Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 312 of 8663

ID Vault can collect Notes ID from different Domino Domains

Currently, ID vault only support consolidation of Notes in single domain. All replicas of a vault must be located within a single Domino® domain and all vault users must have home servers in that domain. Note, though, that users under different o...
over 6 years ago in Domino / Administration / Security 0 Under Consideration

Domino WebSite - Add an SSL Authentication Option "Name & Password + Client Certificate"

Currently if you enable "Name & Password" together with "Client Certificate" Option in Domino "Web Site" document, Domino will accept either your Domino Credentials or your Client Certificate. Add an Option so you could choose to make Domino C...
about 5 years ago in Domino / Security 3 Under Consideration

From field should not be stripped off when adding item fields on "MIME> Advanced > Advanced Outbound Message Option > Always send the following Notes items in headers:""

In relation to SPR DPOS6UWP4G - We have added From: $vianotes field on Configuration Document > MIME> Advanced> Advanced Outbound Message Option> Always send the following Notes items in headers:" When domino sends the message to a n...
over 5 years ago in Domino / Security 0 Under Consideration

Restart/maintenance shouldn't require user-reauthentication in HCL Verse. But make a setting for this

Today when restarting server (http service) users are required to reauthenticate to HCL Verse. This sets limitations when performing maintenance. Reauthentication should be a setting to be adjusted according to security guidelines.
8 months ago in Domino / Security 2 Needs Clarification

field encryption for web users

Field encryption on web application is not supported based on the link below: https://help.hcltechsw.com/dom_designer/12.0.2/basic/H_DOCUMENT_AND_FIELD_ENCRYPTION_OVERVIEW.html Note: Web users cannot see encrypted fields with a browser. To see...
over 1 year ago in Domino / Security 1 Needs Review

Consider removing configure ID Vault for TOTP

It's domino 12 one new feature that support TOTP, and HCL Traveler server also support TOTP authentication, but it requires to configure ID Vault, we could not skip or ignore this step. https://help.hcltechsw.com/domino/12.0.0/admin/wn_security.ht...
over 2 years ago in Domino / Security 2 No Plans to Implement

Restrict some specific users to send mails to external domain gmail or yahoo.com

In domino server feature on creating a policy to block specific users not to send mail to outside domains (gmail, yahoo, etc.)
about 6 years ago in Domino / Security 2 Under Consideration

Customize DKIM/SPF untrusted level

Sorting to a junk folder is implemented in "Delivering untrusted mail to the Junk folder", but is fixed for DKIM/SPF untrusted. We would like to customize this item. For example, "None" should be "untrusted".
about 2 years ago in Domino / Security 2 Under Consideration

ability to enable database "Per document" audit

Domino 10 has deletion logging feature, it would be great to enable per database logging, so we can see which documents has been CREATED/EDITED/OPENED/DELETED. (Deleted already implemented with Deletion logging feature) for example for Domino D...
over 6 years ago in Domino / Security 2 Under Consideration

Disable core REST API

If Rest API are disabled on the server, this Core API - hostname/api/core/nonce should not be accessible or not available when a user generated the request from browser.
almost 5 years ago in Domino / Security 4 Needs Clarification