Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

FILTER BY CATEGORY

My ideas: Security

Showing 236

HTTP Password Changes Timing Issues - AdminP - Domino Caching - etc.

HTTP Password Changes has many challenges as documented by HCL here: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0024871 Other platforms have challenges, but not as severe as this. If Domino is going to be accepted as a r...
over 1 year ago in Domino / Security 2 Needs Review

Access logging with Full Access Administrator privilege

After enabling Full Access Administrator, log on which databases were accessed by activating this feature and what documents were read.
over 4 years ago in Domino / Security 3 Under Consideration

Domlog is not reliable for authenticated users

The Authenticated requests is not reliable if I do a basic auth get request against a domino server and write any username and any password this username shows up as an authenticated request. It would be good that we could rely on authenticated r...
almost 4 years ago in Domino / Security 1 Under Consideration

DFR - Domino needs to add a referencing to the orignal message ID when sending a DFR to the sender.

In the example below we can observe that the bounce message has its own message ID along with the references and in-reply-to which are the original message ID". Currently, message goes to Spam folder and not to the user's mailbox. The third party ...
almost 3 years ago in Domino / Security 0 Under Consideration

Add multiple domino websites with one Relying Party in SAML configuration

There is a requirement to add second domino website with same Relying Party in SAML configuration. Currently this configuration is not supported in domino , so raising this enhancement request to evaluate and consider in future release.
almost 2 years ago in Domino / Security 0 Needs Review

Windows SSO (Kerberos) with Notes Federated Login

While configuring Windows SSO (Kerberos) with NFL for Notes client using F5 IdP, it has been observed that it is still showing IdP authentication popup. We don't want that users have to enter an username and password when they open the Notes Clien...
over 1 year ago in Domino / Security 0 Under Consideration

Restrict the number of messages a single user can send in 24 hours to a maximum number of messages

Sometimes users are victims of clever phishing emails sent to them. Unfortunately this opens up the use of their valuable credentials to potential hackers. These hackers can then send email using their credentials. If Domino would have an internal...
about 1 year ago in Domino / Security 3 Under Consideration

TOTP and send code to some email address set by a user.

TOTP authentication code send to an email address which is set by a user will be very use full on some certain situation.
over 1 year ago in Domino / Security 0 Needs Review

Disable core REST API

If Rest API are disabled on the server, this Core API - hostname/api/core/nonce should not be accessible or not available when a user generated the request from browser.
over 2 years ago in Domino / Security 4 Needs Clarification

Warn users when they are sending a message to a global group

Staff are currently warned if they click on Send on a message that has no subject line. It would be useful to warn people when they have selected an extremely large group to send an email to.
over 4 years ago in Domino / Security 3 Assessment