Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

My ideas: Security

Showing 279

Internet Password History and Complexity

Password history and complexity checks are possible on notes id passwords but for internet password validation so we have to use using custom code, it would be nice to include the internet password history and complexity as part of standard Domino...
almost 3 years ago in Domino / Security 1 Under Consideration

Database/dictionary for storing bad common passwords

Currently, customer does use custom password policy settings. But is requesting to have the ability to create a dictionary/database or a feature for storing bad Notes ID passwords and prevent users to use it as their Notes ID passwords. The purpos...
almost 3 years ago in Domino / Security 1 No Plans to Implement

Turn off responding on / api

If I haven't turned on Data Services in Domino this endpoint should on respond at all. It's an unnecessary security risk to keep it open if not used, common practice is to have endpoints closed if they are not used. Also to be able to enable it fo...
almost 3 years ago in Domino / Security 0 Under Consideration

Relay on QuerySave agents

We need to be able to relay on that if a QuerySave agent is added to a form it will always be runned for security reasons, otherwise someone could bypass business logic. And that if the form field isn't exposed on the web you can't change it from ...
almost 3 years ago in Domino / Security 1 Needs Clarification

Let's Encrypt certificate manager program to be available for IBM i

Certificate Manager (CertMgr) server task. This task runs on one server in a Domino domain and handles the certificate processing. It leverages new back-end security APIs and requires a HCL Domino® version 12 or higher server running on Docker, Wi...
almost 3 years ago in Domino / Security 4 No Plans to Implement

Support for CSRF Tokens in domino

The security landscape is changing all the time, and one of the new things that customers and security experts are asking for is anti forgery tokens that is sent with forms up to prevent forgery data sent back from clients. It would be good if dom...
almost 3 years ago in Domino / Security 3 Already Exists

MFA - index.html customization

Customer wanted to change the name of the MFA Login text to the Company name in /MFASetup?index.html. Attaching the screenshot for reference.
almost 3 years ago in Domino / Security 2 Assessment

Block unencrypted mail to specific domain

Need to block unencrypted email being sent to one specific domain.
about 3 years ago in Domino / Security 1 Needs Clarification

Single sign-on for web access with Notes authentication

When creating a hybrid application that uses a Notes client and Web access, single sign-on is required. Currently, there is no way to pass the token with @urlopen or NotesHTTPRequest. I need a way to get the LtpaToken cookie using the Notes cl...
about 3 years ago in Domino / Security 3 Needs Clarification

Specify TLS/SSL version used by certain port or protocol.

Some application only uses certain version of TLS/SSL. Due to vulnerabilities we don't want this TLS/SSL version to be available to all ports/protocol. We want an ability to specify which versions of TLS/SSL a port or protocol can and cannot use.
about 3 years ago in Domino / Security 2 No Plans to Implement