Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 109

SAML configuration for Internet site with multiple hostnames

When you configure a SAML for an internet site shared by multiple sites, the SAML authentication leads to a redirect to the first server in the configuration as the response url is always pointing to that server. We tried to set it up with AAD. Th...
9 months ago in Domino / Security 1 Under Consideration

Force password change after next login checkbox

Please add a policy that forces the password to be changed at the next login. The policy should be immediately broadcast to all connected HCL Notes clients so that in case of a security problem, everyone is forced to use a new password. The settin...
9 months ago in Domino / Security 3 Under Consideration

Customize DKIM/SPF untrusted level

Sorting to a junk folder is implemented in "Delivering untrusted mail to the Junk folder", but is fixed for DKIM/SPF untrusted. We would like to customize this item. For example, "None" should be "untrusted".
11 months ago in Domino / Security 2 Under Consideration

Add more security events to DDM

DDM doesn't contain all important security events related but not only limited to a Domino administration made by an administrator. For example actions like password reset, download of ID from vault etc.
11 months ago in Domino / Security 3 Under Consideration

Configure the Domino HTTP server to ignore "Authorization: Bearer" headers on Domino 12.0.2

This has always worked well in Domino 10, 11 and 12.0 but now HCL has implemented an option on the internet site to use a bearer token. The problem with this option is that you then need to configure an OIDC provider which is not well documentated...
11 months ago in Domino / Security 3 Under Consideration

Sign dll used for Password synchronisation

HCL is a partner of Microsoft, it would be great if you can sign Password Capture and sinchronization dll with developer certificate, that Microsoft might already issued you. This will allow to use Password synchronization feature in LSA protected...
12 months ago in Domino / Security 1 Under Consideration

Honor "disable ability to change ownership" also in Mailin databases

We disabled the ability to change ownership by our users. Unfortunately mailin databases still can be changed by users. Please honor this policy setting also for mailindatabase or add a new policy setting for it. We don't want our users to change ...
about 1 year ago in Domino / Security 0 Under Consideration

Support PEM in addtion to KYR for Lotus Script/Java AddInternetCertificateToUser()

There are a couple of use-cases where importing certificates into a person document are important. Beside this Lotus Script method the only other method would be the C-API (SECNABAddCertificate() which only supports DER format by the way). Now tha...
about 1 year ago in Domino / Security 0 Under Consideration

Directory ACL for HTTP access

If you have Domino server used with internet site for many clients, a requirement is configure specific folder and subfolder for every customer access. In Apache HTTP, NGINX you have this possibiliy.. in Domino, the only way is manage the security...
about 1 year ago in Domino / Security 1 Under Consideration

Url scanning blocks ipadress

Add functionlity as with ip adress trying to login with multiple usernames. If an ipadress is trying different non existing url:s that ip will be blocked for x amount of time. Also that url:s can be ”blacklisted” so if an user is trying to access ...
over 1 year ago in Domino / Security 0 Under Consideration