IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Not under consideration
Workspace IBM i
Categories IBM i Access Family
Created by Guest
Created on Aug 28, 2018

RELATED IDEAS

Protect the configuration files for i Access Solutions form tampering

Hello

We are concerned that the end user can change the "i Access Solutions" installed configuration by tampering the .HOD files or the AcsConfig.Properties
We need to be able to secure these files and similar ones from end user tampering by preventing the end user from changing the file(s).

Appreciate it


Use Case:

System: Core banking system
Actor: End Users

Use cases for the system:
•End users who has the product installed "Local and Admin Customized" should not be able to change the AcsConfig.Properties and the .HOD files


Idea priority Urgent
  • Guest
    Reply
    |     Sep 25, 2018

    We do not have plans to provide interfaces or options for restricting access to a user's configuration. As an administrator, you can already lock down the files you mentioned using the platform OS. You can also change the default location of the configuration by updating the property com.ibm.iaccess.AcsBaseDirectory in the AcsConfig.properties file. See section 9.3 Changing Configuration Location in GettingStarted: ftp://ftp.software.ibm.com/as400/products/clientaccess/solutions/GettingStarted_en.html#9.3

    As an administrator, it is up to you to decide how to lock down the configuration files or directories on your users PCs.

  • Guest
    Reply
    |     Aug 29, 2018

    You can store the modified AcsConfig.properties file in the JAR itself (just use a tool like 7-Zip).

    This makes it harder for a normal user to change it, however it is not 100% secure from tampering.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.