HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 316

Id Vault update with NSL enabled client

Customer requested that ID vault should be updated when NSL is enabled. They have policy to change windows password every 30 days and same need to be updated in ID vault .
over 5 years ago in Domino / Administration / Security 1 No Plans to Implement

Disabling wink to be used as a potential attack vector

Seeing more and more attempts to use Wink as an attack vector (see example below). Looking into possibility to disable wink so that it wont cause any potential security risk. 03/17/2022 10:04:27 AM HTTP JVM: 1399490 [Thread-11] INFO org.apache.win...
almost 3 years ago in Domino / Security 2 Already Exists

Mail Classification and ability to act on it with Traveler

Add Mail Classification into mailing, and add ability in Traveler to disable sending certain classifications to devices. Reason is that devices are not secure for "Top Secret" mail. :-)
over 5 years ago in Domino / Security 1 No Plans to Implement

Find a way to prevent ACL changes even with Full Access Admin invoked.

Find a way to prevent ACL changes even with Full Access Admin invoked.ORFind a way of not allowing changes made to the ACL on a spoke server to replicate out to all the other servers.
over 5 years ago in Domino / Security 4 Needs Clarification

Domino to have permissions policy header

There are customers who are experiencing permissions-policy vulnerability. This is the former "Feature Policy" with new specs. Can domino have the same to mitigate vulnerabilities related to it?
almost 3 years ago in Domino / Security 3 Needs Clarification

Rate limiting protections for Domino

An authentication endpoint without rate limiting protections can be susceptible to innumerable amounts of credential stuffing and eventual guessing of set of credentials used for authentication. API endpoints can also be used to attack further inf...
almost 3 years ago in Domino / Security 1 Needs Clarification

Enabling password expiration for POP3 users

This feature will disable the connection of the POP3 user with the server once the password expiry.
almost 6 years ago in Domino / Administration / Security 0 Under Consideration

User defined keystore for Domino

Currently, the Notes/Domino v9.x (same with newer versions) can only use the default JAVA trust keystore under Domino application server. The JAVA update overwrites this default keystore. Please add the option to set a custom,user defined keystore...
almost 3 years ago in Domino / Security 2 Needs Review

Set up User Profile for jobs AMGR tasks

Reason : Internal Security Rules, Compliance. Environment : DOMINO 9.0.1 FP9 hosted on IBM i The User profile QNOTES is automatically affected to any jobs into a DOMINO subsystem, including the AMGR tasks. These programmed AMGR tasks are very oft...
about 6 years ago in Domino / Security 0 No Plans to Implement

logout to be added to inotes when logging out as otherwise users can log back into mail file

logout to be added to inotes when logging out as otherwise users can log back into mail file
about 6 years ago in Domino / Security 0 Under Consideration
                                    Copyright © 2025 HCLSoftware Limited