Andy Ball

My feedback

  1. 8,016 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    201 comments  ·  Web Apps  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball supported this idea  · 
  2. 234 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    36 comments  ·  Azure Resource Manager  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for voting on this suggestion. It is now completed and can be done via custom Azure Policy. Here is a sample custom policy to apply a specific tag at the RG and have them inherited by the Resources in that RG: https://github.com/Azure/azure-policy/tree/master/samples/ResourceGroup/copy-resourcegroup-tag

    Tag inheritance for existing resources is something that we plan to add support for in 2019.

    Andy Ball commented  · 

    dragging on a bit / any chance of an update ?

    Andy Ball supported this idea  · 
  3. 85 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    We aren’t planning to add the ability to enable MFA per-user to the Account Administrator, but we do have planned a limited admin role that will be able to perform that function, along with other MFA related settings. If you’ve implemented MFA through Conditional Access policy instead of the per-user enablement, you can use the Conditional Access Policy admin to control who has to do MFA.

    Andy Ball commented  · 

    Hit this today , try to replace expensive Legacy MFA solution with Azure MFA

    Andy Ball supported this idea  · 
  4. 288 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Andy Ball commented  · 

    I have the same ask of wanting to assign groups to AzureAD Roles. We have an existing PAM product to Self Service Request/ Authorise membership of On Prem Groups (that AD Connected into Azure) via built in workflow*. The logs for this are used for complying with Internal / External Audits etc.

    Currently investigating whether said Product can Manage Azure AD roles directly itself , so at least we have same request / authorise workflow.

    cheers
    Andy.

    * Yep, know about PIM :-;

    Andy Ball supported this idea  · 
  5. 1,713 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    64 comments  ·  Data Factory  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for your suggestions and your patience! We are working hard to enable the following enhancements for better network security:
    - Adding ADF to the list of “Trusted Azure service” for Azure Key Vault and Azure Storage (blob/ADLS Gen2). ETA is in the upcoming weeks.
    - Static IP range for Azure Integration Runtime so that you can whitelist specific IP ranges for ADF as part of firewall rules. ETA is next few months.
    - Support service tag for ADF

    We will provide an update as soon as any of the above becomes available.

    Andy Ball commented  · 

    Would like this to . We have a INFOSec requirement to limit access to HDInsight using on Prem Addresses only - ie block access to people outside the company. If we do this via a NSG , it breaks Data Factory connecvity to HDInsight which is used to run a python script as part of transform .

    So at present the only way I can see to fix this , is to change the NSG to allow traffic on Port 443 to the whole Azure IP range which is very open / and has to be checked / refreshed weekly.

  6. 3 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Active Directory » B2B  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball shared this idea  · 
  7. 12 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Azure Active Directory » B2B  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball commented  · 

    +1 as well as InviteRedirectUrl and ability to do multiple email addresses at once.

    Andy Ball supported this idea  · 
  8. 28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  (General Feedback) » Other  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball supported this idea  · 
  9. 140 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    planned  ·  11 comments  ·  Networking » ExpressRoute  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball supported this idea  · 
  10. 1,515 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    156 comments  ·  Azure Resource Manager  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball supported this idea  · 
  11. 189 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    31 comments  ·  Azure mobile app  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball commented  · 

    Current cost, breakdown, projected like the main portal

    Andy Ball supported this idea  · 
  12. 5 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Virtual Machines » Windows  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball commented  · 

    I mean Get-AzureRMVMSize of course..

    Andy Ball shared this idea  · 
  13. 30 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Scripting and Command Line Tools » Powershell  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball commented  · 

    I agree with my friend anonymous . I would be great to have a Get-AzureStorageTableContent (ie like Get-AzureStorageBlobContent) cmdlet for querying TableStorage , with a -Filter switch to able "WHERE" like functionality . So you get results as a Powershell type resultset that can be Piped (Where-object / sort-object) etc.

    Andy Ball supported this idea  · 
  14. 4 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Virtual Machines  ·  Flag idea as inappropriate…  ·  Admin →
    Andy Ball supported this idea  · 
  15. 2,022 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    275 comments  ·  Virtual Machines  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    Andy Ball supported this idea  · 

Feedback and Knowledge Base