Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 273

TOTP (MFA) Scratch code - set expiry date and limit number of codes generated

When Scratch codes are generated for TOTP setup there are 10 codes generated with no expiry date and I have the following suggestions : 1) Add an "Scratch Code Expiry Time (hrs)" so administrators can set the code to expire for example after 48 ho...
almost 3 years ago in Domino / Security 1 Needs Review

Limit web users access with a rule

Create a rule for the Domino web server so that "If (IP address IS NOT 10.1.1.*) AND (User IS John Smith) THEN PROHIBIT ACCESS". Presently, it is only possible by restricting the IP address (by configuring a blacklist on the server) and user restr...
almost 4 years ago in Domino / Security 1 No Plans to Implement

Provide an SDK cal to validate HTTP passwords against the new HTTP ID Vault implementation

Now that we can use Vault for HTTP authentication, the existing C-API calls don't work any more. It makes sense to have a central call to be leveraged in back-end applications.
almost 4 years ago in Domino / Security 0 Under Consideration

Http task should Identify the user status active/blocked before proceed for password authentication

Currently http behavior are like this : In case you blocked (added in deny group) the user in domino server and and HTTP task is configured to obey this setting, (in server document - ports internet ports web- Enforce server access settings: Yes) ...
almost 4 years ago in Domino / Security 3 No Plans to Implement

Remove privelege elevation requirement from Domino Java Console

There is really no good reason for the Java Console to require "Run as Administrator". I believe the only reason it does currently is because it modifies dconsole.ini and/or dconsole1.ini in the Notes program directory. To improve security, these ...
about 4 years ago in Domino / Security 1 Under Consideration

SAML2 self service integration

In a saml2 world getting rid of ldaps and also auto deploy to groups would be an dream. The idea is that you enable auto creation of users with a certain email domain or attribute with a secretkey from adfs. You also specify some group access ...
about 4 years ago in Domino / Security 2 Needs Clarification

Mail rule setup that will lookup groups in the rule

This feature will allow the user to set mail rule on the notes client and able to look up groups that is included in the rules
over 4 years ago in Domino / Security 2 Needs Clarification

Meeting update does not respect Encrypt checkbox

In a scenario whereby a policy is set (intentional) to encrypt all mail, there is an impact on meeting and the use of traveler. Given a wish to be able to uncheck the Encrypt checkbox on sending a meeting invite, it has been noticed that any m...
over 4 years ago in Domino / Security 1 Under Consideration

Get Notes/Domino On Board with ISVs for Cloud-based front end (Mimecast/Barracuda Sentinel) Anti-Fraud protection

Newer/trending anti-phishing/fraud products REQUIRE a cloud based messaging system (M365, Google apps, etc.). For example, we are a Trend ScanMail for Domino customer. We cannot use enhanced security products such as Barracuda's Sentinel, or offer...
over 4 years ago in Domino / Security 0 Under Consideration

Encrypt database based on Secret Encryption Key

We want to have the ability to encrypt a entire database based on the Secret Encryption Key. Now it's only possible to encrypt forms, fields, etc.
over 4 years ago in Domino / Security 1 No Plans to Implement