Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 273

Disable core REST API

If Rest API are disabled on the server, this Core API - hostname/api/core/nonce should not be accessible or not available when a user generated the request from browser.
over 3 years ago in Domino / Security 4 Needs Clarification

ID Vault can collect Notes ID from different Domino Domains

Currently, ID vault only support consolidation of Notes in single domain. All replicas of a vault must be located within a single Domino® domain and all vault users must have home servers in that domain. Note, though, that users under different...
over 5 years ago in Domino / Administration / Security 0 Under Consideration

Restrict some specific users to send mails to external domain gmail or yahoo.com

In domino server feature on creating a policy to block specific users not to send mail to outside domains (gmail, yahoo, etc.)
almost 5 years ago in Domino / Security 2 Under Consideration

SMTP Inbound Certificate validation

Today Domino accepts mail from hosts with any x.509 certificate. there is no verification. It's difficult to only allow mails from trusted certificates. But it would be important to have the information if the connection was coming from a connecti...
about 2 years ago in Domino / Security 0 Under Consideration

Add basic fields set on the CertSubmitTranslation form to include standard extension fields

Users of Domino-hosted web apps can choose from several certificates when authenticating with Common Access Card (CAC). Users want to enforce selection of the Personal Identity Verification (PIV) / Authentication certificate. So for this, they nee...
almost 4 years ago in Domino / Security 0 Under Consideration

ability to enable database "Per document" audit

Domino 10 has deletion logging feature, it would be great to enable per database logging, so we can see which documents has been CREATED/EDITED/OPENED/DELETED. (Deleted already implemented with Deletion logging feature) for example for Domin...
about 5 years ago in Domino / Security 2 Under Consideration

SAML - Better cluster support

- Automatic authentication of servers against ADFS in a clustered environment- Certificate management settings, Domino URL, single logout URL can't be edited when used in a clustered environment
about 5 years ago in Domino / Security 1 Assessment

Nonce checking for Domino Web Application

iNotes has the nonce checking feature for security purpose. This feature is also needed when using web application on Domino Server side. Currently, a web user can post the data to Domino Web Server by using crafted HTML files created from the cl...
over 1 year ago in Domino / Security 0 Under Consideration

Ability to change MAIL FROM when using forwarding address of user document

We need the ability to change the MAIL FROM when forwarding in user documents. If the original user name is used, the SPF check will result in an error. You can find this feature in the server configuration document or in Notes.ini (RouterUserRu...
over 2 years ago in Domino / Security 2 No Plans to Implement

The ability to delete certificates from a server's ID file especially for SAML enabled servers

Currently when creating a IdP Configuration document if the certificate name must be unique as the certificate is stored in the server's ID file, which is an issue when you wish to create new IdP configuration documents for the same server and wis...
almost 5 years ago in Domino / Security 2 Under Consideration