Azure Governance
Azure Governance is a portfolio of platform capabilities that helps customers address the need for control at scale without sacrificing developer agility. This includes services like Azure Policy, Azure Blueprints, Azure Resource Graph & Management Groups.
More details about the services are available in the Azure Governance documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow.
Products that we listen to in this space include: Azure Policy, Azure Blueprints, Azure Resource Graph, Azure Subscriptions and Azure Management Groups
-
Support query Virtual Machines by state
Ability to query Virtual Machine resource type by state of the VM.
98 votes -
Visualize Resource Graph in PowerBI
I can today make querys and export to visualize in Power BI. It would be nice to somehow easier connect from Power BI to Resource Graph to visualize Resources.
40 votesYou can use Resource Graph Explorer in the Azure Portal to do queries and save and pin to your Azure dashboard. Would this serve your scenario.
-
Ability to query for role assignments in Azure Resource Graph
Please add support for listing all role assignments
Resource Type: Microsoft.Authorization/roleAssignments
https://docs.microsoft.com/en-us/azure/templates/microsoft.authorization/2017-09-01/roleAssignments
33 votes -
Store resource changes for more than 14 days
Ability to store Azure resource changes for more than 14 days
21 votesHow many days do you want the changes to be stored? and where do you want to store them?
-
Resource Graph - support for type microsoft.web/sites/config
support type 'microsoft.web/sites/config' to get the all the data nodes under config type
18 votes -
Support querying of deleted resources via the Azure Resource Graph
It would be useful if you could query for deleted resources via the ARG. For example:
where deleted == true13 votesThanks for the feedback. We’ll review this ask, and meanwhile, any additional votes will be used to better understand the priority.
-
Ability to query SQL Server firewall rules
Please add support for type :
Microsoft.Sql/servers/firewallRules
13 votes -
Allow Resource Graph to target all subscriptions or a management group
Currently, the Resource Graph API expect a list of subscription IDs to be passed in as part of the request body. This is very troublesome when you need to query all subscriptions in a tenant or a management group. Please add support for allowing wildcard for the subscriptions value i.e. "*", and extend the support for management groups.
12 votes -
Resource Graph type for Management Groups
Add Management Groups as a resource type for Resource Graph. This would allow for writing queries that target subscriptions that are in a specific Management Group. This is extremely helpful for enterprises that have a lot of subscriptions that are being organized with Management Groups.
11 votes -
PIM add support in the Graph API to query Azure resources roles audit logs.
We can query Azure AD roles in PIM for our conformity report but have to log-in to the portal manually for PIM roles on Azure Resource.
Works for PowerBI Admin Roles but not for "Contributor" role in Subscription X.
10 votes -
Azure Storage File share available in resource graph
Right now, the file share information of a storage account is not available in the resource graph.
ie. it would allow to list the file share of a subscription, compute the global storage size or simulate the pricing.8 votes -
Support history for resources
For scenarios where we need the resources to be synced into an external store, we want the history so that I don't need to scan all the resources again.
8 votesWould you be able to further explain your scenarios? Are you looking for snapshots of your resources at different times, or are you looking to track changes made to the resources?
-
Azure Resource Graph - Support query for backup status
Add the ability to query backup status from Azure Resource Graph and therefore see status for multiple vaults in a unique dashboard
7 votes -
Ability to query budget and forecast in Azure Resource Graph
Please add the ability to query budget and forecast in Azure Resource Graph. This will allow the creation of dynamic and filterable cost management dashboards
6 votes -
Ability to query SQL Server Audit Settings
Please add support for type:
Microsoft.Sql/servers/auditingSettings
5 votes -
Include expanded instance view information into virtual machines response
It would be very useful to include
properties.instanceViewinto base response for 'Microsoft.Compute/virtualMachines'. It's not efficient enough to get instance statuses for each machine in separate API call. Moreover I didn't find an ability to retrieve this property via GraphAPI at all.5 votes -
Grafana plugin for Resource Graph
We love the Grafana plugins for Log Analytics, Appinsights, ADE. Can we see a plugin for Azure Resource Graph next?
4 votesYou can use Resource Graph Explorer in the Azure Portal to do queries and save and pin to your Azure dashboard. Would this serve your scenario.
-
Resource Changes: Track resource move
Create a change log when a resource is moved to a different resource group and maintain its history from before it moved
4 votes -
Ability to Query FrontDoorWebApplicationFirewallPolicies custom rules
Ability to query FrontDoor Web Application Firewall Policies custom rules, This will be handy to list out what custom rules that are being added from the security governance side.
3 votes -
Azure Resource Graph: Add support for the semi and anti flavors to the join operator
While leftsemi/anti and rightsemi/anti are part of KQL for the join operator, they aren't supported by Resource Graph. Only innerunique, inner, and leftouter are supported.
https://docs.microsoft.com/en-us/azure/data-explorer/kusto/query/joinoperator?pivots=azuredataexplorer#join-flavors3 votes
- Don't see your idea?