Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 300

Domino WebSite - Add an SSL Authentication Option "Name & Password + Client Certificate"

Currently if you enable "Name & Password" together with "Client Certificate" Option in Domino "Web Site" document, Domino will accept either your Domino Credentials or your Client Certificate. Add an Option so you could choose to make Domino C...
almost 5 years ago in Domino / Security 3 Under Consideration

block emails coming from the Internet that have a null sender address (i.e. <>) in the “MAIL FROM” field.

block emails coming from the Internet that have a null sender address (i.e. <>) in the “MAIL FROM” field. we should configure our anti-spam gateway to check if the “MAIL FROM” header is the same as the email’s “From:” address for all incomin...
about 6 years ago in Domino / Security 1 Under Consideration

From field should not be stripped off when adding item fields on "MIME> Advanced > Advanced Outbound Message Option > Always send the following Notes items in headers:""

In relation to SPR DPOS6UWP4G - We have added From: $vianotes field on Configuration Document > MIME> Advanced> Advanced Outbound Message Option> Always send the following Notes items in headers:" When domino sends the message to a n...
almost 5 years ago in Domino / Security 0 Under Consideration

ID Vault can collect Notes ID from different Domino Domains

Currently, ID vault only support consolidation of Notes in single domain. All replicas of a vault must be located within a single Domino® domain and all vault users must have home servers in that domain. Note, though, that users under different o...
about 6 years ago in Domino / Administration / Security 0 Under Consideration

Prevent Off-Site Redirects

To have a configuration option that prevents off-site redirects, enhancing security against potential threats. This option could be implemented as an .ini setting or a field in the server document or Internet site document for "Do not allow off-si...
8 months ago in Domino / Security 1 Needs Clarification

Create Certificate Signing Request (CSR) via CertMgr command line

Certificate Manager allows for the creation of a CSR via the GUI, as documented at https://help.hcltechsw.com/domino/12.0.2/admin/wn_simplified_procedure_third_party_certs.html Currently, this is not supported via the CertMgr command line. As admi...
almost 2 years ago in Domino / Security 4 Already Exists

Restrict some specific users to send mails to external domain gmail or yahoo.com

In domino server feature on creating a policy to block specific users not to send mail to outside domains (gmail, yahoo, etc.)
almost 6 years ago in Domino / Security 2 Under Consideration

Disable core REST API

If Rest API are disabled on the server, this Core API - hostname/api/core/nonce should not be accessible or not available when a user generated the request from browser.
over 4 years ago in Domino / Security 4 Needs Clarification

HTTP Password Changes Timing Issues - AdminP - Domino Caching - etc.

HTTP Password Changes has many challenges as documented by HCL here: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0024871 Other platforms have challenges, but not as severe as this. If Domino is going to be accepted as a r...
about 3 years ago in Domino / Security 2 Needs Review

MFA addtions - now that it is in 12 beta, some suggestions

Add MFA login option to "trust this computer for x days" where x is an admin setting configurable number of days from code being entered. This would allow a user to trust a browser and not be prompted every time they login to web applications. Aft...
almost 4 years ago in Domino / Security 3 Under Consideration