Skip to Main Content
IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security

Showing 112 of 4357

EIM Windows domain source mapping from CRTUSRPRF

On CRTUSRPRF we have the parameter EIMASSOC. This lets us create an EIM identifier and add the current system as a TARGET. Every new user that is created need to also have the windows domain as a SOURCE in order for single signon to work. This mea...
almost 8 years ago in IBM i / Security 3 Not under consideration

Microsoft component ADFS implementation on IBM i for SSO

Good morning,I don't think it is necessary to further list the benefits of Single SignOn authentication. my company would like to switch to Modern Authentication that's why we would like to be able to integrate IBM i with Microsoft ADFS for office...
over 4 years ago in IBM i / Security 2 Not under consideration

Tool to automate rebuild of DCM USRIDX QUSRSYS/QYCDCERTI

I have a corrupted *USRIDX QUSRSYS/QYCDCERTI which is causing numerous DCM errors and multiple software problems with QYCDCUSG to be logged, when using the DCM. Unfortunately, recovery involves deleting certificate assignments and manually rebuild...
6 months ago in IBM i / Security 2 Future consideration

Allow IFS directory and content *IGNORE in QAUDJRN

When QAUDLVL is set to *CREATE *DELETE the IFS can generate millions of entries which are for temp objects created in directories (ZendServer issue). The problem is there is no way to turn off the capture of the Create and delete only to set the a...
about 6 years ago in IBM i / Security 2 Not under consideration

Order of parameters on DSPUSRPRF versus CRTUSRPRF

The order that the parameters appear on the screen when executing a DSPUSRPRF command versus a CRTUSRPRF command is disjointed. Use Case: Often, when creating a new user profile, we reference another user profile as to the settings for the user. S...
about 6 years ago in IBM i / Security 4 Not under consideration

Allow more than 16 group profiles for a user profile

Actually, one can link a user profile to 16 group profiles. For RCAC performance, we need to link a user profile to more than 16 group profiles.
over 1 year ago in IBM i / Security 1 Not under consideration

Show profile will be disabled msg even for non-valid profiles.

OS 7.5 changed to provide the same error message when signing on for the case where a userid is not defined or a userid is valid but the password is wrong. This was intended to not 'leak' information to a bad actor that they guessed a valid userid...
about 1 year ago in IBM i / Security 3 Future consideration

Deploy DCM with default *SYSTEM key store

Currently DCM is deployed without a *SYSTEM KDB (key store). That means, even simple applications using https requests need to create a kdb to function properly. As it is common on every other operating system these days, IBM should deploy DCM in ...
over 5 years ago in IBM i / Security 4 Not under consideration

Assign CERTIFICATE based on Application Group

On a yearly basis we replace multiple CERTIFICATEs across a number of systems. I would like a way to ASSIGN the new CERTIFICATE to either a APPLICATION Group or BASED on previous CERTIFICATE so we do not have to select individual APPLICATION with ...
almost 4 years ago in IBM i / Security 2 Not under consideration

ASP Encryption Enablement for ASP 1 (*SYSBAS)

The current IBM i Option to support data encryption at rest SS1 Option 45 Encrypted ASP Enablement does not support encryption of ASP 1 *SYSBAS Use Case: At the moment this existing SS1 option does not allow for the complete encryption of a system...
over 6 years ago in IBM i / Security 6 Not under consideration