IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security

Showing 85

Authorization list or similar for User Profiles / Function Usage for Role Swapping

When you need to swap profiles from one "Application user" to the "real user" (for example if you are running web services), the application user must have *Use privilegies for the user profile. If you need to give permission to a user to several ...
almost 2 years ago in IBM i / Security 2 Not under consideration

IBMi request new Kerberos ticket

With Enterprise Identity Mapping (EIM) and Kerberos, Windows clients can authenticate to IBMi without supplying a user and password. When the client connects, it supplies IBMi with a Kerberos ticket for authentication. A Kerberos ticket has a fixe...
over 6 years ago in IBM i / Security 5 Not under consideration

A library's CRTOBJAUD setting should be honored for CRTDUPOBJ adding to the library.

This closes a security hole. The library's CRTOBJAUD setting is used to assure that objects created within the library have the auditing desired. However, CRTDUPOBJ will put an object into a library and the auditing is based on the source object's...
9 months ago in IBM i / Security 1 Not under consideration

IBM i Kerberos Authentication (SSSD Native Integration)

The existing IBM i SSO support provided by NAS & EIM only works with applications that have been Kerberized. Such as ACS or IBM i Access. To extend the reach & build on the features already provided by NAS & EIM an enhancement is requi...
about 4 years ago in IBM i / Security 6 Not under consideration

Digital Certificate Manager - Automatically import CA certificates from 'Populate with CAs' list on certificate import if signature matches.

We currently have a 'Populate with CAs' function in DCM that has most well known third party CA certificates that can be selected and imported into the *SYSTEM store. It would be extremely helpful if we could automatically import CA certificates f...
over 2 years ago in IBM i / Security 2 Not under consideration

Default certificates when installing IBM i and SSL/TLS turned on by default

If we are trying to push customers to use security it would be great to have a default certificate and SSL turned on by default on FTP(s) , TELNET and HTTP connections. Use Case: When we deploy an OS image in most cloud environments (IBM PowerVS a...
about 4 years ago in IBM i / Security 3 Not under consideration

Allow 'Show Password' capability for command parameters

Many modern APIs where password inputs are expected have an option to 'show password' as it is typed. Define a standard function key to use when prompting a command that will cause the field where the cursor is sitting to show the input (overridin...
over 2 years ago in IBM i / Security 1 Not under consideration

CIMON Certificate not available in Digital Certificate Manager

To renew the CIMON Certificate (every year), you need to use command line to do so. If you want to use a certificate generated by an organization (and not the IBM i one), it's becoming very complex to do it. It would be great if we could manage th...
4 months ago in IBM i / Security 1 Not under consideration

Delete EIM identifier and associations when deleting the user profile

When deleting a user profile only the Target EIM association is deleted, the Source EIM association and the EIM identifier remain.Thus, one must log into Nav for i, EIM domain management, to do the remaining deletes. Would like the EIM identifier ...
over 4 years ago in IBM i / Security 7 Not under consideration

IBM i Server exit points

I use the IBM Server exit points to allow/deny and secure functions and access to my Power i LPARs. Use Case: It would be great the be able to get the IP address of the requester passed along in all of the exits. It is available in some of them li...
about 7 years ago in IBM i / Security 7 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.