Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, reach out to us on Microsoft Q&A or try StackOverflow


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. granularity for delegation of azure app permissions

    We need more granularity for the delegation of azure app permissions to developers and administrators.
    Administrators and developers require that an app must be restricted to a specific group of users or objects. For a group in a single tenant, there is no granular authorization for groups of users or objects (such as Sharepoint online sites, teams and other resources).
    Developers can do this by using popular authorization patterns, such as: B. Azure's role-based access control (Azure RBAC). However, this approach involves a considerable amount of work for developers.
    We would like a delegation of authorizations in a single tenant…

    81 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. Add the ability to enable and configure access-based enumeration (ABE) for Azure Files Shares

    Add the ability to enable and configure access-based enumeration (ABE) for Azure Files Shares

    122 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Azure App Service - Maintenance control for platform updates

    Hi Team,
    Following on a MS case, it would be ideal to have platform upgrade schedules exposed for Paas App Services similar to what you are planning for Iaas VM's:
    https://azure.microsoft.com/en-us/blog/maintenance-control-for-platform-updates/

    We had several incidents occur due to the platform upgrades, and our clients are eager to be able to reactively/proactively monitor for these events. However, this data is not exposed on the platform.

    35 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. In Azure AD Connect, enable Group Writeback for *all* types of Azure groups (including Security groups, Mail-enabled Security groups, and Ex

    In Azure AD Connect, enable Group Writeback for all types of Azure groups (including Security groups, Mail-enabled Security groups, and Exchange distribution groups). This will enable us to utilize the Group Writeback feature to meet our business requirements. It is our opinion that the limitation of Azure AD Connect Group Writeback which restricts to only Microsoft 365 Groups greatly reduces the value of the feature, and we would like to understand why Microsoft decided to limit Group Writeback to only handle Microsoft 365 Groups. We would like to use Group Writeback for all types of Azure groups (including Security groups,…

    169 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow setting Key Vault reference in Azure App Configuration via ARM template.

    In Azure App Configuration portal, we are given the option to create a Key Vault reference. We would like the ability to also do this via an ARM template, az cli, PowerShell, and client libraries.

    32 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add support for backing up virtual machines with shared disks attached to recovery vault

    Currently support for VMS with shared disks attached fails the validation, even when the shared disks are EXCLUDED from the backup. At a very minimum the vm and any non-shared disks should be available for backup from azure recovery vault.

    23 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. Manage all part of Azure AD with CSP admin account

    With a CSP admin account, not all customer Azure AD features are manageable, despite the fact that you are member of the Global Admin Group in this directory. For instance, when you visit the Access packages page you get the "No Access" error.

    Because of this, besides the CSP admin account all administrators also need a customer specific admin account to make management of the full Azure AD possible.

    First I thought it was a bug or configuration error, but Microsoft CSP support confirmed this is by design.

    21 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  8. 43 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  9. Logic app should provide capabilities to detect and block malware uploads against public/private endpoint

    Security architecture review conducted recently on Azure logic app raised a control gap which request Microsoft to provide a malware detection feature on payload uploaded against http request or web hook level on azure logic apps.

    9 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  10. EDB to PST Converter Tool

    If you are facing errors from EDB files and want to fix them, in this case, you can make use of Vartika Exchange EDB to PST Converter tool. With the help of this tool, one can fix errors from EDB files, restore deleted items, and convert EDB to PST, EML, and MSG format. It also allows the users to migrate accessible and inaccessible EDB files into Office 365 and Live Exchange Server. Download a Free demo version of this tool to know how to convert EDB to PST files in a hassle-free manner.
    Get more info: - https://www.vartikasoftware.com/product/vs-edb-to-pst-converter-software.html

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. FIDO2 support for Face ID / Touch ID on iOS / macOS or Android

    Currently Azure only supports USB or NFC FIDO2 keys (or Windows 10).

    With the release of iOS14 / macOS Big Sur Apple's Safari supports FIDO2 with Face ID / Touch ID.

    This turns your device into a FIDO2 key.

    31 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  12. Support for ManageEngine MDM when requiring device compliance in Azure Conditional Access

    We use ManageEngine MDM for managing mobile devices. We want to use conditional access policies to ensure the device has been marked as compliant by ManageEngine MDM before allowing access to certain applications.

    Currently Azure AD Conditional Access Policies only supports InTune for checking device compliance as described @ https://docs.microsoft.com/en-us/azure/active-directory/active-directory-conditional-access-policy-connected-applications#trusted-devices. This should be extended to support ALL 3rd party EMM solutions.

    57 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  13. Azure policy to block all public access

    I would like to be able to create a policy and apply it to subscription(s), that would block any created resource from being able to be reached from the public internet. I want my developers to be able to experiment and try out different resources, but I don't want to put my network at risk while they experiment.
    Right now I have to play wack-a-mole and identify all the different resources that could get a public IP and create policy around that resource.
    I believe it would be in Microsoft's best interest to create a policy that one could apply…

    35 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  14. EDB to PST Recovery

    Repair all kind of corruption problems from Exchange EDB file with this GSTECH EDB to PST Converter Software. It supports to remove all type of corruption and damage issues from the Exchange EDB file and gives the authority to the user to export all EDB file inner items to various different file formats. It can convert the EDB file with all its inner items including- emails, contacts, chats, tasks, notes, journals, and appointments, to multiple file formats. It will simply convert the EDB file into PST, EML, EMLX, MSG, and HTML.
    Know more info- https://www.gstechsoftware.com/edbtopst/

    1 vote
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  15. Azure Firewall Network Rule Logs there is no place to see which rule(rule name) blocked/allowed the traffic.

    Azure Firewall Network Rule Logs there is no place to see which rule(rule name) blocked/allowed the traffic.

    This will helpful for Daily operation and troubleshooting.

    MSFT Case :120092424003536

    44 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  16. Enable SSTP log for P2S is needed

    We can only see logs for IKEv2 or OpenVPN, but SSTP log is not available now. It is important when we want to check the connection details.

    9 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  17. MACC PERCENTAGE VIEW WITHIN EA PORTAL

    Today, the MACC should basically be controlled by partner and client completely manually, however, this is fixed in CPS. We understand that it would make sense to have a vision to be consulted of what percentage remains to reach the MACC within the EA Portal itself, for greater control in order to mitigate any problems at the end of the contract regarding the stipulated commitment.

    18 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  18. App Service with Private End Point should also allow public access

    If you add a Private End Point to Azure SQL, you can still allow limited access through the public IP, should you so wish. This can be useful, for example, for allowing support or reporting access without a VPN (and VPN with Private End Point requires custom DNS servers, so you'd usually want to avoid that).
    If you add a Private End Point to an App Service it will always block all access from the public IP. The biggest negative impact of this is that you can't automate deployments from AzDO or elsewhere. The workaround is to create a VM…

    15 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  19. A sign-out option for Static Web App to clear the valid single sign-in session with the Microsoft identity platform.

    Right now, after the user signed out and then the user tries to sign-in again, the user gets reauthenticated to the application without entering their credentials. I think it is because the user still has a valid single sign-in session with the Microsoft identity platform.

    14 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow Port Ranges for Azure Firewall DNAT Rules

    Would be great to add a range of ports to a single DNAT rule instead of a single port per rule. This prevents us from using the Azure Firewall for protocols like SIP where the ranges are in the thousands

    41 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 115 116
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base