(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Azure SQL PiTR - Option to disable or set to 1 day retention

    We currently have an SQL managed database, which we use for development purposes.

    We are developing how our data ingest will work, currently we drop the tables every day, and re-load all the data. As of the 31-AUG we started getting charged for PiTR which we didn't know about, until PiTR started costing us upwards of $120 per day.

    What I found out is after the initial backup (free) any changes were replicated to 6 regions (GRS storage) and set to 35 days retention period. These are backups we don't want or need, as data is ingested from the Datalake.…

    30 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. Application Gateway handling the Query parameter on back-end

    In application gateway HTTP settings when we use "override back-end path" option, it is stripping out the query parameter and retains only the resource path.

    Eg: https://<<HostName>>:443/resurcepath/invoke?api-version=2016-10-01&number=5

    It retains only "https://<<HostName>>:443/resurcepath/invoke" and ignoring "?api-version=2016-10-01&number=5"

    It will be good to retain the query parameters without doing any URL redirection etc

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Use only a specific RDGW when using WVD

    For these reasons, we want to pin the [rdgateway-r0.wvd.microsoft.com] endpoint to a specific server.

    ・ Compliance
    ・ Charges are incurred for accessing different regions

    Although it is recognized that the operation of Traffic Manager is selected from a plurality of endpoints, it is desirable that it can be fixed by parameters or the like.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. Upgrade CPUs in Azure App Service Premium Tier

    Currently the "Premium" tier on App Service offers this three options:

    P1: 1VCore DSV2
    P2: 2VCores DSv2
    P3: 4VCores DSv2

    I wouldn't call this a premium tier now that we are getting into 2020...

    App service is one of the most useful services offered in Azure and it really needs an upgrade.

    Amazon's Beanstalk does not have such limitations.

    I would suggest that to upgrade the hardware/resources of the Premium tier to at least:

    P1: 2 VCores
    P2: 4 VCores
    P3: 8 VCores

    The processors model should be upgraded as well to use DSv3 or even better the F series.

    30 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. Fully private App Gateway v2

    From: https://docs.microsoft.com/en-us/azure/application-gateway/migrate-v1-v2

    " v2 gateways currently don't support only private IP addresses."

    We need to be able to create fully private App Gateway V2, without public IP.

    At the moment V2 Gateways will be public facing so we need to stick with V1. We cannot rely on NSG/Firewall to restrict traffic: we need to be able to provision a private load balancer.

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  6. Security Center workflow automation should be linked to management groups

    When using workflow automation in Azure Security Center, you need to associate a workflow (logic app) to a subscription.
    But I have alot of subscriptions and new ones added every day.
    I want a logic app to be run automatically when a threat is detected on multiple subscriptions. (I mean the logic to be associated to multiple subs)

    So, I would argue to associate a workflow automation to a Management Group, so all subscriptions in that MG is associated with that workflow and will be run on threats detected on all subs in that MG. (which can of course also…

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. OS selection screen when creating a new virtual machine in the Azure portal

    In the OS selection screen when creating a new virtual machine in the Azure portal, two identical notations are displayed side by side for each OS version.

    The investigation revealed that the top is a first generation virtual machine and the bottom is a second generation virtual machine.

    We need to make improvements so that we can immediately determine if a virtual machine is a first-generation virtual machine or a second-generation virtual machine.

    The actual screen is attached.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  8. Show ticket number in approval screen

    When requesting a PIM role, you are asked for a ticket number which is then displayed in the audit log. This ticket number should be displayed to the user who is approving the request so they can validate the request

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  9. To all Employees of Enterprise Accounts - your personal phone is needed for company use

    For companies with Enterprise subscriptions they are being forced to ask their employees to use THEIR OWN PERSONAL PHONES to authenticate this App. If you do not you will lose your cloud data - a form of extortion. One alternative suggested was for employees to request the company purchase a phone for them to do this authentication. Can you imagine the additional expense if everyone did this? I'm a stock holder in this company and don't want poor designs from external apps to cause additional unexpected expenses. This design was not thought through as far as the impact to enterprise…

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  10. Sign-In Risk Policy > MFA > Add an Exclude App and a way to mark and IP safe for unfamiliar locations

    We are having issues with our Sign-In Risk Policy set to Low to action MFA. If our location switches egressing IP addresses, the entire location and users within that location are hit with a low risk for unfamiliar location.

