Help me customize Azure Access Review emails

By Adam Cogan in Azure, Microsoft 0 Comment

SysAdmins find it a lot of work to keep giving people permissions to resources like Azure.

I wanted to say that we’re now really enjoying using Azure Access Reviews. We’ve written about how we use it on ssw.com.au/rules/entra-group-access-reviews.


At SSW we have so many Teams and Groups – almost all set to public. Since people can join so many, they poke around, join a group, and never leave. That means they are included in every calendar appointment and every team email and the noise was reported as an employee dissatisfaction.

Access Review has been invaluable because it effortlessly removes users when they no longer need access. We have set it to run every 3 months and they need to say they are still a member.

❌ The Access Review email does not look like anything SSW SysAdmins would send, so it gets deleted mistakenly by many people in our company.

Having the ability to customize the email is important.

Suggestion:

  • Email subject – Give the ability to edit
  • Email body – Give the ability to edit text
  • Email body – Give the ability to add an image
  • Email body – Having placeholders for significant fields, like Group, would be ideal (see ‘SSW SugarLearning’ in the image)
  • From address – Currently employees think it is ⚠️spam from Microsoft, not from SSW SysAdmins. So it would be a big bonus if we could send the notifications from our own email address to prevent any confusion.
Figure: ❌ Bad example – Email shows limited context and looks just like a lot of other notifications that we get

Azure DevOps – Show Display Name from Azure AD

By Chris Schultz in Azure, Azure AD, Azure DevOps 0 Comment

We have Azure DevOps connected to Azure AD so that our users can log in with their Azure AD credentials.
Currently, DevOps does not show our users’ Display Name that is set in Azure AD.

Users can change their own name here, but this is not a fix. For the sake of consistency, display names should match the display names used in Azure AD.

Figure: Display Name in Azure AD (with [SSW])
Figure: Display Name in Azure Devops (missing [SSW])

Help me know instantly what Tracing Mode is via a rename

By Adam Cogan in Azure, GPT, Microsoft, PowerApps 0 Comment

Today I showed at NDC Oslo how to build a bot manually with C# and Blazor using the Azure OpenAI GPT services.

Then I showed how to do the same thing automatically with the new PVAs.

At the end I did a poll of the audience (about 300 people) – the Norwegians vote was about 80% saying they preferred the PVA solution.

Well done – the 1st impression is awesome ⭐

Keep the $ attainable please… it is the danger point for adoption.

Little UX suggestion… Regarding this “Tracing Mode” screen.
I reckon I would rename it to “Query Execution Plan” or maybe just “Execution Plan”

Then you keep the same name as you have in SQL Server: