(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Azure MFA needs anti-phishing features such as include location details and notification to users about new devices

    Users can sometimes approve MFA notifications on their device because they do not know whether it is their device authenticating or a hacker who has phished their credentials. Therefore, to help users know why they are being asked to accept authentication include additional details such as the application name, IP address and location in the MFA prompt. Apple includes the location and a map of the location in their own two-factor implementation.

    Additionally, users should be notified with an email any time a new device is used to authenticate to their account.

    68 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. Azure Storage Documentation

    Its good if you include the maximum supported size of Append blob (4MB*50,000) in your documentation, I see maximums for Page and Block blobs, but not for Append, Is there a reason?
    Here is the URL i am referring to https://docs.microsoft.com/en-us/azure/storage/blobs/storage-blobs-introduction

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Make DomainDNSName,NetbiosName & Samaccountname attributes avaialble to public to use AAD Join without AAD Connect

    We use okta for synchronizing accounts to Azure AD.

    We plan to use AAD Join for our windows10 devices, it works well with AAD Connect(As AAD Connect synchronizes attributes DomainDNSName, NetBIOS name & Onpremisesamaccoutnanme)

    Okta could not update these attributes, I want to find a way to update the attributes(by using PowerShell or GraphAPI?).

    And also would like to know if there is any possibility to sync MSDS-Keycredentiallink attribute to on-premise without using AAD Connect so that I can use windows hello.

    77 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. RBAC Role for Reserved Instance creation WITHOUT Owner role on the Subscription

    RBAC role created so a group can be added for the single purpose of Reserved Instance creation, without keys to the kingdom (Owner rights). Capacity and Procurement would not need such keys as they would only be creating RI’s, following Least Privilege Access.

    53 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. Set TLS 1.2 or 1.3 as default for Azure Automation Account

    Currently Azure Automation runbooks start a powershell session that has Its security protocol set to SSL3 and TLS 1.0 by default.

    Since there are alot of security risks involved with using TLS 1.0 we would like to have this version set to 1.2 or even 1.3 by default.

    Since Okta has disabled TLS 1.0 and 1.1 per 1st of August 2018 this is also causing errors in Azure Automation runbooks, where we specifically need to specify a later version in each runbook.

    PCI DSS 3.2 also prohibits the use of TLS 1.0 after June 30, 2018.
    Source: https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet

    29 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  6. CDN

    There needs to be a way to apply service tags to Azure CDN. When applying NSGs or firewall rules it would be beneficial to be able to use Service Tags to target the CDNs.

    Marc

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow Comments to be maintained in Create View Syntax

    currently header comments are not maintained in Create View statements in DW. Please update the functionality so that this will remain and allow one to script out the objects with the comments and provide comments for development and re-use.

    Create View vw_Name
    -- Comment
    -- Comment
    AS
    Select *
    From Object

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  8. In India there is strong demand for reserved Azure price

    Please enable option of reserved Azure price in India and Saudi Arabia. Market is demanding the same.

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  9. Provide advanced planned maintenance notifications for VPN

    For planned VPN maintenance updates, it would be nice if you provided advanced notification. Your VPN failover did not work and our VPN was down. Advanced notification would have allowed us to be better prepared. I was informed that you have no way on your side to determine if the failover was successful or not. That is also something that should be in place.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  10. Application Gateway Web App Slot Support as Backend Pool

    We would like to protect our staging environment (Web App Slots) the same way we protect our production environment (Web App) by putting the Slot Deployments behind the Application Gateway.

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. ADB2C - MFA - Text messages and Source Number

    Azure ADB2C - MFA allow to modify text messages sent to send more user friendly messages.And allow source number to be fixed by adb2c admin.

    18 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow Password Policies to be set at the Group Level

    Allow Password Policies to be set at the Group Level instead of only at the domain level.

    Example: Our default password expiration is 90 days, but we have a group that requires their passwords to be reset every 60 days.

    This is not currently possible.

    49 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  13. Real time alerts risky sign ins

    As it stands we are only able to have weekly Digests sent with Risky Sign ins, At risk accounts.

    To me this is not good enough, support says pin it to your dashboard and log on and look? I do but cant log on every minute of every day.

    Real-time email alerts or at worst daily email alerts must be implemented for risky sign ins and users at risk.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  14. Docker run --add-cap=NET_ADMIN --device /dev/net/tun

    I have a logic app using "Create container group" to run a Docker image containing a openvpn client. The client connects to a remote server on a custom non-azure-datacenter.

    For the openvpn to work I need to be able to specify the following docker command to be used in "Create container group":

    docker run --add-cap=NET_ADMIN --device /dev/net/tun

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow longer resource names

    Please revise the resource name length limits: https://blogs.msdn.microsoft.com/jmstall/2014/06/12/azure-storage-naming-rules/

    The name length limits do not correspond with current possibilities. They are adequate rather to MS-DOS times.

    "Deployment name" is limited to 64 characters, which means that a template name has to be a way below the limit. Why???

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add the "created by" and "created on" metadata to Azure objects

    It would be helpful for each object in Azure to have the account that created the object and the date/time of the creation imbedded in the metadata for the object. This would avoid the current method of having to get that information from the Activity Log and store it somewhere else that is more permanent.

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  17. Support 'Approved Client Apps' condition for CA on MacOS devices.

    Support 'Approved Client Apps' condition for CA on MacOS devices.

    Since MacOS Mail app has started ot support modern Auth in MacOS 10.14 (Mojave) it is no longer possible to block that app from accessing exchange online without also blocking Outlook on the platform too.

    The ask is to be able to block the Mac Mail client app on Mojave but NOT Outlook and the obvious resolution is to extend support for the 'Approved Client App' condition that currently only supports iOS and Android, though another resolution would be equally welcome if the outcome is the same.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  18. Modify QnA Maker provisioning process to support selection of an existing App Service Plan instead of a new App Service Plan being created

    Provisioning a QnA Maker Service provisions a Public App Service App <yourAppsName>.azurewebsites.net, but you are not given any control over the App Service Plan for which the App Service resides. My first choice would actually be an App Service Plan in our ASE environment, but if that isn’t doable at least let us select one of our existing public App Service plans to host this in.

    A 1-1 ratio of App Service Plan to App Service is extremely inefficient.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add the ability to modify the User risk levels for different sign in scenarios in Azure AD Identity Protection

    Currently risk events such as unfamiliar location are classified as medium and impossible travel is also classified as medium. it would be great if we were able to modify risk scenarios so that we could move what we deem as a higher risk into a high risk or lower the risk of something that we deem as lower risk. A scenario for why you would want this would be if you have users that travel and are not always coming in from the same location but are legitimate traffic. This would be a low risk scenario where as if a…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  20. Link Reserved Instance Purchase to a specific Virtual Machine

    Microsoft's current practice of Pooling Reserved Instances by VM Type has it's merits, since it ensures that a Reserved Instance will be 'used' whenever possible, but Microsoft should also provide for the capability of linking a specific VM to a Reserved Instance.

    We have a situation where we have more VMs of a particular configuration type (e.g. B4ms) than the number of Reserved Instances that we have purchased. The goal of purchasing the Reserved Instances was to exclude the compute costs of specific VMs for the 3-year period and be able to bill-back the hourly compute costs of the remaining…

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 55 56
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base