HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 119

DIIOP to enforce password expiration at login

As of now password expiration at login only works for Notes and HTTP authentication. We request to enable to password expiration also works for DIIOP protocol as well when creating session using NotesFactory.createSession.
over 5 years ago in Domino / Security 0 Under Consideration

Nonce checking for Domino Web Application

iNotes has the nonce checking feature for security purpose. This feature is also needed when using web application on Domino Server side. Currently, a web user can post the data to Domino Web Server by using crafted HTML files created from the cl...
over 3 years ago in Domino / Security 0 Under Consideration

Fallback to password authentication when SAML has been activated as

Fallback to password authentication when SAML has been activated as needed. Server should accept SAML and password authentication, depending on the policy
over 6 years ago in Domino / Security 1 Under Consideration

Make support for CRAM-MD5 authentication method for SMTP communication

Currently Domino supports only AUTH LOGIN as an authentication method for SMTP communication. It would be great id safer mathod like CRAM-MD5 would be also supported.
over 6 years ago in Domino / Security 2 Under Consideration

Internet password lockout whitelist

The internet passowrd lockout feature needs to be improved, like more logging, idea: DOMINO-I-389. It would be an improvment if there would be an option to add a whitelist for IP ranges. So if a user is locked out he could still login within an tr...
almost 7 years ago in Domino / Security 3 Under Consideration

Move server.id into the IDVault

Move the server.id into the IDVault and protect the deployment. Let only the correct Domino server extract the server.id from the IDVault.
about 1 year ago in Domino / Security 2 Under Consideration

Password Security / Policy for Internet MUST track history for specified reuse

This capability is missing on the Internet side. Password policies everywhere now require that you cannot reuse past passwords for at least 'x' iterations. Security/Auditors/Risk people are demanding that we write something to ensure that browser ...
almost 7 years ago in Domino / Security 0 Under Consideration

Restrict the number of messages a single user can send in 24 hours to a maximum number of messages

Sometimes users are victims of clever phishing emails sent to them. Unfortunately this opens up the use of their valuable credentials to potential hackers. These hackers can then send email using their credentials. If Domino would have an internal...
over 3 years ago in Domino / Security 3 Under Consideration

Setup non-default browser for large number of users via policies

Domino version 9.0.1 FP10 With use of user policies (basic - browser options - type "other") there is no possibility to set up "internet browser path". It can be done only manually in location doc on client side, but this is not a way to go with t...
over 6 years ago in Domino / Security 2 Under Consideration

Compatibility con NTLM used by proxys made by ALLOT

Customers using ALLOT made proxys, used the NTLM secure protocol made by Microsoft As a consequence, image in email as shown as red X. Support of this protocol would allow customer to visualize correctly emails.
over 6 years ago in Domino / Security 1 Under Consideration
                                    Copyright © 2025 HCLSoftware Limited