HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

My ideas: Security

Showing 292

Key Rollover (create new public keys) with ID Vault enabled

Currently for Domino, a user with a vaulted ID cannot request a key rollover through the User Security window in notes Client; thus only an Administrator can initiate key rollover through the policy configuration. The key rollover on the client ID...
over 5 years ago in Domino / Security 0 Under Consideration

Multiple certificate in JVM Is not working correctly

Customer has installed 2 certificate in Domino JVM cacerts. And customer have two java application hosted on your Domino server which should refer the certificate installed in the JVM cacerts. But the application is only using first certificate an...
over 5 years ago in Domino / Security 0 Under Consideration

Each protocol should have its own ACL

For a given server, there is no way to specify a subset of users allowed to connect to POP3, another subset of users allowed to use IMAP, etc. I need a way to restrict which users are allowed to use a specific protocol.
over 5 years ago in Domino / Security 0 Under Consideration

Capability to identify actual file format using attachment properties.

When users change the file extension ( .exe to .txt ) in Windows Explorer, Domino should have capability to identify actual file format using attachment properties.
almost 6 years ago in Domino / Security 1 Under Consideration

Disabling wink to be used as a potential attack vector

Seeing more and more attempts to use Wink as an attack vector (see example below). Looking into possibility to disable wink so that it wont cause any potential security risk. 03/17/2022 10:04:27 AM HTTP JVM: 1399490 [Thread-11] INFO org.apache.win...
almost 2 years ago in Domino / Security 2 Already Exists

Domino to have permissions policy header

There are customers who are experiencing permissions-policy vulnerability. This is the former "Feature Policy" with new specs. Can domino have the same to mitigate vulnerabilities related to it?
about 2 years ago in Domino / Security 3 Needs Clarification

Rate limiting protections for Domino

An authentication endpoint without rate limiting protections can be susceptible to innumerable amounts of credential stuffing and eventual guessing of set of credentials used for authentication. API endpoints can also be used to attack further inf...
about 2 years ago in Domino / Security 1 Needs Clarification

User defined keystore for Domino

Currently, the Notes/Domino v9.x (same with newer versions) can only use the default JAVA trust keystore under Domino application server. The JAVA update overwrites this default keystore. Please add the option to set a custom,user defined keystore...
about 2 years ago in Domino / Security 2 Needs Review

Wants to change the SAML URL which hard coded with /names.nsf?SAMLLogin

If SAML URL customization is the bussiness requirement so SAML URLshould be flexible which currently hard coded with /names.nsf?SAMLLogin
over 4 years ago in Domino / Security 2 Needs Clarification

Control over the setting "don't let administrator set Domino web/internet password to match Notes password" via Domino policy.

Administrator should have control over the setting "don't let administrator set Domino web/internet password to match Notes password" via Domino policy.
about 2 years ago in Domino / Security 1 No Plans to Implement
Copyright © 2023 HCL Technologies Limited