Robin Vermeirsch

← Customer Feedback for Microsoft Azure

My feedback

  1. Add MFA support to Secure the Windows 10 logon

    355 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    28 comments  ·  Azure Active Directory » Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    AdminAzure AD Team (Product Manager, Microsoft Azure) responded

    For requiring additional factors with Windows Hello for Business, please see – https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/feature-multifactor-unlock

    For why PIN is better than a password, please see https://docs.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-why-pin-is-better-than-password

    For Authenticator app sign in to Azure AD, please see https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-authentication-phone-sign-in

    As always, other feedback is welcome

    /Ravi

    Robin Vermeirsch supported this idea  · 

  2. Add support for the Microsoft Authenticator app in B2C

    188 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    18 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    need-feedback  ·  AdminAzure AD Team (Software Engineer, Microsoft Azure) responded

    We are looking to add additional MFA options for Azure AD B2C in the next few months. As part of the investigation, we want to learn more about your requirements. Email your feedback to aadb2cpreview@microsoft.com.

    When you say “support for Microsoft Authenticator”, which feature are you referring to?
    1. The ability to see the codes in the authenticator app
    2. The ability to receive push notifications for MFA

    If both, which do you prefer more?

    Again, please email your feedback to aadb2cpreview@microsoft.com. Feel free to include more details about your scenarios/requirements!

    Robin Vermeirsch commented  · 

    especially with custom policies

    Robin Vermeirsch commented  · 

    really need this

    Robin Vermeirsch supported this idea  · 

  3. Programmatically manage B2C policies

    124 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    10 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  4. Programmatically register B2C applications

    151 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    15 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  5. Allow the User Admin role to Enable/Disable MFA for users

    838 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    176 comments  ·  Azure Active Directory » Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  6. Allow all and future users from guest tenant to automatically be added as guest users.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » B2B  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch commented  · 

    You can script this without the invitation.

  7. Add support for nested groups in Azure AD (app access and provisioning, group-based licensing)

    1,117 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    135 comments  ·  Azure Active Directory » SaaS Applications  ·  Flag idea as inappropriate…  ·  Admin →
    started  ·  AdminAzure AD Team (Product Owner, Microsoft Azure) responded

    We’re continuing to investigate options for adding this support. There are technical challenges to overcome in order to make this happen. We thank you for all your valuable comments so far, and welcome any additional feedback you have on what are the most important use cases involved with these scenarios.

    Robin Vermeirsch supported this idea  · 

  8. Add Directory Roles to B2C

    44 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  9. Backup Codes for Azure MFA

    58 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    9 comments  ·  Azure Active Directory » Multi-factor Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    planned  ·  AdminAzure AD Team (Product Manager, Microsoft Azure) responded

    There is planned work to address this scenario. We don’t feel that backup codes provide a good security option as they’re often misplaced. Also, it’s hard to have users print them out and have them when they’re needed. Instead, we are looking at a time-limited passcode that could be generated either by the user (just in time when it’s needed) or by an admin (for example a helpdesk agent). The organization admin would have control over when a user could generate these codes. The code can be used for a limited time, then it will no longer be valid.

    Note – for areas with limited cellphone connectivity (or roaming charges), the code generated in the authenticator app will allow MFA login. The time-limited passcode is meant to stand in if the user temporarily forgot/lost their phone.

    Richard

    Robin Vermeirsch supported this idea  · 
    Robin Vermeirsch commented  · 

    or just allow support the enable a one time bypass.

  10. RBAC roles for Viewing/Modifying Authentication Info (MFA)

    54 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    20 comments  ·  Azure Active Directory » B2C  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  11. disabled device

    6 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Azure Active Directory » Conditional Access  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

  12. Increase number of permitted agents per licensed users

    2 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Forgot password?
    Create a password
    Signed in as (Sign out)
    Close
    Close

    We’ll send you updates on this idea

    0 comments  ·  Azure Active Directory » Licensing  ·  Flag idea as inappropriate…  ·  Admin →
    Robin Vermeirsch supported this idea  · 

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice