HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

FILTER BY CATEGORY

Security

Showing 24

Cached username on inotes even password is not correct

A feature to enable preventing mail address to be deleted even if the password is not correct
almost 3 years ago in Domino / Security 1 Needs Clarification

SAML2 self service integration

In a saml2 world getting rid of ldaps and also auto deploy to groups would be an dream. The idea is that you enable auto creation of users with a certain email domain or attribute with a secretkey from adfs. You also specify some group access ...
about 3 years ago in Domino / Security 2 Needs Clarification

Forbid access to Domino server if id file password does not match ID Vault

There should be a new option to forbid access to Domino server for Notes client users using ID files with passwords that don't match the password in ID Vault. Justification: Currently it is complicated to forbid access to Domino from Notes client ...
9 months ago in Domino / Security 2 Needs Clarification

Block unencrypted mail to specific domain

Need to block unencrypted email being sent to one specific domain.
almost 2 years ago in Domino / Security 1 Needs Clarification

Single sign-on for web access with Notes authentication

When creating a hybrid application that uses a Notes client and Web access, single sign-on is required. Currently, there is no way to pass the token with @urlopen or NotesHTTPRequest. I need a way to get the LtpaToken cookie using the Notes cl...
almost 2 years ago in Domino / Security 3 Needs Clarification

Wants to change the SAML URL which hard coded with /names.nsf?SAMLLogin

If SAML URL customization is the bussiness requirement so SAML URLshould be flexible which currently hard coded with /names.nsf?SAMLLogin
almost 3 years ago in Domino / Security 1 Needs Clarification

Find a way to prevent ACL changes even with Full Access Admin invoked.

Find a way to prevent ACL changes even with Full Access Admin invoked.ORFind a way of not allowing changes made to the ACL on a spoke server to replicate out to all the other servers.
over 3 years ago in Domino / Security 4 Needs Clarification

Domino to have permissions policy header

There are customers who are experiencing permissions-policy vulnerability. This is the former "Feature Policy" with new specs. Can domino have the same to mitigate vulnerabilities related to it?
7 months ago in Domino / Security 3 Needs Clarification

Rate limiting protections for Domino

An authentication endpoint without rate limiting protections can be susceptible to innumerable amounts of credential stuffing and eventual guessing of set of credentials used for authentication. API endpoints can also be used to attack further inf...
7 months ago in Domino / Security 1 Needs Clarification

Relay on QuerySave agents

We need to be able to relay on that if a QuerySave agent is added to a form it will always be runned for security reasons, otherwise someone could bypass business logic. And that if the form field isn't exposed on the web you can't change it from ...
almost 2 years ago in Domino / Security 1 Needs Clarification
Copyright © 2023 HCL Technologies Limited