(General Feedback)

Do you have an idea or suggestion based on your experience with Azure? We would love to hear it! Please take a few minutes to submit your idea in the one of the forums available on the right or vote up an idea submitted by another Azure customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Azure.

This forum (General Feedback) is used for any broad feedback related to Azure. If you have feedback on a specific service such as Azure Virtual Machines, Web Apps, or SQL Database, please submit your feedback in one of the forums available on the right.

Remember that this site is only for feature suggestions and ideas!

If you have technical questions or need help with Azure, please try StackOverflow or visit our MSDN forums

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. AAS as a Data Source.

    Hi Team,

    Currently Azure is not supporting AAS as a datasource. Suppose i created the Datamodel in AAS and i want to use same in another AAS model, it is not working. Can we have any idea when it will support AAS as a datasource

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  2. api management - import OpenApi from internal URL

    It would be interesting to allow import an openapi definition from an internal URL (through VNET integration). The request should resolve with custom dns and go through VPN or Express Route.
    Now, you get errors that the URL is not publicly available.

    So, the target would be to load openapi specifications from onpremise through VNET and VPN

    Regards,

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  3. Modify QnA Maker provisioning process to support selection of an existing App Service Plan instead of a new App Service Plan being created

    Provisioning a QnA Maker Service provisions a Public App Service App <yourAppsName>.azurewebsites.net, but you are not given any control over the App Service Plan for which the App Service resides. My first choice would actually be an App Service Plan in our ASE environment, but if that isn’t doable at least let us select one of our existing public App Service plans to host this in.

    A 1-1 ratio of App Service Plan to App Service is extremely inefficient.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  4. Provide a description field for Azure Key Vault secrets

    When creating a 'secret' in Azure Key Vault you mainly got Name, Value and Content type fields to populate. It would be great to have a Description field as well to provide some verbose description/notes about the particular secret.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  5. vmss

    When adding a Inbound NAT Rule to a load balancer, I get the following error: "Full virtual machine scale set support for the portal is coming soon. Adding or editing references between load balancers and scale set virtual machines is currently disabled for load balancers that contain an existing association with a scale set."

    How soon is "coming soon"? I've seen this error for about 6 months now.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add MFA status to user entity info returned by graph API

    We need to be able to query the MFA status of users via the graph API. This property is not currently populated on the user entity: https://msdn.microsoft.com/en-us/library/azure/ad/graph/api/entity-and-complex-type-reference#user-entity

    Please could this property be added.

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  7. API or button to export all Azure AD settings

    For documentation purposes, change management reviews and security audits, it would be highly beneficial that Azure AD could provide a way (either through a button or preferably through Powershell/Graph API) to export all settings from Azure AD. Examples of settings that would be relevant are (but not limited to):

    User settings > “Users can register applications”
    User settings > “Restrict access to Azure AD administration portal”
    User settings > “Allow users to connect work or school account with LinkedIn”
    Enterprise applications – User settings > “Users can consent to apps accessing company data on their behalf”
    Enterprise applications – User…

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  8. Let Web Apps to be PCI compliance

    Despite that PCI compliance is promoted at Azure, a Web App created at Azure is non compliant by default, and cannot be set-up appropriately.

    I understand that a Web App is not as isolated as an ASE (that still is not compliance by default, needs advanced set-up), with instances sharing system level settings with other clients (so cannot be changed independently), and I understand some set-up changes that apply to all clients, even ones that do not require PCI, can lead to problems to some of them.

    I propose an option to opt-in to PCI compliance at Web App level;…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add description field to NSG Rule

    It would be nice to have a way to describe the reason for a given NSG rule.

    This would greatly simplify, for instance, bookkeeping for PCI DSS 3.1 item 1.1.6 which demands a business notification for each NSG rule.

    Name field allows 80 chars but type description there is just not the right thing. Specially when you need to refer to a given rule while using CLI tools. Huge plus if it appears as a column while listing rules.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. GiveSetting to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    we hosted application in Azure VM and configured WAF Application Gateway. But we are getting following error

    Request body no files data length is larger than the configured limit (131072).. Deny with code (413)

    For this we done so much googling and found the solution that we need to increase following parameters in the application gateway. If not possible then need configuration to by pass this limit checking so our application will not stuck because sometime application need to send request with this length.

