Currently ExpressRoute requires two client subnets, but restricts these to the same VLAN tag. It would be helpful if each of these VLANs could be tagged individually.
e.g. currently I can specify "172.16.1.0/30" as the primary and "172.16.2.0/30" as the secondary but they have to have the same ID

Application Gateway WAF hasn't function creating custom rules and operating management UI for regular or custom rules. Also, we hope functional enhancement for WAF logs. We'd like to get the detail message if alert is happen.

Thank you for your time and consideration.

Enable CSP to be used to fund the Visual Studio Cloud Subscriptions.

Per application request, he wanted to change the WAF configuration to detection mode but this change can affect another applications that are locate di the same application gateway.
We disable rule 942400 but we want to allow either changing prevention/detection by rule or disabling rule by application.

I want to get RateCard meter metadata with their spec information (e.g. size, memory, cores...). Because I have to provide that data to our finance department.
I can get the spec information of VMs by Get-AzureRmVMSize API, but they do not have MeterId, so can not associate with RateCard meter metadata.
And I also want to get them about SQL Database, Redis Cache, and App Service. But they do not have API which can get their spec information in the first place.
I think it is very useful if can get meter metadata with their spec information by RateCard API.

We want to connect several devices with our Azure VNET via the VPN Gateway. Therefore the VPN Gateway is configured for P2S connections.

We want to restrict the devices so that they can only communicate with certain other devices.

To implement this functionality we need to assign the VPN Gateway subnet a NSG. Furthermore this NSG should be dynamic, because the IPs provided by the VPN Gateway to its clients clould not be predetermined.

Currently NSGs are not supported for VPN Gateway subnets as well as there is no way to control IP allocation for connecting devices.

add capability to modify and monitor NSGs and ASGs.

From what I can see it's not currently possible to integrate Azure MFA into the Windows domain login process as a second factor. For example, if a user was to authenticate to the local AD first and then be required to use Azure MFA to add a second factor, using the Microsoft Authenticator app. This would remove the need for third party smartcards or hardware tokens.

Currently, Key Vault have redundancy and availability, but I can not access to secondary region manually.
https://docs.microsoft.com/en-us/azure/key-vault/key-vault-disaster-recovery-guidance

Region fail over is automacically, however I would like to access to secondary like as RA-GRS of Azure Storage before than failover because I want to more enhance BCP of our services.

* I guess, Azure doesn't occurred region failover so far, but services failur occurred sometimes in regions.

Usually when you create a resource you do not know when was created and by whom, the information in logs is available only for a determined period of time and then lost, that is something that will be very helpful to include in the Overview section.

Microsoft Azure should be available for developers and businesses in Haiti. This country lack of a power supply system you can rely on for business, so the cloud is our best options. Please consider adding Haiti in the list of supported countries while signing up for Microsoft Azure.

We deployed the Application Gateway on the subnet where NSG's In-Bound rules is set. In the result, we got the status of backend health is 'unknown'. We got the 'Healthy' status when the NSG doesn't associate to subnet. Even if NSG's In-Bound rules is set, We'd like to confirm the backend health.

In order for a web API to call another downstream web API as the user, Azure AD B2C needs to support the OAuth on-behalf-of flow.

According to the following reference, this isn't supported in B2C: https://docs.microsoft.com/en-us/azure/active-directory-b2c/active-directory-b2c-apps#web-api-chains-on-behalf-of-flow

I also cannot find this feature on the Azure Roadmap.

Would like to see the feature for implementing Elasticsearch (ELK) cluster stack on our own Virtual network as PaaS component like HDinsight service

Add slider bar in Choose VM Size pane in portal.azure.com when you do View all so you don't get the whole sha-bang all the time