#dominoforever | Product Ideas Portal

 

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

Login to a Traveler Server via certificate instead username and password

The possibility to choose a certificate as login instead the normal user credentials would be great.

Due to password policies in almost all customer environments, user have to change there passwords on their mobile devices along the domino security policy.

Actually, there is a way to do this in conjunction with IBM Lotus Mobile connect but in first this is really awkward and more important , it is deprecated and it´s discontinued.

Maybe it is possible to get a mechanism in conjunction with a domino CA and the traveler landing page, during activation for instance, that will deploy a signed user certificate on a mobile device like other solutions do.

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Jul 17 2018
  • Likely to implement
  • Attach files
  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    December 23, 2019 08:18

    The certificates can and should be deployed via an existing Mobile Device Management MDM solution. The MDM will be able to handle the certificate creation, deployment and revocation.
    We are using this since years integrated into our own MDM solution mobile.profiler. It will generate a cert if needed, adds the public key to the person document and pushes the device certificate to the device. Result: Authentication is done by the certificate - no passwords anymore.
    Today this is working great with the Apple integrated Mail App using ActiveSync  and IBM Verse for Android.
    What's missing is the IBM Verse for iOS and Companion :-(
    Waiting for this since years.

    -posted by Detlev Pöttgen     midpoints  -


  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    August 30, 2018 05:56

    This is a way to make Traveler internet password issues disappear. Today it’s a bit of a nightmare if internet password  lockout is enabled on traveler, or you enforce internet pssword changes on users. As stated LMC is not really the way to want to implement this.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    July 18, 2018 05:14

    AFAIK, this is planned.