    We do not have the ability to mark an IP safe within this policy, or to exclude a specific app from this policy. Can we have a feature request to add an app exclusion within the Sign-In Risk Policy and the ability to add IP addresses within the unfamiliar locations to be marked as safe to stop MFA triggering on our…

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. Application Insights After a search the message that come are incomplete I need to click to see the entire message

    Application Insights
    When you search something the result are displayed incomplete I need always to click on the search field to see the entire message

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  12. to get list of Azure AD Users locked, because this option is very important for us to find the list of locked user account list. I am not a

    I am not able to find the locked account list in Azure Active Directory. This is very lengthy task to find the account. & I am not able to unlock the account. I need this option as well.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  13. Support to configure manually of Mitigation policies in Azure DDoS Protection

    Support to configure manually of Mitigation policies in Azure DDoS Protection

    The threshold of Mitigation policies is only tuned by Azure automatically now.

    [Azure DDoS Protection Standard overview]
    https://docs.microsoft.com/en-us/azure/virtual-network/ddos-protection-overview

    (Mitigation policies)
    DDoS Protection Basic: Tuned for Azure traffic region volume
    DDoS Protection Standard: Tuned for application traffic volume

    I hope I'm also able to configure the threshold manually.

    For example,
    100 TCP SYN/second
    100 UDP packets/second
    100 ICMP packets/second

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  14. Ability to setup daily budget alert on my subscription consumption

    In addition to monthly budget, I would like to be able to set an alert on a daily consumption in order to react immediately and take corrective action to stay in my monthly budget.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow customers to remove enterprise apps from their tenant so they can delete the tenant themselves.

    Right now, if you have certain enterprise apps added to your tenant in azure, you will not be able to delete them from the tenant so you can delete the tenant itself. It requires a convoluted process through the product group to get them deleted. We would like to be able to clean up our own test tenants and delete them at our leisure without having to go through this long drawn out process.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  16. Display Company Password Policy on Azure tenant "Change Password" Page

    As of now, when user is trying to change a password via Azure Password Reset https://account.activedirectory.windowsazure.com/ChangePassword.aspx

    The user gets a very generic message stating "This password does not meet the length, complexity, age, or history requirements of your corporate password policy.".

    We would like to be able to display our current password policy in the error message, like literally every other website/login page.

    Here is an example

    The password should be at least 9 characters long

    Password should meet below criteria
    1. Password must contain lower case letters
    2. Password must contain upper case letters
    3. Password must contain numerical

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  17. Internal API management service does not show in Vnet list of connected devices.

    I have 4 subscriptions and in each I have API management service configured. When you activate it as an internal APIM, it requires you to place it into an empty subnet. I create /29 subnets for them and in the APIM overview it shows it has consumed an IP from that subnet. Also, when you look at the virtual network tab of the APIM, it shows it is in that subnet.
    The problem is, if you now go to the Virtual networks portal page, and list connected devices, the APIM does NOT show in the list. Also, when you go…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  18. Azure Query Editor End Points Connectivity through Port 443 only

    With recent changed architecture MS Azure requires Port 443 and 1443 availability for Azure Query Editor connectivity. If an user is connecting Azure Query Editor through Portal.azure.com, there shouldn't be any firewall request to allow outbound communication through port 1443 as user is already accessing port 443 for portal.azure.com.

    Port 1443 should only be required when any user is using SSMS,

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow to mail enable an Azure AD Security group

    Allow to mail enable an Azure AD Security group. For example: we have an AAD security group used for GBL. This group has E5 assigned. I want to send an email and all the users within this group to receive it. We discuss here about a big company with houndreds of users which already has a set up in place. We don't want to make any modification on the current configuration but rather to have the possibility to mail enable an AAD security group which will solve all of our problems. Thank you!

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  20. Fine granular Azure Security Center pricing option

    Hi,

    can you please add the possibility for fine granular pricing selection in Azure Security Center.
    At the moment, it's only possible to activate the standard pricing model for resource types (like Azure Sotrage Account, Azure VM,..) and not fine granular. In some customer scenarios, I came into the situation, that only some resources in a subscription need a higher security level.

    I know, I can split it to different subscriptions, but it's sometimes not useful.

    Regards,
    Hannes

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 58 59
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base