(General Feedback)
Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.
This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.
If you have technical questions or need help with Azure, reach out to us on Microsoft Q&A or try StackOverflow
-
Immutable blob on Azure Backup
It could be interesting to be able to take advantage of the feature immutable storage with Azure Backup's, at the blob level, to protect against attackers who delete backups. The soft delete (recycle bin) feature is not enough because it can be disabled.
Note that immutable blob storage already exists at the level of a storage account.250 votes -
AAD
MacBook client for Azure P2S VPN with AAD/MFA support
Currently AAD login is supported for native Windows 10 clients only, leaving those connecting with MacBook, Linux etc. without an option, or having to revert VPN Gateway (vWAN hub) P2S config back to basic cert based. With Virtual Wan in particular being a use case I have and with multiple MacBook users connecting globally, this is a use case I need asap.
70 votes -
Role with access to all reservations
Please add the options to give access to all reservations, current and future to a group or user. Currently only the user that created the reservation has access to it and you have to grant access on each reservation individually. Very cumbersome and does not allow any automation around reservations. Create a role that will always have access to all reservations.
81 votes -
Update Management (Germany West Central)
Unable to automate Virtual Machine Updates using a Log Analytics Workspace and an Automation account with Germany West Central.
Is this on the road map?
26 votes -
SMS Communication Service to Europe (Netherlands)
Hi, I noticed that is only possible to send and receive SMS from and to United States. Any chance this expand to European countries like the Netherlands please?
https://docs.microsoft.com/en-gb/azure/communication-services/concepts/pricing29 votes -
Allow us to create outbound rules on external load balancer for secondary ip address of NIC.
I have Cisco NGFW VM in backend and which have multiple IP address in his external interface. Which we would like to translate to specific PIP for outbound traffic. But getting error "OutboundRuleCannotBeUsedWithBackendAddressPoolThatIsReferencedBySecondaryIpConfigs" .
I read in one of article that this is limitation of ELB but we need this option. This is very basic requirement and important which need by every organization who are planning to move his infra on Azure cloud or already moved.
54 votes -
Add a command to see the list of minor versions available for ARO clusters per region
Currently, there is no way to know which minor versions for the ARO cluster are available in Azure.
It would be great to have something similar to the command we have for AKS.
I mean something similar to this AKS command:
az aks get-versions --location <region> --output table
31 votes -
Azure Application Proxy to support multiple ports
When hosting an internal application that listens on multiple ports, one for web and one for services for example, it would be useful to have the ability to configure multiple ports, as even configuring two App Proxy Applications one for each port doesn't work.
37 votes -
Save custom PowerShell scripts in the Run Command option of VMs
Within the Run Command option for virtual machines we have a few Powershell scripts the we run often against Windows servers. The option to save these custom scripts would be very useful as it would make them available to other members of the team who access the portal and have to run the same scripts.
35 votes -
Azure DSC for Linux Support CentOS 8.x
May I know when Azure DSC will support CentOS 8.x? really appreciate your help.
35 votes -
Have VM price detail in validation page to have image OS+Software covered.
In the VM creation process, particulary in the last validation(Review + create) page, in the first section "PRODUCT DETAILS", the price doesn't cover the image OS+Software cost, but it is only for hardware compute cost, this could cause confusion and end up with serious budget issues for end users.
16 votes -
arunachal pradesh escorts agency
The **** call girls of our escort services in arunachal pradesh are attractive, polite and affable, and they make available first class services and enjoyable in all areas of arunachal pradesh. These escort services are not on hand, and everybody also is permitted to propose arunachal pradesh imperfect. We propose catalog services through arunachal pradesh escorts agency and our wonderful escorts. We provide true photos of girls in arunachal pradesh in special, and in a given moment the same women reach you. In some condition, we send photograph of escorts after they get their consent since they are in public…
1 vote -
enable machine certificate for Radius P2S VPN
when using Radius for P2S VPN, we could only use user cert, and machine cert is not supported. Please consider to enable machine cert.
16 votes -
Role for hardware OATH Token management
Actually, it is not possible to delegate permission to manage upload and activate hardware OATH Token in Azure to a specific role. In the least privilege approach, it will be useful not to use Global Admin role for that.
