HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 319

Automatically add "secure" flag to all cookies, when https is used

When a Domino server serves http requests through encrypted https, it should automatically add the " secure " flag to all cookies. There should be a global flag to enable/disable this feature. (default: enabled) In reality, most Domino servers wit...
over 1 year ago in Domino / Security 0 Needs Review

SAML configuration for Internet site with multiple hostnames

When you configure a SAML for an internet site shared by multiple sites, the SAML authentication leads to a redirect to the first server in the configuration as the response url is always pointing to that server. We tried to set it up with AAD. Th...
about 2 years ago in Domino / Security 2 Under Consideration

Inbound SMTP DDOS Detection

Inbound SMTP Intruder Detection Prevent from smtp denial of service attacks, when Domino gets bombed with inbound mail from one address. Domino stops routing mail if this happens, the error logged is: "Router: Error searching mailbox file mail*.bo...
over 1 year ago in Domino / Security 4 Assessment

When a person or Group added to ACL, it is always unspecified while user type is known when selecting from NAB

When we add entry to ACL, we have directory and we see user type, User, Group, Server, but when Added to ACL we should always set this from UNSPECIFIED to proper type again. seems few lines of code will make it for friendly
almost 7 years ago in Domino / Security 0 Under Consideration

Force password change after next login checkbox

Please add a policy that forces the password to be changed at the next login. The policy should be immediately broadcast to all connected HCL Notes clients so that in case of a security problem, everyone is forced to use a new password. The settin...
about 2 years ago in Domino / Security 3 Under Consideration

View user log in information with IP address

By adding the ini parameter - log_sessions=2 users login information will also add the IP address from where the notes client is accessed We can see the data in the console.log or log.nsf It will be better if there is a seperate view to display th...
5 months ago in Domino / Security 0 Needs Review

When creating new Web User accounts, enable them and their passwords immediately.

Currently if you add a new user to the Directory for web access, you have to do things like refresh http, refresh some view indexes. Otherwise the user has to wait 5-10 minutes before they can login. In 2018 this isn't acceptable, people expect to...
about 7 years ago in Domino / Security 1 Assessment

Directory ACL for HTTP access

If you have Domino server used with internet site for many clients, a requirement is configure specific folder and subfolder for every customer access. In Apache HTTP, NGINX you have this possibiliy.. in Domino, the only way is manage the security...
over 2 years ago in Domino / Security 1 Under Consideration

Configure the Domino HTTP server to ignore "Authorization: Bearer" headers on Domino 12.0.2

This has always worked well in Domino 10, 11 and 12.0 but now HCL has implemented an option on the internet site to use a bearer token. The problem with this option is that you then need to configure an OIDC provider which is not well documentated...
over 2 years ago in Domino / Security 3 Under Consideration

Internet Password History and Complexity

Password history and complexity checks are possible on notes id passwords but for internet password validation so we have to use using custom code, it would be nice to include the internet password history and complexity as part of standard Domino...
about 4 years ago in Domino / Security 1 Under Consideration
                                    Copyright © 2025 HCLSoftware Limited