HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 117

Url scanning blocks ipadress

Add functionlity as with ip adress trying to login with multiple usernames. If an ipadress is trying different non existing url:s that ip will be blocked for x amount of time. Also that url:s can be ”blacklisted” so if an user is trying to access ...
over 1 year ago in Domino / Security 0 Under Consideration

DIIOP to enforce password expiration at login

As of now password expiration at login only works for Notes and HTTP authentication. We request to enable to password expiration also works for DIIOP protocol as well when creating session using NotesFactory.createSession.
over 4 years ago in Domino / Security 0 Under Consideration

Restrict the number of messages a single user can send in 24 hours to a maximum number of messages

Sometimes users are victims of clever phishing emails sent to them. Unfortunately this opens up the use of their valuable credentials to potential hackers. These hackers can then send email using their credentials. If Domino would have an internal...
over 2 years ago in Domino / Security 3 Under Consideration

Lock certain ACL entries ( extra option ) because users can remove them by deleting the entries in delegations

We added certain groups in the Calendar delegations in order to perform audits or application access. Users can remove them, because it is a adminp request that deletes this entry. We would like to see the ACL enhanced by adding an extra option in...
almost 2 years ago in Domino / Security 0 Under Consideration

Fallback to password authentication when SAML has been activated as

Fallback to password authentication when SAML has been activated as needed. Server should accept SAML and password authentication, depending on the policy
over 5 years ago in Domino / Security 1 Under Consideration

Internet password lockout whitelist

The internet passowrd lockout feature needs to be improved, like more logging, idea: DOMINO-I-389. It would be an improvment if there would be an option to add a whitelist for IP ranges. So if a user is locked out he could still login within an tr...
almost 6 years ago in Domino / Security 3 Under Consideration

Password Security / Policy for Internet MUST track history for specified reuse

This capability is missing on the Internet side. Password policies everywhere now require that you cannot reuse past passwords for at least 'x' iterations. Security/Auditors/Risk people are demanding that we write something to ensure that browser ...
almost 6 years ago in Domino / Security 0 Under Consideration

Setup non-default browser for large number of users via policies

Domino version 9.0.1 FP10 With use of user policies (basic - browser options - type "other") there is no possibility to set up "internet browser path". It can be done only manually in location doc on client side, but this is not a way to go with t...
over 5 years ago in Domino / Security 2 Under Consideration

Let us choose the attributes for authentication in webapplications like we can in Websphere/Connections: uid;cn;mail

We can now only set this into 2 options: Lower and Higher security which contains several attributes each. We would like to choose the attribute(s) for authenticating into Domino webapps. The 2 options is not good when you want to logon using shor...
about 3 years ago in Domino / Security 2 Under Consideration

Provide an SDK cal to validate HTTP passwords against the new HTTP ID Vault implementation

Now that we can use Vault for HTTP authentication, the existing C-API calls don't work any more. It makes sense to have a central call to be leveraged in back-end applications.
over 4 years ago in Domino / Security 0 Under Consideration
Copyright © 2023 HCL Technologies Limited