Azure Security Center

Do you have an idea or suggestion based on your experience with Azure Security Center? We would love to hear it! Please take a few minutes to submit your ideas or vote up an idea submitted by another customer. All of the feedback you share in these forums will be monitored and reviewed by the Microsoft engineering teams responsible for building Security Center. Remember that this site is only for feature suggestions and ideas!

For further reading on Azure Security Center, see our documentation. For general discussion, use our discussion forum. For technical support, take advantage of these support options.

  1. Close the door! Revoke an existing JIT access rule

    When a supplier received access to a Virtual Machine, which is guarded by JIT, I'd like to be able to close the door on him/her, when I find that they're done or breaking things in the environment.

    I'd like a mechanism in JIT to close the virtual door on them, before the set time is reached.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  2. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add filtering and export (csv) to the Azure Security Center to allow for easier use of data in compliance assessments and attestation.

    Add ability to filter directory information to clearly identify those user objects created in Azure AD vs local AD. Add ability to export the data set as a csv so that the data can be used externally from the portal for governance activities.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add an option to upload the Antivirus of your choice in security center

    As of now there is only few third party partner integration for Endpoint Protection in security center, it will be good if a customer can upload an Antivirus package (EXE\MSI) and use it to remediate against endpoint protection's recommendations.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Adhoc check "Security Baseline Assesment"

    I want to check my server setting by "Security Baseline Assessment".
    When updating group policy, and When decreasing Failed rule numbers.

    Now, I need to wait next 24 hours after updating group policy to get checking rule results.
    Regards,
    Yoshihiro Kawabata

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Create a community open source repository

    It would be great to get the security community engage with Azure Security Center and allow for community contributions. I imagine that it could be something like the Azure Automation Runbook community repository, but this would be focused on integration with Azure Security Center. Azure Security Center needs to create open API for custom community developed solution like mentioned in this feedback: https://feedback.azure.com/forums/347535-azure-security-center/suggestions/12366438-support-for-letting-apps-send-custom-alerts-to-sec

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add AVG to the anti malware protection tool

    Add analytics on common 3rd party tools

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Publish event list + blog post on security filter settings page

    Would be helpful to have the event list according to the level of security events selected on the settings page instead of needing to go to the blog post on the web.
    Please also include the link to the official blog in this page

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Guardicore

    Have you considered having Gaurdicore as a partner solution in the marketplace? I sawe their technology at Blackhat and this seems to be a gap in Azure Security Center.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. DeBlackListing

    Allow for unblacklisting applications inside OMS. From time to time mail relays get blacklisted due to a spammer/phishing attempt. The facility to apply to remove from common blacklists within OMS would be a great feature.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Additional Linux information on VM Security Details blade

    1- Can the Linux release and Kernel version be displayed in the VM Security Details blade (or elsewhere in Security Center)?

    2- Can the update count be displayed in that blade? Similar to the "x packages can be updated, y updates are security updates" message from the MOTD when logging in to Ubuntu over SSH.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add DISA STIG to compliance options Azure Security Center

    Would be nice to have a option to choose DISA STIG for the Regulatory Compliance within Azure Security Center as well as the others that are already available.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Make tags blade dependent on Azure policy.

    Currently tag blade is independent of Azure policy. For example, at this moment we don't have a feature in Azure policy which will auto populate the tag name field by the tag names which you have predefined in the policy. User has to manually enter the tag names. It would be really helpful if we can make tags blade dependent on Azure policy.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Azure Security center, using our own Policy Initiatives

    We are impressed with the view and various options security center has to offer. We are
    managing enterprise wide a lot of subscriptions, and from that perspective it becomes
    too much information.

    One approach we took, is to use Azure Policy initiates, and defined per security principle
    a subset of policies which are relevant for this principle. With a management group we have
    assigned the initiative to all our subscriptions, this makes it very easy to view the compliance.

    We are now using the Azure Policy blade to view the compliance, however, it would be very usefull
    if our custom…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to up-vote & comment on. This allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

  18. Provide support for downloading Security Center recommendations as PDF and as CSV

    Similar to Advisor, provide the capability of exporting the recommendations as PDF and CSV so it can be shared and prioritized by others in the organization.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Rename AAC groups

    Adaptive Application Control assigns vm's to groups with generic names

    I'd like the ability to see in a table or list which VM's are "grouped" together. I'd like to have the ability to group them myself (based on common functionality) AND I'd like the ability to name the groups.

    If possible: via powershell or AZ cli.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Enable the ability to disable recommendations for certain resources

    It would be great to be able to disable certain recommendations for certain resources, but not all resources. For example, enable the ability to disable the "Enable Disk Encryption recommendation for all VMs" that begin with a GUID, or location prefix, but allow the recommendation for any other VMs.

    Additional filtering across additional recommendations and resources/resource types would also be beneficial.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Azure Security Center

Categories

Feedback and Knowledge Base