Skip to Main Content
IBM Power Ideas Portal


This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Not under consideration
Workspace IBM i
Created by Guest
Created on Jun 3, 2016

Allow authority on IFS share (logical)

Allow additional authority (for example *USE/*EXCLUDE) on the logical IFS share name instead of only on the underlying physical path.


Use Case:

Typically the IFS root is shared, however this should only be accessible for administrators while now the share can be mapped by any user and only the actual object authority is in effect (which can't be always adjusted or is often insufficient like for the IFS root).


Idea priority High
  • Guest
    Aug 29, 2016

    While I agree that the root should not be shared, most companies do... but even when it is not shared, authority to a share can still not be given to specific users (unless OS/400 object security is used as well). This means that I can't have USERA having only access to SHAREA, and not SHAREB regardless of OS/400 object security (which is far from perfect in 90% of the shops, especially on the IFS).

    The recommended exit won't help me neither as it would require me to know which physcial shares do exist (I can obtain that via the NetServer API's) and which I can exclude from controlling thru this exit (rather complex and time consuming I'm afraid).

  • Guest
    Jul 6, 2016

    Thank you for submitting this request. We understand this request, however at this time we do not plan to provide this solution.

    We do not recommend sharing the integrated file system root since that allows access to all objects. Instead we recommend only sharing those directories needed to be accessed through IBM i NetServer.

    Alternatively, there is an exit point intended to provide users an additional option for controlling access through the file server and IBM i NetServer. The documentation for the QIBM_QPWFS_FILE_SERV exit point can be found at the following URL:
    http://www.ibm.com/support/knowledgecenter/en/ssw_ibm_i_73/rzajr/rzajrmstexfile.htm

  • Guest
    Jun 4, 2016

    Creating a new RFE based on Community RFE #89435 in product IBM i.