Generally Available: Application Gateway adds MaxSurge support for zero-capacity-impact upgrades
AzureMicrosoft
Update from:Generally Available: Application Gateway adds MaxSurge support for zero-capacity-impact upgrades
Azure Application Gateway now supports MaxSurge, enabling new instances to be provisioned during rolling upgrades without taking existing ones offline. This allows customers to transition to newer gateway versions without any capacity degradation, ensuring:
- Full traffic handling throughout the upgrade
- Minimized deployment risk
This enhancement offers greater resiliency and reliability for mission-critical applications, especially those requiring consistent performance during infrastructure updates.
Generally, Available: Search Job in Log Analytics - Now Supporting Up to 100 Million Results
Search Job lets you run asynchronous queries across all your workspace data, including long-term retention, and delivers results in new Analytics tables for further exploration.
We’re excited to announce that the maximum number of records returned by a Search Job has increased from 1 million to 100 million per result set! This allows you to analyze much larger datasets in a single job, providing a complete and accurate view of your data without splitting queries.
Search Job remains a key feature for large-scale log analysis, fast investigations, and advanced data processing - now with even more power.
Generally Available: Azure NetApp Files file access logs
Azure NetApp Files file access logs feature is now generally available, delivering enterprise-grade visibility into file-level operations across SMB, NFSv4.1, and dual-protocol volumes. This feature empowers organizations to enhance their security posture, streamline operations, and meet compliance requirements by capturing detailed telemetry on file access activities—including user identity, operation type, and timestamps. Capabilities provided through this feature are in alignment with Azure's Well-Architected Framework security best practices.
The file access logs feature is currently supported in these regions. We will be adding support for the other Azure NetApp Files supported regions soon.
Generally Available: Azure Functions Flex Consumption plan now supports 512 MB instance size and diagnostic settings
Azure Functions now allows you to choose 512 MB in addition to 2048 MB and 4096 MB as the memory instance size for your Flex Consumption apps. This enables you to further cost optimize your apps that require less resources, and allows your apps to scale out further within the default quota.
Diagnostic settings allow you to collect Flex Consumption application logs and resource metrics, then send to different destinations like Log Analytics, storage account, event hub, or partner solutions for monitoring and analysis.
Public Preview: Azure Bastion now supports connectivity to private AKS clusters via tunneling
With this release, you can now establish a secure tunnel from your local machine—via Azure Bastion—directly to your AKS API server using your standard Kubernetes tooling. This enables seamless access to both private clusters and public clusters with API server authorized IP ranges. Now, you can securely connect to your cluster’s API server from anywhere, without the need for complex VPNs, jump boxes, or exposing public endpoints. This is a significant leap forward in simplifying secure access for developers, operators, and partners working with private AKS environments.
Public Preview: Azure NetApp Files Flexible service level now supports cool access
Flexible service level in Azure NetApp Files allows customers to independently configure storage capacity and throughput, making it ideal for workloads with unique performance and sizing requirements—such as high-capacity volumes with low throughput or low-capacity volumes with high throughput. This flexibility helps optimize performance and cost across diverse application scenarios.
With the addition of cool access support, customers can now configure volumes in Flexible service level capacity pools to automatically tier cold data to Azure storage accounts. This reduces storage costs by offloading infrequently accessed data to a lower-cost tier, while maintaining seamless access and performance for active data. Cool access also supports cross-region replication for destination-only volumes, ensuring data protection without impacting source latency. This enhancement is available in all ANF regions.
Private Preview: DCesv6 and ECesv6 series confidential VMs with Intel® TDX
The DCesv6 and ECesv6 series are Azure’s next generation of Confidential Virtual Machines powered by the 5th Gen Intel® Xeon® processors (code-named Emerald Rapids) with Intel® Trust Domain Extensions (Intel® TDX). This will help to enable organizations to bring confidential workloads to the cloud without code changes to applications. The supported SKUs include the general-purpose families DCesv6-series and the memory optimized families ECesv6-series.
Confidential VMs are designed for tenants with high security and confidentiality requirements, providing a strong, hardware-enforced boundary. They ensure that your data and applications stay private and encrypted even while in use, keeping your sensitive code and other data encrypted in memory during processing. Additionally, we offer in-guest attestation support, enabling customers to confidently attest to and verify the integrity of their machines.
Generally Available: Azure Blob Storage Archive Tier Now in Malaysia West
The Archive access tier for Azure Blob Storage is now generally available in the Malaysia West region.
With this regional expansion, customers in Malaysia can now store infrequently accessed data in the cost-effective Archive tier, while meeting data residency and compliance requirements locally. The Archive tier is ideal for long-term backup, compliance, and archival scenarios, offering the lowest-priced storage option in Azure.
You can manage Archive tier data using the Azure portal, CLI, PowerShell, or REST API. This update brings Malaysia West in line with other regions that support the full range of Azure Blob Storage tiers: Hot, Cool, Cold, and Archive.
Generally Available: Azure Files provisioned v2 billing model for SSD (premium)
Azure Files now supports the provisioned v2 billing model on the SSD (premium) media tier. Provisioned v2 enables independent provisioning of storage, IOPS, and throughput, allowing you to create a file share that meets your exact storage and performance requirements. Additionally, the provisioned v2 model offers an increased file share size range from 32 GiB to 256 TiB.
