Skip to Main Content
IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security

Showing 117

New DCM in SSL still need non-SSL ports

When configuring the new DCM in SSL mode, port 2007 is assigned to the application server and it is possible then to connect using the URL: https://hostname:2007/dcm BUT, it the background, port 8470 (non-SSL) is still required to complete SIGNON....
almost 2 years ago in IBM i / Security 5 Future consideration

Audit log for new DCM activity

New DCM is a integrated web application server (IAS) and there is no mechanism to track/audit DCM activity. Use Case: The old DCM GUI can create a custom log but in the new DCM gui not is possible.
almost 3 years ago in IBM i / Security 7 Future consideration

ANZPRFACT - output to *OUTFILE or *PRINT or to the screen to check which profiles are candidates for disabling

Hello, We would like to use ANZPRFACT functionality/command on regular basis, but not having a chance to check which profiles are candidates for disabling. Idea is to enahnce the ANZPRFACT command to have output to OUTFILE or PRINT or to the scree...
about 1 year ago in IBM i / Security 2 Not under consideration

Allow 'Show Password' capability for command parameters

Many modern APIs where password inputs are expected have an option to 'show password' as it is typed. Define a standard function key to use when prompting a command that will cause the field where the cursor is sitting to show the input (overridin...
over 1 year ago in IBM i / Security 1 Not under consideration

Add Web API to retrieve Security PTF's and Bulletins based on CVS level

I would like to be able to pull data through a Web API that would list the available PTF's for security bulletins based on the CVS level assigned to the bulletin.
over 2 years ago in IBM i / Security 6 Future consideration

IBMi request new Kerberos ticket

With Enterprise Identity Mapping (EIM) and Kerberos, Windows clients can authenticate to IBMi without supplying a user and password. When the client connects, it supplies IBMi with a Kerberos ticket for authentication. A Kerberos ticket has a fixe...
over 5 years ago in IBM i / Security 5 Not under consideration

Customize encryption types for network authentication

When creating new keytab entries, the OS will automatically create entries for all known encryption types on the system: 56-bit DES 56-bit DES using key derivation 168-bit DES using key derivation 128-bit AES 256-bit AES ARCFOUR Since onl...
over 1 year ago in IBM i / Security 2 Future consideration

IBM i Kerberos Authentication (SSSD Native Integration)

The existing IBM i SSO support provided by NAS & EIM only works with applications that have been Kerberized. Such as ACS or IBM i Access. To extend the reach & build on the features already provided by NAS & EIM an enhancement is requi...
about 3 years ago in IBM i / Security 5 Future consideration

Extend field in SSL trace output that includes cipher information

When analyzing output of SSL trace data, this may involve dumping the output to a spreadsheet for further analysis and comparison against cipher lists from QSSLCSL and/or SST (TLSCONFIG). The challenge when comparing data is that since many cipher...
5 months ago in IBM i / Security 2 Under review

Default certificates when installing IBM i and SSL/TLS turned on by default

If we are trying to push customers to use security it would be great to have a default certificate and SSL turned on by default on FTP(s) , TELNET and HTTP connections. Use Case: When we deploy an OS image in most cloud environments (IBM PowerVS a...
about 3 years ago in IBM i / Security 3 Not under consideration