Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

My ideas: Security

Showing 298

Accept external emails for a restricted group document when the external user is added on the security tab of the group document properties.

Sending a message to a group will be rejected with the reason "Not authorized to send mail to this user or group", this happens if the setting in security tab of the group document properties is a specific internet address from the external non-do...
about 5 years ago in Domino / Security 2 No Plans to Implement

Id vault password reset for cross domain environment

Currently password reset in id vault for cross certified domain is not supported.
over 5 years ago in Domino / Security 0 No Plans to Implement

Setup non-default browser for large number of users via policies

Domino version 9.0.1 FP10 With use of user policies (basic - browser options - type "other") there is no possibility to set up "internet browser path". It can be done only manually in location doc on client side, but this is not a way to go with t...
over 5 years ago in Domino / Security 2 Under Consideration

Limit web users access with a rule

Create a rule for the Domino web server so that "If (IP address IS NOT 10.1.1.*) AND (User IS John Smith) THEN PROHIBIT ACCESS". Presently, it is only possible by restricting the IP address (by configuring a blacklist on the server) and user restr...
over 4 years ago in Domino / Security 1 No Plans to Implement

Option to force Https while using @urlopen code with computed Url and relative path.

There are requirements when domino server is behind the SSL offloader and domino serer is not SSL enabled. If there are @urlopen code used with computed Url and relative path. Domino is adding by default http with the server FQDN , So this code is...
over 3 years ago in Domino / Security 1 No Plans to Implement

Bypass applications from authentication and allow them to connect to Domino SMTP server and relay email when Anonymous is set to No for Mail SMTP Inbound in the SMTP

Customer has Anonymous connection set to "No" for Mail SMTP Inbound in the SMTP server document -> Ports -> Internet Ports -> Mail. If Anonymous is kept Yes and application IP added to Exclude these connecting hosts from anti-relay checks...
over 5 years ago in Domino / Security 0 No Plans to Implement

Let us choose the attributes for authentication in webapplications like we can in Websphere/Connections: uid;cn;mail

We can now only set this into 2 options: Lower and Higher security which contains several attributes each. We would like to choose the attribute(s) for authenticating into Domino webapps. The 2 options is not good when you want to logon using shor...
over 3 years ago in Domino / Security 2 Under Consideration

Provide an SDK cal to validate HTTP passwords against the new HTTP ID Vault implementation

Now that we can use Vault for HTTP authentication, the existing C-API calls don't work any more. It makes sense to have a central call to be leveraged in back-end applications.
over 4 years ago in Domino / Security 0 Under Consideration

Database/dictionary for storing bad common passwords

Currently, customer does use custom password policy settings. But is requesting to have the ability to create a dictionary/database or a feature for storing bad Notes ID passwords and prevent users to use it as their Notes ID passwords. The purpos...
over 3 years ago in Domino / Security 1 No Plans to Implement

Http task should Identify the user status active/blocked before proceed for password authentication

Currently http behavior are like this : In case you blocked (added in deny group) the user in domino server and and HTTP task is configured to obey this setting, (in server document - ports internet ports web- Enforce server access settings: Yes) ...
over 4 years ago in Domino / Security 3 No Plans to Implement