(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Azure Data Factory (ADF) & Dynamics 365 / CDS Connectors

    The option of using Azure Data Factory v2 to migrate data to the Power Platform / CDS / D365 is good, although there are a few features that are missing that almost negate considering the tool as a viable option. Two such examples are:-


    1. You cannot write to the createdby field on any entity as the createdby is always set in the context of the user in the Linked Service and does not respect the data that is passed to it as part of the Sink data source

    2. There is no way to migrate data into the native CDS /…
    122 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. Support for ManageEngine MDM when requiring device compliance in Azure Conditional Access

    We use ManageEngine MDM for managing mobile devices. We want to use conditional access policies to ensure the device has been marked as compliant by ManageEngine MDM before allowing access to certain applications.

    Currently Azure AD Conditional Access Policies only supports InTune for checking device compliance as described @ https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-policy-connected-applications#trusted-devices. This should be extended to support ALL 3rd party EMM solutions.

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Prevent Account Lockout due to Brute Force Attack

    Currently Azure Active Directory is locking Office 365 user accounts based on the number of failed sign-ins. If the user credentials are entered incorrectly, it does not check or verify existing Azure Conditional Access Policy, whether this account can sign-in from that location (Country or IP address) or not, because the authentication was not successful.

    To prevent Azure AD account lockouts, can you design the Modern Authentication system in Azure AD to check for existing Azure Conditional Access Policy for failed logins coming from blocked locations (Country or IP address)?

    This will help Office 365 Admins prevent account lockouts, sourced…

    38 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. In Azure AD Connect, enable Group Writeback for *all* types of Azure groups (including Security groups, Mail-enabled Security groups, and Ex

    In Azure AD Connect, enable Group Writeback for all types of Azure groups (including Security groups, Mail-enabled Security groups, and Exchange distribution groups). This will enable us to utilize the Group Writeback feature to meet our business requirements. It is our opinion that the limitation of Azure AD Connect Group Writeback which restricts to only Microsoft 365 Groups greatly reduces the value of the feature, and we would like to understand why Microsoft decided to limit Group Writeback to only handle Microsoft 365 Groups. We would like to use Group Writeback for all types of Azure groups (including Security groups,…

    38 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. Azure Advisor configuration should have rule where CPU usage is less than 30 %

    Currently Advisor having option to pull out VMs reports where CPU usage is less than 20% which can be improved by increasing CPU usage less than 30% also. You can put customized limit 25% ,30% so that we can understand more in depth.

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  6. - provide DNS Query details logs in Azure DNS zone resource portal

    In the Azure DNS Zone portal, we could only see some metrics for the query volume sum with a number but not more detail about the queries.

    It should be better to add a log to show more detail for the DNS queries in Azure DNS Zone.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. enable to add resource group to SQL Long term Retention instance

    I have noticed that SQL Long term Retention service doesn't show resource group in usage reports. The Instance ID doesn't have a "resourcegroup/****" section, hence the resource group column is blank.

    It would be helpful to be able to group this instance with a resource group as well.

    Could you set up an option to specify a resource group when we configure SQL Long term Retention instance?
    https://docs.microsoft.com/en-us/azure/azure-sql/database/long-term-backup-retention-configure

    Or, at least make it taggable?

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow Multi-AZ Virtual Machine Scale Sets (VMSS) with Public IP Prefix

    VMSS support assignment of public IP prefixes ONLY when the VMSS is not multi-az or zone specific.

    This limitation is strange as public IP prefixes allow zone specification.

    Attempting to assign a public IP prefix (zone or non-zone specific) to a multi-az or zone specific VMSS results in the error “CannotSpecifyBothTagsAndPublicIpPrefixForPublicIpAddress”. This error is not practical trying to understand what the underlying issue is.

    The current documentation explicitly mentions that Public IP Prefixes work with VMSS as long as they are in the same region, however does not indicate the above limitation.

    Strangely, zone specific Public IP prefixes work with…

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  9. Nested group support for Azure Files share-level access

    I would like the ability to use nested groups for the share-level permissions with Azure Files. Currently, I have no single group with all users directly within it, so I have to use several groups in order to apply share-level access to the file shares.

