IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security

Showing 16

Native DCM support for ACME protocol (Automatic Certificate Management Environment)

Certificate lifespan is drastically shortening. and certificates are fundamental in todays security. Lifespan will be 47 days in 2029. IBM i needs a robust way to automate the renewal of publicly signed certificates.
3 months ago in IBM i / Security 2 Under review

Integrate SAML and/or OIDC authentication options for IBMi (5250/Navigator/IFS/Printer Output/SSH)

Many businesses are increasingly demanding that standard authentication processes are adhered to for all applications/servers within their environment. Whether we agree with that approach or not, there is extraordinary pressure to fit IBMi into th...
7 months ago in IBM i / Security 7 Under review

Issue audit journal entry when Password Level 4 hash is generated at signon.

For high availability replication products, knowledge is needed when a user profile changes. In most cases an audit journal entry is issued. However, when both the source and target systems are at OS 7.5 or 7.6 and a user profile does not yet have...
2 months ago in IBM i / Security 1 Under review

Enhance Security of QUSEADPAUT system value and USEADPAUT in general

This is similar in intent to https://ideas.ibm.com/ideas/IBMI-I-4498 In support of 'deny by default' security principle, arrangements should be made to only generate programs and service programs with USEADPAUT(*YES), when A) explicitly requested ...
6 months ago in IBM i / Security 2 Under review

Include an "assigned" flag to DCM API to indicate if cert is assigned to an DCM application or not

There is an API that already exists that allows certificates stored in a DCM store be read and would include expiry date, which is useful. I am not sure what the API is called, but I know that TAATOOL provides a command (CVTCERT) that uses the IBM...
over 1 year ago in IBM i / Security 5 Under review

Authority Collection - Size of the collections

Please add options/columns into existing SQL views (object_statistics maybe?) or add new SQL views to see how much the IBM i Authority Collection repositories actually take space. Currently there is no such option and the security administrator/IB...
7 months ago in IBM i / Security 1 Under review

Allow finer grained 'Adopt Authority'

This idea will allow ISVs and other to help close security exposures related to programs that adopt authority. Currently a program can be set to USRPRF(*OWNER) to have it adopt authority. Different programs within an application have needs for acc...
5 months ago in IBM i / Security 1 Under review

UID for IBM i Digital Certificate Manager

I would like to bring to your attention a potential enhancement opportunity concerning the IBM i Digital Certificate Manager (DCM). During the process of Certificate Signing Request (CSR) creation, we have observed that there is no available field...
6 months ago in IBM i / Security 2 Under review

EIM Windows domain source mapping from CRTUSRPRF

On CRTUSRPRF we have the parameter EIMASSOC. This lets us create an EIM identifier and add the current system as a TARGET. Every new user that is created need to also have the windows domain as a SOURCE in order for single signon to work. This mea...
about 1 year ago in IBM i / Security 3 Under review

Adopted authority to SFTP connections

Hello team, since a couple of days we are fighting with the SFTP connections, what is the problem? For BATCH process, there is no problem because you can use the "user profile" for the submission but... for interactive transactions, the sftp conne...
6 months ago in IBM i / Security 3 Under review

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.