Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 289

Cookie consent functionallity built in

It would be good to have a configurable cookie consent functionallity inside Domino built in from start. Like the one presented on https://help.hcltechsw.com And the configurable option could be accessable using @formula, Lotusscript and Java so y...
about 2 years ago in Domino / Security 0 Under Consideration

SMTP Inbound Certificate validation

Today Domino accepts mail from hosts with any x.509 certificate. there is no verification. It's difficult to only allow mails from trusted certificates. But it would be important to have the information if the connection was coming from a connecti...
over 2 years ago in Domino / Security 0 Under Consideration

Ability to change MAIL FROM when using forwarding address of user document

We need the ability to change the MAIL FROM when forwarding in user documents. If the original user name is used, the SPF check will result in an error. You can find this feature in the server configuration document or in Notes.ini (RouterUserRu...
almost 3 years ago in Domino / Security 2 No Plans to Implement

HTTP Password Changes Timing Issues - AdminP - Domino Caching - etc.

HTTP Password Changes has many challenges as documented by HCL here: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0024871 Other platforms have challenges, but not as severe as this. If Domino is going to be accepted as a r...
almost 3 years ago in Domino / Security 2 Needs Review

TOTP (MFA) Scratch code - set expiry date and limit number of codes generated

When Scratch codes are generated for TOTP setup there are 10 codes generated with no expiry date and I have the following suggestions : 1) Add an "Scratch Code Expiry Time (hrs)" so administrators can set the code to expire for example after 48 ho...
about 3 years ago in Domino / Security 1 Needs Clarification

Limit web users access with a rule

Create a rule for the Domino web server so that "If (IP address IS NOT 10.1.1.*) AND (User IS John Smith) THEN PROHIBIT ACCESS". Presently, it is only possible by restricting the IP address (by configuring a blacklist on the server) and user restr...
about 4 years ago in Domino / Security 1 No Plans to Implement

Provide an SDK cal to validate HTTP passwords against the new HTTP ID Vault implementation

Now that we can use Vault for HTTP authentication, the existing C-API calls don't work any more. It makes sense to have a central call to be leveraged in back-end applications.
about 4 years ago in Domino / Security 0 Under Consideration

Http task should Identify the user status active/blocked before proceed for password authentication

Currently http behavior are like this : In case you blocked (added in deny group) the user in domino server and and HTTP task is configured to obey this setting, (in server document - ports internet ports web- Enforce server access settings: Yes) ...
about 4 years ago in Domino / Security 3 No Plans to Implement

Remove privelege elevation requirement from Domino Java Console

There is really no good reason for the Java Console to require "Run as Administrator". I believe the only reason it does currently is because it modifies dconsole.ini and/or dconsole1.ini in the Notes program directory. To improve security, these ...
over 4 years ago in Domino / Security 1 Under Consideration

SAML2 self service integration

In a saml2 world getting rid of ldaps and also auto deploy to groups would be an dream. The idea is that you enable auto creation of users with a certain email domain or attribute with a secretkey from adfs. You also specify some group access ri...
over 4 years ago in Domino / Security 2 Needs Clarification