Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

FILTER BY CATEGORY

Security

Showing 100

Add - SHA 256+ option in configuring password.

moving away from having SHA1 on an approved list. So it will not longer be allowed as part of FIPS-140 compliance. Customer needs additional option to configure password hashing.
about 1 month ago in Domino / Security 1 Under Consideration

Url scanning blocks ipadress

Add functionlity as with ip adress trying to login with multiple usernames. If an ipadress is trying different non existing url:s that ip will be blocked for x amount of time. Also that url:s can be ”blacklisted” so if an user is trying to access ...
2 months ago in Domino / Security 0 Under Consideration

Check and monitor Domino time vs NTP servers

Correct Domino time becomes more and more important. Usually the OS is already using NTP servers. Domino only updates Domino time from system time when jumping to a future date, but only in small steps. Having this in mind the time could be still ...
3 months ago in Domino / Security 1 Under Consideration

public key repository

Just had a thought. What if Domino has a feature where anyone (with registration) can deposit their public keys into a repository, that, if anyone wants to communicate securely, just do a quick look and grab the public key here, and bam, it's done...
4 months ago in Domino / Security 1 Under Consideration

Nonce checking for Domino Web Application

iNotes has the nonce checking feature for security purpose. This feature is also needed when using web application on Domino Server side. Currently, a web user can post the data to Domino Web Server by using crafted HTML files created from the cl...
8 months ago in Domino / Security 0 Under Consideration

Option to select whether the LTPAToken should be completely removed/or usable when session has been completely ended.

When enabling Session authentication across servers, the token issued by a server can still be used even after the session has been completely ended on the server and on the browser. If a user issues a request to the server using the same token, y...
10 months ago in Domino / Security 0 Under Consideration

Setting not to display the Access Control List settings

Notes users who don't have administrator privileges cannot change ACLs of Database but can view the settings of Access Control List. We do not want to show the group names, server names, user name etc. displayed in the Access Control List to them...
11 months ago in Domino / Security 0 Under Consideration

Tool to remove the internet certificate from the server ID

The "Delete from ID file" action from the User Security (in Notes) or ID Properties (in Admin client > Configuration tab) is greyed out when trying to remove an internet certificate from the server ID. We would like to request a tool that will ...
11 months ago in Domino / Security 0 Under Consideration

Block users that dont have a smartcard enabled ID-file

Today it is possible for users to smartcard enable their own ID-file and then use the smartcard to login to the Notes environment. Make it possible to block users that dont have a smartcard-enabled ID. Or in some way force users that they must use...
about 1 year ago in Domino / Security 0 Under Consideration

Force logout web mail users (i.e. Verse & iNotes)

Customer wants to apply a force logout to users whose accounts are compromised. Changing their password or restarting http task does not automatically logout the user. Waiting for token expiration could be risky if set for a long duration. Current...
about 1 year ago in Domino / Security 1 Under Consideration