Provisioned v2 for both SSD and HDD is generally available in all public cloud regions. For the current list of available regions
Generally Available: Azure Databricks connector for Microsoft Power Platform
Azure Databricks connector for Power Platform is now generally available. You can easily connect Azure Databricks with Microsoft Power Apps in several new ways. The new connector enables you to:
Support real-time data access without the need for data copying.
- Create dynamic applications that take advantage of large datasets directly from Azure Databricks.
- Easily set up connections through support for API key authentication and additional developer options.
- Efficiently visualize and work with data using the Power FX formula language.
- Set up Azure Databricks as a knowledge source for Microsoft Copilot Studio to leverage large data for AI insights.
This powerful combination enhances productivity and provides robust data insights, making Azure Databricks a valuable tool for modern data-driven applications.
Public Preview: Azure Cosmos DB for MongoDB (vCore) encryption with customer-managed key
Data stored in your Azure Cosmos DB for MongoDB (vCore) cluster is automatically and seamlessly encrypted with keys managed by Microsoft. Now, in addition to this service-managed key encryption (SMK), you have the option to add another layer of security by enabling encryption with a customer-managed key (CMK).
Many organizations require full control of access to their data using a CMK and the ability to make their data stored in the cloud inaccessible. Data encryption with CMK for Azure Cosmos DB for MongoDB (vCore) enables you to bring your own encryption key to protect data at rest. It also enables organizations to implement separation of duties in the management of keys and data.
With CMK for data encryption, you're responsible for, and in full control of, an encryption key's life cycle, key usage permissions, and auditing of operations on keys. Data encryption with CMK for Azure Cosmos DB for MongoDB (vCore) is set at the cluster level. Data—including backups and logs, and temporary files—is encrypted on disk.
Generally Available: Azure Database for PostgreSQL flexible server in Malaysia West
Now you can deploy Azure Database for PostgreSQL flexible server in the Malaysia West Azure region.
Public Preview: Azure Managed Instance for Apache Cassandra v5.0
You can now use Cassandra 5.0 in Azure Managed Instance for Apache Cassandra, available in public preview. This release gives you access to the latest Cassandra features—like better performance and new indexing—without the hassle of managing infrastructure. It’s a faster, more scalable way to run your Cassandra workloads in the cloud.
Generally Available: Deployment resumption - Azure Automation revised Service and Subscription limits
After a brief hiatus, Azure Automation is resuming deployments of the revised Service and Subscription limits from August 11, 2025. This update will ensure fair distribution of cloud resources across all customers and further improve reliability and performance of the service. Since the resource requirements vary across organizations and evolve over time, we are empowering customers to configure their quotas based on actual usage.You can find the complete list of Azure Automation limits here.
Limits for following resources is being revised:
- Maximum number of Automation accounts in a subscription in a region.
- Maximum number of concurrent running jobs at the same instance of time per Automation account
We appreciate your patience during the deployment period and look forward to helping you make the most of these enhancements.
You can check the current usage, current limits and request for quota increase/decrease by creating a support request under the category Service and Subscription limits (Quotas) -> Azure Automation.
Public Preview: Announcing Tenant-Level Service Health Alerts in Azure Monitor
Introducing Tenant-Level Service Health Alerts - a new preview capability in Azure Monitor that enables customers to receive proactive notifications about service health issues impacting their entire tenant, not just individual subscriptions. With this feature, you can now create alert rules scoped at the directory (tenant) level directly from the Service Health page or the alert rule creation wizard in the Azure portal.
This enhancement ensures broader visibility and faster response to incidents affecting tenant-scoped services. To maximize coverage, we recommend configuring both subscription-level and tenant-level Service Health alerts.
Generally Available: App Service Inbound IPv6 Support
Inbound IPv6 support on public multi-tenant App Service is now generally available across all public Azure regions for multi-tenant apps on all Basic, Standard, and Premium SKUs, Functions Consumption, Functions Elastic Premium, and Logic Apps Standard.
Public Preview: Introducing Azure App Testing: Scalable End-to-end App Validation
Azure App Testing now enables developers and QA teams to run large-scale functional and performance tests to pinpoint issues in their applications, across frameworks like Playwright, JMeter, or Locust. It brings together two powerful testing capabilities—Azure Load Testing (Generally available) and Playwright Workspaces (now in Public Preview)—into a single hub in the Azure Portal, providing a consistent experience for resource provisioning, access control, and consolidated billing.
Generally Available: Upsert and Script Activity in Azure Data Factory and Azure Synapse Analytics for Azure Database for PostgreSQL
Announcing the general availability of the Upsert method and Script activity support in Azure Data Factory and Azure Synapse Analytics when using Azure Database for PostgreSQL. This enhancement enables you to perform efficient, scalable, and declarative data transformations directly within your pipelines.
With the Upsert method, you can now merge incoming data into existing tables without writing complex logic, reducing overhead and improving performance. With the Script activity, you can execute custom SQL scripts as part of your data workflows, enabling advanced transformations, procedural logic, and fine-grained control over data operations.
These capabilities streamline extract, transform, load (ETL) and extract, load, transform (ELT) processes and unlock new flexibility for building robust data integration solutions using Azure Database for PostgreSQL as a source or sink.
