IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Clear

Pinned ideas

PINNED Present Multiple Host Keys - RSA and ECDSA
As with standard Linux servers today Secure Proxy should be able to present Host Keys (more than one) in both RSA and ECDSA formats depending on what type the vendor incoming connection supports. Vendors are demanding Host Keys that are stronger t...
Share feedback 4

Ideas

Showing 50

Single Sign-on (SSO) with SAML or OIDC authentication is required for the Sterling User Interfaces (UIs), including C:D, SSP, SEAS, SFG, SCCM and SCCD. Migration from a legacy LDAP connection to a federated (SAML or OIDC) connection is required for all UIs, by US Federal Agencies.

This is required to comply with US Federal Security requirements mandated to all US Federal Agencies.
over 1 year ago in Sterling Connect:Direct / Security 4 Delivered

Ability to Scan Files for Viruses in the DMZ before arrival in Secure Zone

Need a facility to contact a server via ICAP to scan files (similar to how QuickFile) works. This can be achieved by installing SSP perimeter servers on the virus server in its zone and have SSP engines leverage a persistent connection between the...
almost 8 years ago in Sterling Secure Proxy / Usability 1 Delivered

Add TLS 1.3 Support to Connect:Direct

TLS v1.3 was recently released, and we would like to see it added to Connect:Direct w/Secure+ as an available security option for all platforms that support it.
over 7 years ago in Sterling Connect:Direct / Security 5 Delivered

SSP should support in integrating with other 3rd party Malware checking products using ICAP

SSP should support in integrating with other 3rd party Malware checking products using ICAP protocol similar to what DataPower supports today.
almost 8 years ago in Sterling Secure Proxy / APIs & SDKs 3 Delivered

Native support for DLP to manage sensible data

Customer would like to have in SSP a feature to connect with their DLP solution based on ICAP protocol to avoid that sensible data be sent outside of their organization without permission.
over 3 years ago in Sterling Secure Proxy / Security 4 Delivered

Add TLS 1.3 Support to Sterling Secure Proxy

No description provided
over 7 years ago in Sterling Secure Proxy / Security 1 Delivered

Block users from attempting authentication at the Secure Proxy level

We have a Secure Proxy engine that is exposed to the internet. As such we are subjected to a large number of "probing" login attempts from usernames such as "root", "admin", etc. All of our login attempts are passed to a Sterling External Authenti...
almost 8 years ago in Sterling Secure Proxy / Administration & Configuration 2 Delivered

Connect:Direct Win/Unix Interface to Cyberark or other Priviledged Account Solutions

If a PAM-tool like Cyberark is in use, users don't have real logon-credentials for Windows- or Unix-Server any more; these are maintained by Cyberark.
almost 8 years ago in Sterling Connect:Direct / Security 3 Delivered

Password Vault Support for Connect Direct for Windows

IT Security forbids the use of static passwords and mandates that they are changed periodically.
over 6 years ago in Sterling Connect:Direct / Security 2 Delivered

Certificate CRL check for Sterling Connect:Direct

It's not practical to use SEAS for certificate CRL check for Connect:Direct in a large enterprise environment where there are thousands of Connect:Direct nodes. Query-based CRL check via SEAS could greatly degrade the performance of Secure+ file t...
almost 8 years ago in Sterling Connect:Direct / Security 1 Delivered

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.