Azure Security Center

Do you have an idea or suggestion based on your experience with Azure Security Center? We would love to hear it! Please take a few minutes to submit your ideas or vote up an idea submitted by another customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Security Center. Remember that this site is only for feature suggestions and ideas!

For further reading on Azure Security Center, see our documentation. For general discussion, use our discussion forum. For technical support, take advantage of these support options.

How can we improve Microsoft Azure Security Center?

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. Add an option to upload the Antivirus of your choice in security center

    As of now there is only few third party partner integration for Endpoint Protection in security center, it will be good if a customer can upload an Antivirus package (EXE\MSI) and use it to remediate against endpoint protection's recommendations.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Adhoc check "Security Baseline Assesment"

    I want to check my server setting by "Security Baseline Assessment".
    When updating group policy, and When decreasing Failed rule numbers.

    Now, I need to wait next 24 hours after updating group policy to get checking rule results.
    Regards,
    Yoshihiro Kawabata

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Create a community open source repository

    It would be great to get the security community engage with Azure Security Center and allow for community contributions. I imagine that it could be something like the Azure Automation Runbook community repository, but this would be focused on integration with Azure Security Center. Azure Security Center needs to create open API for custom community developed solution like mentioned in this feedback: https://feedback.azure.com/forums/347535-azure-security-center/suggestions/12366438-support-for-letting-apps-send-custom-alerts-to-sec

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add AVG to the anti malware protection tool

    Add analytics on common 3rd party tools

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Publish event list + blog post on security filter settings page

    Would be helpful to have the event list according to the level of security events selected on the settings page instead of needing to go to the blog post on the web.
    Please also include the link to the official blog in this page

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Guardicore

    Have you considered having Gaurdicore as a partner solution in the marketplace? I sawe their technology at Blackhat and this seems to be a gap in Azure Security Center.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. DeBlackListing

    Allow for unblacklisting applications inside OMS. From time to time mail relays get blacklisted due to a spammer/phishing attempt. The facility to apply to remove from common blacklists within OMS would be a great feature.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Additional Linux information on VM Security Details blade

    1- Can the Linux release and Kernel version be displayed in the VM Security Details blade (or elsewhere in Security Center)?

    2- Can the update count be displayed in that blade? Similar to the "x packages can be updated, y updates are security updates" message from the MOTD when logging in to Ubuntu over SSH.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Make tags blade dependent on Azure policy.

    Currently tag blade is independent of Azure policy. For example, at this moment we don't have a feature in Azure policy which will auto populate the tag name field by the tag names which you have predefined in the policy. User has to manually enter the tag names. It would be really helpful if we can make tags blade dependent on Azure policy.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Azure Security center, using our own Policy Initiatives

    We are impressed with the view and various options security center has to offer. We are
    managing enterprise wide a lot of subscriptions, and from that perspective it becomes
    too much information.

    One approach we took, is to use Azure Policy initiates, and defined per security principle
    a subset of policies which are relevant for this principle. With a management group we have
    assigned the initiative to all our subscriptions, this makes it very easy to view the compliance.

    We are now using the Azure Policy blade to view the compliance, however, it would be very usefull
    if our custom…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to up-vote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  13. Provide support for downloading Security Center recommendations as PDF and as CSV

    Similar to Advisor, provide the capability of exporting the recommendations as PDF and CSV so it can be shared and prioritized by others in the organization.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. (Geo) Country IP blocks are needed in NSGs

    A well known method to mitigate Internet-based threats are country-based IP blocks. Many firewall vendors have this feature for a long time. Please make it possible to create "block lists" of countries (or "white lists" as well) and make NSG rules key on that.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Rename AAC groups

    Adaptive Application Control assigns vm's to groups with generic names

    I'd like the ability to see in a table or list which VM's are "grouped" together. I'd like to have the ability to group them myself (based on common functionality) AND I'd like the ability to name the groups.

    If possible: via powershell or AZ cli.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Enable the ability to disable recommendations for certain resources

    It would be great to be able to disable certain recommendations for certain resources, but not all resources. For example, enable the ability to disable the "Enable Disk Encryption recommendation for all VMs" that begin with a GUID, or location prefix, but allow the recommendation for any other VMs.

    Additional filtering across additional recommendations and resources/resource types would also be beneficial.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  17. Add an option to hide deallocated VMs from recommendations

    For example, a deallocated VM without endpoint protection is not an issue... until is is live again.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Reduce RBAC requirements for JIT to enable Support staff context

    Currently, in order to successfully request access to a VM via JIT the user requires Microsoft.Compute/virtualMachines/write/* RBAC access to the VM(s) in question. This seems like a heavy security requirement when JIT is often used by Support staff who should not be able to add/modify VMs in a Production environment.

    It should be possible to enable/block JIT on a per-VM basis, such that User Group A can request access to VM A and not VM B, and User Group B can request access to VM B and not VM A - I feel that this would be better served with…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. See All Subscriptions Capability in Security Centre

    We have multiple departments with subscriptions and our own subscriptions managing key vaults. Our Security staff need sight of all subscriptions in one place. This could be with the addition of Global Security Admin role which was automatically assigned security admin role in all subscriptions created from the AD. This can be done now with global admin but not security admin it seems.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Please combine OMS Security and Audit Solution and Azure Security Center under a single dashboard.

    Please combine a complete security posture of an environment in one single Dashboard. This will help customers and partners to position and recommend security solution in more effective way.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Azure Security Center

Feedback and Knowledge Base