(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Account Portal is god-aweful slow

    viewing subscriptions and such is terribly slow. Please spend a day on performance tuning.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Azure SQL PiTR - Option to disable or set to 1 day retention

    We currently have an SQL managed database, which we use for development purposes.

    We are developing how our data ingest will work, currently we drop the tables every day, and re-load all the data. As of the 31-AUG we started getting charged for PiTR which we didn't know about, until PiTR started costing us upwards of $120 per day.

    What I found out is after the initial backup (free) any changes were replicated to 6 regions (GRS storage) and set to 35 days retention period. These are backups we don't want or need, as data is ingested from the Datalake.…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  3. Let Web Apps to be PCI compliance

    Despite that PCI compliance is promoted at Azure, a Web App created at Azure is non compliant by default, and cannot be set-up appropriately.

    I understand that a Web App is not as isolated as an ASE (that still is not compliance by default, needs advanced set-up), with instances sharing system level settings with other clients (so cannot be changed independently), and I understand some set-up changes that apply to all clients, even ones that do not require PCI, can lead to problems to some of them.

    I propose an option to opt-in to PCI compliance at Web App level;…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow tagging of "hidden" resources

    Currently, you can tag most types of resources using portal.azure.com, Powershell or any other tool for that matter. Tagging "hidden" type of resources (for example Microsoft.Network/networkWatchers) is hidden on the portal, but they can be tagged by using a Powershell script which for example tags every resource inside a resource group.

    This behaviour is inconsistent, because after this, listing tags on the portal show that the specific tag key:value pair is in use, but you won't see which resources use it. You need to rely on Get-AzureRmTag or other means to actually reveal which resources are tagged.

    As of currently,…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add description field to NSG Rule

    It would be nice to have a way to describe the reason for a given NSG rule.

    This would greatly simplify, for instance, bookkeeping for PCI DSS 3.1 item 1.1.6 which demands a business notification for each NSG rule.

    Name field allows 80 chars but type description there is just not the right thing. Specially when you need to refer to a given rule while using CLI tools. Huge plus if it appears as a column while listing rules.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  6. GiveSetting to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    we hosted application in Azure VM and configured WAF Application Gateway. But we are getting following error

    Request body no files data length is larger than the configured limit (131072).. Deny with code (413)

    For this we done so much googling and found the solution that we need to increase following parameters in the application gateway. If not possible then need configuration to by pass this limit checking so our application will not stuck because sometime application need to send request with this length.

    Request to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    Many others…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  7. Support for BYOL on pre-built VM Images

    When I want to create a SQL Server VM in Azure and use a license I already own (Bring Your Own License) I am unable to use an existing VM Image in Azure as these are pre-licensed. It would be good if I could use an existing VM image and supply just my license key.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Offers  ·  Flag idea as inappropriate…  ·  Admin →
  8. Network Security Group Counter logging - Source IP

    Using NSG Diagnostics combined with Log Analytics gives us much needed visibility of our rule hit counters, great stuff!

    Unfortunately there is no information within the counter logs to inform us the source of any such hits, which really limits the usefulness of this information.

    Any chance that could be added to the diagnostics logging output for NSGs?

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Availability  ·  Flag idea as inappropriate…  ·  Admin →
  9. Delete multiple containers at once Azure Storage Explorer

    Currently, you can only delete one container at a time from Azure Storage Explorer. Being able to delete more than one would be very valuable when handling storage management.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  10. enable Azure MFA server to accept RADIUS attribute 31 for trusted IP evaluation.

    Currently the RADIUS client must send the authenticating user's IP address via attribute 66 for Azure MFA RADIUS server to correctly evaluate trusted IP addresses. It would be tremendously helpful if that was configurable so that an admin could select a different RADIUS attribute (such as 31) for trusted IP evaluation. We use a NetScaler gateway and it will currently only send RADIUS attribute 31 (Calling-Station-Id) to the RADIUs server. Quick fix I presume!

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow Finance Teams to access invoices

    It should be possible to add secondary users to the account administrator page so that Finance teams can manage invoices. Curently we have to login, download the invoice then forward it to finance. This is inefficient

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  12. 23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  13. Option to block TOR traffic from Azure WebSites

    Looking through my web logs, most traffice coming from TOR is unfortunately only used for trying to hack my site.
    Blocking TOR traffic is not trivial, since you must compare the IP to the long list of TOR exit servers.
    For websites that are really not used by e.g. dissidents it would be great to have a simple option to block it on Azure WebSites.

    Something like "Allow TOR traffice" On/Off

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add ssh public key in metadata 169.254.169.254

    When querying for http://169.254.169.254/metadata/instance?api-version=2017-04-02 in an instance, we can't get the public ssh key to configure the instance. When not using the linux agent, it could be nice to be able to access this user data. FYI AWS & Aliyun already does this (it's an entry called public-keys)

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Availability  ·  Flag idea as inappropriate…  ·  Admin →
  15. Create a Windows Key Storage Provider (KSP) that effectively allows usage of Azure Key Vault as a virtual hardware security module (HSM)

    If windows could use Azure Key Vault as a KSP, it would better secure the private keys of any certificates in Windows - effectively acting as a virtual hardware security module (HSM). I believe this would enable migration of workloads that require a HSM to Azure, and reduce cost for on-prem workloads that might otherwise require a HSM. It would also make it easier / more secure to setup a public key infrastructure (PKI) / certificate authority (CA) in Azure -- or even on-premises for that matter.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  16. Azure Portal: Save or remember my sorting and/or grouping setting

    Working with the Azure Portal, my personal workflow is:
    1. Enter URL in browser: https://portal.azure.com/
    2. In my favorites on the left site I click on resource groups
    3. I choose one of my resource groups
    4. Inside the resource group grid view I click on type to sort my resources by type

    It would help me a lot and save plenty of time if I could save my sort option as standard view, so every time no matter from what browser or computer I open the resource group, my personal sort and/or grouping option is displayed. Thanks!

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  17. Machine Learning workbench connection request

    Machine Learning workbench requires Internet connection, but please also support connection via VPN and via Express Route.

    Also, I want you to be able to use some functions even in an environment without internet connection.

    ----In Japanese---
    Machine Learning workbench はインターネット接続が必須ですが、VPN 経由での接続やExpress Route 経由での接続もサポートしてほしい。

    また、インターネット接続がない環境でも、一部の機能だけでも使用できるようにしてほしい。

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Offers  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add MFA status to user entity info returned by graph API

    We need to be able to query the MFA status of users via the graph API. This property is not currently populated on the user entity: https://msdn.microsoft.com/en-us/library/azure/ad/graph/api/entity-and-complex-type-reference#user-entity

    Please could this property be added.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  19. Provide list of SKUs for resource type through Azure REST API

    While provisioning resources using Azure REST APIs. One of the required thing is SKU. We have no API that provides list of available SKUs (if applicable) for provided resource type.

    We badly need this as there is no way to get always up to date list of SKU.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Availability  ·  Flag idea as inappropriate…  ·  Admin →
  20. keyvault service within VNET scope

    Azure Keyvault is not available within the scope of VNET. Enterprise customers who are establishing private environments need Azure Keyvault within the scope of VNET. This also enables them to create DR sites including Keyvault service.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Availability  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base