IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

My votes: Security

Showing 115 of 4654

Allow CHGAUTCOL command to enable authority collection on objects with type *USRPRF

Use case: A user profile object is secured with *PUBLIC *USE, allowing anyone on the system to submit jobs to run under that unsecured user profile. Securing the *USRPRF with *PUBLIC *EXCLUDE might break some existing processes which rely on the e...
almost 2 years ago in IBM i / Security 2 Not under consideration

Allow 'Show Password' capability for command parameters

Many modern APIs where password inputs are expected have an option to 'show password' as it is typed. Define a standard function key to use when prompting a command that will cause the field where the cursor is sitting to show the input (overridin...
almost 2 years ago in IBM i / Security 1 Not under consideration

Show profile will be disabled msg even for non-valid profiles.

OS 7.5 changed to provide the same error message when signing on for the case where a userid is not defined or a userid is valid but the password is wrong. This was intended to not 'leak' information to a bad actor that they guessed a valid userid...
almost 2 years ago in IBM i / Security 3 Future consideration

Digital Certificate Manager, Import Certificate by retrieve from port

Importing certificates into the DCM is a slow task that requires the transfer of files, files that are not always readily available. As in the WAS console, it would be useful to acquire the certificate directly from the Server through its IP addre...
almost 2 years ago in IBM i / Security 3 Future consideration

Correct the QSYLOBJP API Documentation

Today, the QSYLOBJP API documentation states that it creates: a list of objects that adopt an object owner's authority In the classic way of thinking, this would be program/srvpgm objects that have USRPRF(*OWNER) set a creation time. However what ...
almost 2 years ago in IBM i / Security 3 Future consideration

Add an EMAIL space to the *USRPRF object and allow that value to be retrieved with the qsyrusri api and RTVUSRPRF CL command

As we add more and more user profiles, the need to send those users email from the IBM i partition (using whatever) is important. However, today there is no way to associate an email address with an end-user's *USRPRF. For example, if I need to se...
about 2 years ago in IBM i / Security 3 Not under consideration

What commands are linked to what special authority?

I want to monitor what commands needing special authority are used by who.
about 2 years ago in IBM i / Security 3 Future consideration

fast path should be on the new digitial certificate manager (dcm)

the old digital certificate manager had fast path so why doesn't the new digital certificate manager have fast path
about 2 years ago in IBM i / Security 2 Not under consideration

Add auditing to successful authentications

IBM i records failed authentications, which appear in the audit journal entries, but is missing a unified entry type for successful authentications. From an auditing perspective, this makes it hard to comprehensively track and report on successful...
about 2 years ago in IBM i / Security 3 Future consideration

Host Service Should Ignore Expired Certificates

Today I experienced that as long as an expired certificate exists, the associated services on power i (e.g. login, database, ddm) do not work and deny access despite the fact there is another certificate that is active on the same services. By del...
over 2 years ago in IBM i / Security 2 Future consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.