Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 300

Nonce checking for Domino Web Application

iNotes has the nonce checking feature for security purpose. This feature is also needed when using web application on Domino Server side. Currently, a web user can post the data to Domino Web Server by using crafted HTML files created from the cl...
over 2 years ago in Domino / Security 0 Under Consideration

Graylisting in Domino mail

Add possibility to add graylisting as an option in the domino mail server
almost 6 years ago in Domino / Security 0 Under Consideration

open LDAP is not supported by Domino 10 and SAML2

open LDAP is not supported by Domino 10 and SAML2
almost 6 years ago in Domino / Security 2 Already Exists

TOTP (MFA) Scratch code - set expiry date and limit number of codes generated

When Scratch codes are generated for TOTP setup there are 10 codes generated with no expiry date and I have the following suggestions : 1) Add an "Scratch Code Expiry Time (hrs)" so administrators can set the code to expire for example after 48 ho...
over 3 years ago in Domino / Security 1 Needs Clarification

Fix the ID vault so it doesn't use a separate ID file or capture that ID file so it isn't lost all the time

Time and time again, I encounter environments where no one has a copy of the ID file used to create the ID Vault. This is because during the process of creating the vault, there was no warning of the importance of the ID file created at the time a...
11 months ago in Domino / Security 3 Needs Review

SAML implementation, can be done safer?

1.) HCL Domino server 12.0.1 (and older) are missing SAML Artifact binding implementation/settings. It has just SAML POST binding :-( Hmm it also works SOAP and inside SAML POST binding, but SAML ARTIFACT binding didn't work for me at all. Is SAML...
over 2 years ago in Domino / Security 0 Needs Review

Allow admins to specify that all mails to certain domins should be encrypted

Customer has a requirement to encrypt all mails sent to a certain domain. They know how to do this by user on the Notes client and this works fine. But they would like a way for the admin to force this on the server side so that all mails to this ...
about 6 years ago in Domino / Security 0 Under Consideration

IDVault:Need increase one view to display all these archived user id file document

https://help.hcltechsw.com/domino/12.0.0/admin/vault_automatic_restart_id_sync.html?hl=id%2Carchived Now all user ID file documents display under the default "Vault Users" view For these archived user ID file, which display as ~UserName also in th...
over 2 years ago in Domino / Security 0 Needs Review

USER SHOULD ABLE TO AUTHENTICATE ON SERVER ONCE AT TIME

want restriction on users that user should able to authenticate on server once at time. In short User should not able to open multiple session on server at time from different Machines. Currently User can log on to the server from multiple locatio...
about 6 years ago in Domino / Security 1 No Plans to Implement

RedirectTo domain limitation

There is the RedirectTo url parameter for the Login/Logout links to work in session-based authentication. It can be disabled by a Notes.ini parameter but that results in problems in authentication. This parameter has been an issue for a couple of ...
about 6 years ago in Domino / Security 1 Under Consideration