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  10. Inheritence For Custom Roles

    When creating a custom role, I should be able to inherit from one of the existing built-in roles. The built-in roles change through time as new features come on board, so simply copying a built-in role at one point in time doesn't really help. We created our own custom code module that reads all the permissions out of role and then write them into a new custom role where we can then append or remove additional permissions. Our custom roles are then totally recreated in batch in night to keep them in sync with the latest changes to the built-in…

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. Increase visibility on 32 character name limit for functions

    The 32 character name truncation can cause collision issues on a storage account. This limit should be defined early and expressly in the documentation, as well as should give verbose warnings why creating a function name longer than 32 characters in the portal.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  12. Make start/stop solution able to target only 1 VM instead, listing each VM to not be targeted.

    Hello,

    Please create another scoping feature in the Microsoft.Automation - Start/Stop solution, so that a user could target only 1 desired VM, instead of listing all VMs to be ignored in the "VM Exclude List".

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow user self consent when user assignment is required for applications

    If user assignment required is false, users can consent on their own behalf depending on the user consent settings.
    If user assignment required is true, users can suddenly not consent on their own behalf and require and admin to do so on their behalf, for the whole tenant.
    I suggest that users should be able to consent on their own behalf, even when user assignment is required to access the application.

    There is no reason to require admin consent based on the user assignment setting.
    Furthermore it is counter intuitive; If the user has been manually assigned a role in…

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  14. Map IPV6 addresses to locations so we can use it in Conditional Access policies using Countries/Regions as Named Locations

    It is not possible to have Conditional Access Policies using Countries/Regions correctly because AAD doesn't map IPV6 addresses to locations.

    When setting up Conditional Access, most of us are using Countries/Regions to limit the scope for the access, especially when we see how many sign-in attempts we get on a daily basis from foreign countries.

    We therefore add Countries/Regions as trusted locations in the AAD Named Locations.

    Problem is that AAD doesn't map IPV6 addresses to locations and therefore map incorrectly users using IPV6 when assessing Conditional Access policies.

    Result is that either users are blocked while they are within…

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow batch task status to display as success when non-zero exit code is returned intentionally

    The task status will display as failed even though the exitCondition is set to "satisfy" and jobAction set to continue the job. This is fairly misleading for users when the user would like to treat a non-zero exit code as success result.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add UPN (User Principal Name) Suffix to Domains and Trusts in Azure Active Directory Domain Services through Azure Resource Manager

    For third party integration (Citrix Virtual Apps and Desktops Service), authenticating against Azure AD Domain Services it is neccesary to have a list of UPN suffixes in domains and trusts. This way users can authenticate with their user principal name instead of a "NetBIOS domain name\username". Currently there is no possibility to add a UPN suffix because there is no user with domain or enterprise admin privileges, also decribed in https://docs.microsoft.com/en-us/azure/active-directory-domain-services/faqs#do-i-have-domain-administrator-privileges-for-the-managed-domain-provided-by-azure-ad-domain-services

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  17. Make Azure available in Marshall Islands

    Please make Azure available in Marshall Islands. Many IT Pros in the country are interested and would like to use Azure in various aspects. It would be great to use the cloud services and solutions find in Azure. Please make Azure available in Marshall Islands.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  18. Require to send app service plan's metric data to a workspace.

    A diagnostic setting to send the app service plan's metric data to a workspace is really needed.

    The metric data in app service plan is important and useful for monitoring the condition of all the apps, here is a strong requirement to make use of the data on Cx's goal flexibly by sending the data to a workspace.

    Please take this into consideration. Thanks a lot.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  19. Add Azure AD local devices administrators to pre-existing joined devices

    As per:
    https://docs.microsoft.com/en-us/azure/active-directory/devices/assign-local-admin

    It is not possible to add a new user to the local device adminstrators group on pre-registed Azure AD joined devices without having to disconnect and re-join.

    It would make management of larger organisations much easier if this permission/role could be pushed automatically to pre-existing Azure AD joined devices.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow GitHub Enterprise to be a source to sync Azure Automation Accounts

    Currently there is only three options under the source control blade which allows you to sync Azure Automation Accounts with the latest runbooks. I would like there to be an option to use GitHub Enterprise as a source as a lot of the work that is developed can not be stored on a normal GitHub and my organization pays for GitHub Enterprise

    40 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 93 94
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base