priced VM). I would also like this to allow simplified compliance (e.g., a Windows-priced VM is found to have SQL Server installed after provisioning), to allow upgraded/hourly pricing to be applied to an existing VM to reflect installed Microsoft products (at least).

The current available tools for visualizing and alerting on available Disk Space for Azure Virtual Machines should be expanded. In the Dashboards module, there is no Live Tile that would allow you to see a Virtual Machine's disks and available space. You can get some data through custom queries, but these queries are manual-refresh only and are not truly suited to a live Dashboard environment.

Similarly, there is no way to create an Alert for low disk space in the current Alerts module. In Alerts (Classic) there was a % Free Disk Space - this is not sufficient because it would not alert you to an individual disk being full. In Alerts (non-classic) there is no Alert Criteria in either Disks or Virtual Machines that would allow you to monitor the free space associated with any disks on a Virtual Machine.

We are using New-AzureRMSubscription to automatically create subscriptions. After creation we see that the Account Owner is made Service Administrator of each subscription that is created via this way.
There is a risk that, when the credentials of this account owner are confiscated, the attacker takes over control, as service administrator/ (service owner), of all the subscriptions.
This risk can be mitigated by having the possibility to assign a different identity as service administrator for each subscription created.
If we create such an subscription via the enterprise portal, we already have the possibility to assign a different identity as service administrator.
It wwould be of great importance to us when we also have the same possibility to specify a different identity as service administrator when using the API's.

Azure SQL Database is a major output resource for Data Factory(ADF) and Stream Analytics(SA), but these PaaS applications do not have a static IP address.
Therefore making it impossible to setup a robust Firewall configuration.
We understand that [Allow access to Azure services] is designed to handle this sort of situations, but it is way too loose from security point of view, since it allows access from all the resources on Azure including those are NOT owned by the users.
which is a risk and to achieve more secured environment, many customers demand for a more detailed firewall option, which will allow specific PaaS services level access to Azure SQL DB. 

**The case** :
Trying to switch from Pay-as-you-go to a dealer – COMPAREX AG.
The process is tedious and slow and at the end I arrive with a lot of questions regarding the safety of the transfer of all the resource groups of production applications! See here for an example :
https://feedback.azure.com/forums/34192--general-feedback/suggestions/35347903-make-subscription-transfer-operation-automatically

**What is needed as a solution** - Instead of forcing the users to move around production environments with tons of configuration - apps, permissions, Azure AD, individual IAMs, etc. - in order to switch to another payment model, just make the payment and cost/billing management underneath transferable!

Nobody guarantees that nothing will blow up during the transfer. To the contrary you can be sure from the example above that this is not safe.

And all this for the sake of switching the payment model.

I am sure that MS has the brains and the capacity to implement this and save to the resellers and users thousands of hours wasted in vain in problem solving.

To set up Gmail IMAP not responding issue, you need to first enable IMAP by:
1. Log into Google/Gmail.
2. Click on the gear icon within the higher right, then choose Settings.
3. Click on the Forwarding and POP/IMAP tab.
4. under IMAP Access, choose the radio button for enable IMAP and click on Save Changes.
5. Click on Settings once more.
What is the IMAP server for Gmail?
Incoming connections to the IMAP server at imap.gmail.com:993 need SSL. The outgoing SMTP server, smtp.gmail.com, requires TLS. Use port 465, or port 587 if your client begins with the plain text before issue the STARTTLS command.
What is IMAP in Google Mail?
Set up IMAP and change your SMTP settings to scan Gmail messages in different mail clients, like Microsoft Outlook and Apple Mail. once you use IMAP, you'll be able to scan your Gmail messages on multiple devices, and messages area unit synced in real time. you can also read Gmail messages using POP.

https://www.tollfreeparks.com/blog/imap-gmail-is-responding/

AAD's manual describes the common grant flows used by OAUTH2, however, there is some problems with the documentation in my opinion.

If you implement applications you might experience that:

1) the ADAL documentation does not align with the AAD OAUTH2 manual, thus you may not know exactly which grant flow is behind the ADAL APIs, nor which ADAL APIs you have to use in order to use a particular OAUTH2 grant flow... or how to appropriately register an application in AAD for either scenario.

2) the terminology differs between the AAD OAUTH2 manual, the app registration portal itself, ADAL APIs and the OAUTH2 spec, i.e. Native/Web API vs Confidential and public clients.

3) There should be a stronger link between specific use cases and the appropriate grant flow/ADAL APIs. There are common use cases that are not described at all, i.e. daemon clients that cannot have the broad set of privileges that are offered when using client credential grant flow.

4) The AAD OAUTH2 manual is not always clear on which application type (native vs Web API) you need to register AND what the implications of this is.