We’re continuing to investigate options for adding this support. There are technical challenges to overcome in order to make this happen. We thank you for all your valuable comments so far, and welcome any additional feedback you have on what are the most important use cases involved with these scenarios.
45 votes5 comments · Azure Active Directory » Azure AD Connect Health · Flag idea as inappropriate… · Admin →
Thanks for the feedback. Connect Health team is planning to integrate Connect Health data with Log Analytics in phases. The first stream of ADFS data will be available in 3-6 months for preview.
Please reach out to askaadconnecthealth at microsoft.com for preview request.
Thanks for your feedback. Adding parameters to saved functions is definitely something we would consider for the future.
38 votes6 comments · Azure Active Directory » Role-based Access Control · Flag idea as inappropriate… · Admin →
We’re working on ways to simplify how a service provider can get access to customer Azure subscriptions. In the meanwhile, we recommend you check out Azure AD B2B.
/Vince and Stuart
A more granular delegation would be very useful. Currently we only have a choice between all (AdminAgent) or nothing. Delegation on a customer *subset* would be just perfect.
With the current CSP partenercenter expirience I already got what I need - THANK YOU :-)
This is something we’re considering. Additional feedback is welcome.
Totally agree. I suggest a differentiation using the DeviceTrustType Property of AzureAD.
On-premises we can do that by synching back that property back to AD and evaluate the DeviceTrustType in ADFS Conditional Access. But that requires ADFS 2016, Device-Writeback and Custom SynchRules.
We’re working on a solution and will update you when we know more.
Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
18 votes2 comments · Azure Active Directory Application Requests » User Provisioning · Flag idea as inappropriate… · Admin →
Thanks for your app request. If not already, please fill out this app request form at http://aka.ms/aadappsurvey so we can follow up with you. Thanks!
Outside removing Global admin from AAD joined devices’ local admin group, we are working on more granular AAD group based admin privileges on AAD joined devices.
Please refer to https://feedback.azure.com/admin/v3/suggestions/31914520/ for details on how we’re expanding the scope of local admin groups in AAD joined devices.
335 votes46 comments · Azure Active Directory » Role-based Access Control · Flag idea as inappropriate… · Admin →
Just wanted to post another update that this is a high priority, but we do not have any details to announce yet.
/Stuart and Vince