HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 31

Domino support on the rfc5280 certificate

Currently, Domino does not support the rfc5280 type of certificates. https://datatracker.ietf.org/doc/html/rfc5280
1 day ago in Domino / Security 0 Needs Review

HCL Domino does not support using email addresses in groups

While switching the Authentication provider to Microsoft Entra using OIDC. The user identities returned from Entra are in email address format. It seems that email addresses added to group memberships are not being used for authorization to applic...
about 1 hour ago in Domino / Security 0 Needs Review

Domino should support modern SMTP related protocols DANE, MTA-STS and TLS-RPT

Domino is a bit behind in implementing e-mail security protocols. While DMARC is waiting for implementation, new protocols are already around: DANE, MTA-STS and TLS-RPT. 1. DANE (DNS-Based Authentication of Named Entities) RFC 6698: The DNS-Based ...
4 months ago in Domino / Security 1 Needs Review

SMTP-Relaying: Option "Allow relay function for selected users" needed

Hello, SMTP relaying of external entities (hosts or clients) can be enabled by 1. adding specific hosts to the exeptions of anti relay checks in the configuration document of the Domino server or 2. by enabling users to authenticate during the SMT...
13 days ago in Domino / Security 0 Needs Review

Document that describes Domino HTTP security settings

There's a document created years ago: https://www.caicorp.com/2017/11/22/adding-security-http-response-headers-to-ibm-lotus-domino-server-to-get-an-a-rating/ HCL should have a similar document with more security settings.
4 months ago in Domino / Security 1 Needs Review

Authenticated Received Chain (ARC) signing support

After the integration of the DKIM signature key, SPF evaluation, it would be interesting to complete the support for the anti-spam scheme through the integration of ARC signatures (RFC 8617), which for example solve the problem of message forwardi...
about 1 year ago in Domino / Security 0 Needs Review

Password policy functioning improvements with "Check vault first then directory"

ID vault is implemented on the server and in configuration document "Check vault first then directory" is enabled. All users authenticate to the server through ID vault successfully. Use case: The web user is able to login even though the warning ...
3 months ago in Domino / Security 0 Needs Review

Enhance CA Profile access and configuration options

There is an option to change the certificate duration for CA enabled certifiers, but this setting cannot be enforced, so that it cannot be overwritten by the registration authority (RA). The CA profile shows this option, but it is not possible to ...
3 months ago in Domino / Security 0 Needs Review

Server-Rules for E-Mail-Header

Our provider uses anti-spam software that writes the SPAM probability in the email header. Example: X-Spam-Level: ***** There should be a central way to evaluate the email header in Domino, for example to add a keyword to the subject line of affec...
7 months ago in Domino / Security 2 Needs Review

Automatically add "secure" flag to all cookies, when https is used

When a Domino server serves http requests through encrypted https, it should automatically add the " secure " flag to all cookies. There should be a global flag to enable/disable this feature. (default: enabled) In reality, most Domino servers wit...
about 1 year ago in Domino / Security 0 Needs Review
Copyright © 2023 HCL Technologies Limited