Skip to Main Content
IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security

Showing 116

Add auditing to successful authentications

IBM i records failed authentications, which appear in the audit journal entries, but is missing a unified entry type for successful authentications. From an auditing perspective, this makes it hard to comprehensively track and report on successful...
over 1 year ago in IBM i / Security 3 Future consideration

Generate password based on system value settings

Would like an OS command or process to query the system value password settings and then generate a random password that meets those requirements. Use Case: Helps end users manage their passwords by given them an option to have a random one genera...
about 3 years ago in IBM i / Security 3 Not under consideration

Multiple QAUD* journal recievers

We would like the option to separate QAUD* journal receivers into multiple receivers depending on audit value specified in QAUDLVL/QAUDLVL2 with the same default security properties. Use Case: With multiple QAUD journal receivers we could select d...
over 6 years ago in IBM i / Security 3 Not under consideration

Simple IBM i user password authentication via Microsoft Active Directory

A simple password authentication from IBM i to Active directory would greatly increase the usability of user profiles on IBM i. Without using SSO/EIM because this does not suit our needs. Use Case: The active directory is the main source when it c...
over 6 years ago in IBM i / Security 2 Not under consideration

Audit log for new DCM activity

New DCM is a integrated web application server (IAS) and there is no mechanism to track/audit DCM activity. Use Case: The old DCM GUI can create a custom log but in the new DCM gui not is possible.
over 2 years ago in IBM i / Security 7 Future consideration

2k, 4k and 8k key size in Qc3GenDHParms API

Maximum key size in Qc3GenDHParms API is 1024. We are software editor and our file transfer software is only based on IBM cryptographic services API.I need to create 2k, 4k and 8k keys as asked by some modern SFTP server. Use Case: An SFTP client ...
about 5 years ago in IBM i / Security 3 Future consideration

New command WRKSVRAUTE

We are increasingly using server authentication entries in our environment for managing DDM(IP) and DRDA authorisation of users between systems. Whilst we can display the entries for an individual user with DSPSVRAUTE or use the QSYS2.DRDA_AUTHENT...
over 6 years ago in IBM i / Security 5 Not under consideration

EIM Windows domain source mapping from CRTUSRPRF

On CRTUSRPRF we have the parameter EIMASSOC. This lets us create an EIM identifier and add the current system as a TARGET. Every new user that is created need to also have the windows domain as a SOURCE in order for single signon to work. This mea...
about 8 years ago in IBM i / Security 3 Not under consideration

IBM i Kerberos Authentication (SSSD Native Integration)

The existing IBM i SSO support provided by NAS & EIM only works with applications that have been Kerberized. Such as ACS or IBM i Access. To extend the reach & build on the features already provided by NAS & EIM an enhancement is requi...
about 3 years ago in IBM i / Security 5 Future consideration

Default certificates when installing IBM i and SSL/TLS turned on by default

If we are trying to push customers to use security it would be great to have a default certificate and SSL turned on by default on FTP(s) , TELNET and HTTP connections. Use Case: When we deploy an OS image in most cloud environments (IBM PowerVS a...
about 3 years ago in IBM i / Security 3 Not under consideration