HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Clear

Ideas

Showing 358 of 8846

Option to select whether the LTPAToken should be completely removed/or usable when session has been completely ended.

When enabling Session authentication across servers, the token issued by a server can still be used even after the session has been completely ended on the server and on the browser. If a user issues a request to the server using the same token, y...
over 3 years ago in Domino / Security 1 Under Consideration

Add "Show auth code in login" GUI option.

Login dialog does not show auth code field for 2FA as default. I know users can show it by changing EnableAuthCode=0 to 1 in artour.ini but it's not smart. I strongly recommed adding "Show auth code in login" GUI option as 2FA got popular. Auth co...
almost 4 years ago in SafeLinx 1 No Plans to Implement

Restrict users from viewing person and server configurations in Domino Directory

Currently all users (with reader access) are able to access Person document > Basics/ Work/ Other/ Misc/ Certificates/ Roaming/ Administration tab. Can we restrict the users to only access to Basics tab for security best practice?By right, user...
almost 4 years ago in Domino / Security 1 Under Consideration

Provide some way to find back password of root cert.id or change / reset it to a new one when forgetting the old password

The customer's old Domino Server administrator moved to another company, but did not tell the new administrator the password for the root cert.id used for this customer. The customer asked the HCL to provide some way find back the password or chan...
almost 4 years ago in Domino / Security 3 No Plans to Implement

SafeLinx Administrator Client: "Help - About" not showing software version of client

When using a SafeLinx Administrator Client, the software version of the Administrator Client should be available from "Help" - "About". Otherwise, there is a risk that customers may be using old SafeLinx Administrator clients with new SafeLinx ser...
about 4 years ago in SafeLinx 1 Already Exists

Enable Internet password expiration for other protocols such as LDAP/POP3/IMAP/DIIOP

From Domino Administrator Help: https://help.hcltechsw.com/domino/11.0.0/conf_creatingsecuritypolicysettingsforlotusinotesusers_t.html Internet password expiration settings are recognized only by the HTTP protocol. This means that Internet passwor...
about 4 years ago in Domino / Security 5 No Plans to Implement

Create a mechanism so that a "http-service" can be chosen based on an IP-Range

We would like to create two SafeLinx "http-services" both with the same URL, for example "https://mail.domain.com", and configure SafeLinx in a manner where the HCL SafeLinx Server will choose which "http-service" to use, based on the users IP-Add...
over 4 years ago in SafeLinx 3 No Plans to Implement

Installing Domino Utility Server in the AD domain controller for AD Password Sync

Installing Domino Utility Server in the AD domain controller is required for AD password sync, but this is a security risk as third-party softwares should not be installed in the AD domain controller.
over 4 years ago in Domino / Security 3 No Plans to Implement

Improve $$LoginUserFormMFA so that it only shows Username & Password fields

I think it would be a lot prettier if the new MFA login form only displayed the Username and Password fields and then on submission you were then prompted separately for the TOTP/MFA code (if required). The new prompt for TOTP/MFA code could then ...
over 4 years ago in Domino / Security 1 Needs Review

Turn off responding on / api

If I haven't turned on Data Services in Domino this endpoint should on respond at all. It's an unnecessary security risk to keep it open if not used, common practice is to have endpoints closed if they are not used. Also to be able to enable it fo...
over 4 years ago in Domino / Security 0 Under Consideration
                                    Copyright © 2025 HCLSoftware Limited