Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

My ideas: Security

Showing 109

Restrict the number of messages a single user can send in 24 hours to a maximum number of messages

Sometimes users are victims of clever phishing emails sent to them. Unfortunately this opens up the use of their valuable credentials to potential hackers. These hackers can then send email using their credentials. If Domino would have an internal...
about 2 years ago in Domino / Security 3 Under Consideration

SMTP Inbound Certificate validation

Today Domino accepts mail from hosts with any x.509 certificate. there is no verification. It's difficult to only allow mails from trusted certificates. But it would be important to have the information if the connection was coming from a connecti...
over 2 years ago in Domino / Security 0 Under Consideration

Restrict users from viewing person and server configurations in Domino Directory

Currently all users (with reader access) are able to access Person document > Basics/ Work/ Other/ Misc/ Certificates/ Roaming/ Administration tab. Can we restrict the users to only access to Basics tab for security best practice?By right, user...
over 2 years ago in Domino / Security 1 Under Consideration

Document Encryption / Decryption on the Web using Public or Private keys

As per product document secret key encryption/decryption feature on web is achievable using below link https://help.hcltechsw.com/dom_designer/9.0.1/user/wpd_encrypt_decrypt_xpages_overview.html However customer is looking for Public or Private ke...
over 2 years ago in Domino / Security 3 Under Consideration

HTTP Cookie limit

When there are more than 4k worth of cookie data passed to Domino, Domino does not capture the information in the CGI variable HTTP_cookie.
over 2 years ago in Domino / Security 0 Under Consideration

Evolve management of Java Security Policy on Domino Server

Domino mandates java security controls to avoid code from performing privileged operation. Control of policies is defined by java.policy files. This is a burden for customer, partners and admins. The proposal is to implement a new Java policy prov...
over 2 years ago in Domino / Security 0 Under Consideration

Option for the user to choose whether they want to set TOTP or not

Just like in other mail applications (i.e. gmail/yahoo), the user should have the ability to choose whether or not to enable TOTP. Currently, it seems the only choice is to have it enabled on the server side which applies for all (yes with TOTP op...
over 2 years ago in Domino / Security 6 Under Consideration

Let us choose the attributes for authentication in webapplications like we can in Websphere/Connections: uid;cn;mail

We can now only set this into 2 options: Lower and Higher security which contains several attributes each. We would like to choose the attribute(s) for authenticating into Domino webapps. The 2 options is not good when you want to logon using shor...
over 2 years ago in Domino / Security 2 Under Consideration

Add a blanket grant for the XPages JVM to the default java.policy file

I just lost two days, just to find out that our RuntimePermission exception (getClassLoader) in Java is caused by a missing setting in a java.policy file, somewhere deep in the Domino tree. In the end, after trying several different settings, the ...
almost 3 years ago in Domino / Security 3 Under Consideration

Internet Password History and Complexity

Password history and complexity checks are possible on notes id passwords but for internet password validation so we have to use using custom code, it would be nice to include the internet password history and complexity as part of standard Domino...
almost 3 years ago in Domino / Security 1 Under Consideration