40 votes -
Support proxying of NTLM traffic for Application Gateway/WAF V2
Instead of Application Gateway/WAF V1, the Application Gateway/WAF V2 doesn't support NLTM traffic proxying. This prevents organizations to publish LOB-apps that require NTLM authentication on their backends, and thus the ability to use the modern scaling capabilities of AG/WAF V2.
86 votes -
Automatic blocking of malitious traffic on bastion would be great
In network watcher, we can see malitious traffic was detected but allowed by bastion host. It would be great if bastion have a default blocking setting on these malicious traffics.
30 votes -
Custom Role to restrict access to Activity Log and IAM
If you need to give read access to resources but want to filter out sensitive information such as Activity Log, IAM, Cost etc, you should consider the following permissions for a custom role. The example here is for App Insights, I only wanted the user to have read access on queries and block out Activity Log, IAM, Cost
"permissions": [
{
"actions": [
"*/read",
"Microsoft.OperationalInsights/workspaces/analytics/query/action",
"Microsoft.OperationalInsights/workspaces/search/action",
"Microsoft.Insights/Components/Read"
],
"notActions": [
"Microsoft.OperationalInsights/workspaces/sharedKeys/read",
"Microsoft.Insights/Components/GetAvailableBillingFeatures/Read",
"Microsoft.Insights/Components/BillingPlanForComponent/Read",
"Microsoft.Insights/Components/CurrentBillingFeatures/Read",
"Microsoft.Authorization/classicAdministrators/read",
"Microsoft.Authorization/classicAdministrators/operationstatuses/read",
"Microsoft.Authorization/denyAssignments/read",
"Microsoft.Authorization/locks/read",
"Microsoft.Authorization/operations/read",
"Microsoft.Authorization/permissions/read",
"Microsoft.Authorization/policyAssignments/read",
"Microsoft.Authorization/policyAssignments/privateLinkAssociations/read",
"Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/read",
"Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnections/read",
"Microsoft.Authorization/policyAssignments/resourceManagementPrivateLinks/privateEndpointConnectionProxies/read",
"Microsoft.Authorization/policyDefinitions/read",
"Microsoft.Authorization/policyExemptions/read",
"Microsoft.Authorization/policySetDefinitions/read",
"Microsoft.Authorization/providerOperations/read",
"Microsoft.Authorization/roleAssignments/read",
"Microsoft.Authorization/roleDefinitions/read",
"Microsoft.Insights/eventtypes/values/Read",
"Microsoft.Insights/EventCategories/Read",
"Microsoft.Insights/LogProfiles/Read",
"Microsoft.Insights/LogDefinitions/Read",
"Microsoft.Insights/eventtypes/digestevents/Read",
"Microsoft.Insights/Logs/AzureActivity/Read"12 votes -
allow non-admins to receive Subscription notifications
Today, you must be a Service Admin, Co Admin or Owner of a Subscription in order to receive audit notifications for a Subscription.
Example: SQL Audit Log Notifications
Users in our environment that own resources in a Subscription have Reader permissions at a Subscription scope, with higher level permissions on Resource Groups. As a result, there are very few human accounts that have Owner permissions on a Subscription. So these notifications may be missed, or are sent to Cloud Admins who then need to forward these onto Teams that own those resources. In order to maintain a least-privilege model, we…
26 votes -
Official Tool to change WVD Pool size (number of Session Hosts) based on a schedule
We’ve set up a way to do this via script, but would really appreciate an official tool! Via Powershell script and a Runbook, Automation Account, and Service Principal, we are switching between a “peak hours” Pool size, and nightly “off peak hours” Pool size.
When drawing down the pool size for “off peak”, we’re using cmdlets to delete Session Host objects and their associated VMs, disks, and NICs.
When increasing the pool size for “peak hours”, we are running an Incremental Host Pool deployment from template; dynamically inserting the desired Poolsize into the deployment template .json file before Deployment.
10 votes -
Official Tool to shutdown/start WVD Session Hosts, based on number of User sessions
We’ve set up a way to do this via script, but would really appreciate an official tool! Via Powershell script and Azure Function, we are automatically shutting down and starting up WVD Session Hosts (based on Pool usage) to optimize Compute usage.
By specifying that we would like (for example) 20 Session Hosts available at all times, each time the Function executes, it calculates the current number of User Sessions in the Pool + 20, and turns on or shuts down Session Hosts accordingly.
This may be most useful in a use case like ours, where the Session Hosts are…
11 votes
- Don't see your idea?