    Request to increase the mod_security limit for following attributes : SecRequestBodyLimit 536870912 SecRequestBodyNoFilesLimit 536870912

    Many others…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  azure.microsoft.com  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support for BYOL on pre-built VM Images

    When I want to create a SQL Server VM in Azure and use a license I already own (Bring Your Own License) I am unable to use an existing VM Image in Azure as these are pre-licensed. It would be good if I could use an existing VM image and supply just my license key.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Offers  ·  Flag idea as inappropriate…  ·  Admin →
  12. Create a Windows Key Storage Provider (KSP) that effectively allows usage of Azure Key Vault as a virtual hardware security module (HSM)

    If windows could use Azure Key Vault as a KSP, it would better secure the private keys of any certificates in Windows - effectively acting as a virtual hardware security module (HSM). I believe this would enable migration of workloads that require a HSM to Azure, and reduce cost for on-prem workloads that might otherwise require a HSM. It would also make it easier / more secure to setup a public key infrastructure (PKI) / certificate authority (CA) in Azure -- or even on-premises for that matter.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  13. Network Security Group Counter logging - Source IP

    Using NSG Diagnostics combined with Log Analytics gives us much needed visibility of our rule hit counters, great stuff!

    Unfortunately there is no information within the counter logs to inform us the source of any such hits, which really limits the usefulness of this information.

    Any chance that could be added to the diagnostics logging output for NSGs?

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Availability  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add PowerShell commands to manage "Users flagged for risk" in Azure AD

    I have quite a few users who have been tagged as "Users flagged for risk" in Azure AD. I'd like to be able to "Dismiss all events" for those users that were "Last updated" more than XX days ago. It seems I can only do this via the web GUI one user at a time. This stinks. This particular report had gone unwatched for a bit. PowerShell to the rescue please!

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  15. enable Azure MFA server to accept RADIUS attribute 31 for trusted IP evaluation.

    Currently the RADIUS client must send the authenticating user's IP address via attribute 66 for Azure MFA RADIUS server to correctly evaluate trusted IP addresses. It would be tremendously helpful if that was configurable so that an admin could select a different RADIUS attribute (such as 31) for trusted IP evaluation. We use a NetScaler gateway and it will currently only send RADIUS attribute 31 (Calling-Station-Id) to the RADIUs server. Quick fix I presume!

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow Finance Teams to access invoices

    It should be possible to add secondary users to the account administrator page so that Finance teams can manage invoices. Curently we have to login, download the invoice then forward it to finance. This is inefficient

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Option to block TOR traffic from Azure WebSites

    Looking through my web logs, most traffice coming from TOR is unfortunately only used for trying to hack my site.
    Blocking TOR traffic is not trivial, since you must compare the IP to the long list of TOR exit servers.
    For websites that are really not used by e.g. dissidents it would be great to have a simple option to block it on Azure WebSites.

    Something like "Allow TOR traffice" On/Off

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add ssh public key in metadata 169.254.169.254

    When querying for http://169.254.169.254/metadata/instance?api-version=2017-04-02 in an instance, we can't get the public ssh key to configure the instance. When not using the linux agent, it could be nice to be able to access this user data. FYI AWS & Aliyun already does this (it's an entry called public-keys)

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Azure Portal: Save or remember my sorting and/or grouping setting

    Working with the Azure Portal, my personal workflow is:
    1. Enter URL in browser: https://portal.azure.com/
    2. In my favorites on the left site I click on resource groups
    3. I choose one of my resource groups
    4. Inside the resource group grid view I click on type to sort my resources by type

    It would help me a lot and save plenty of time if I could save my sort option as standard view, so every time no matter from what browser or computer I open the resource group, my personal sort and/or grouping option is displayed. Thanks!

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Other  ·  Flag idea as inappropriate…  ·  Admin →
  20. Machine Learning workbench connection request

    Machine Learning workbench requires Internet connection, but please also support connection via VPN and via Express Route.

    Also, I want you to be able to use some functions even in an environment without internet connection.

    ----In Japanese---
    Machine Learning workbench はインターネット接続が必須ですが、VPN 経由での接続やExpress Route 経由での接続もサポートしてほしい。

    また、インターネット接続がない環境でも、一部の機能だけでも使用できるようにしてほしい。

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Offers  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

(General Feedback)

Categories

Feedback and Knowledge Base