IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Clear

Ideas

Showing 25

Single Sign-on (SSO) with SAML or OIDC authentication is required for the Sterling User Interfaces (UIs), including C:D, SSP, SEAS, SFG, SCCM and SCCD. Migration from a legacy LDAP connection to a federated (SAML or OIDC) connection is required for all UIs, by US Federal Agencies.

This is required to comply with US Federal Security requirements mandated to all US Federal Agencies.
over 1 year ago in Sterling Connect:Direct / Security 4 Delivered

Add TLS 1.3 Support to Connect:Direct

TLS v1.3 was recently released, and we would like to see it added to Connect:Direct w/Secure+ as an available security option for all platforms that support it.
over 7 years ago in Sterling Connect:Direct / Security 5 Delivered

SEAS support for web proxy

Security has requested to enable the CRL check on file transfer service and the current network model does not allow any server to talk to internet directly without going through a proxy.
almost 8 years ago in Sterling External Authentication Server / Administration & Configuration 1 Delivered

Connect:Direct Win/Unix Interface to Cyberark or other Priviledged Account Solutions

If a PAM-tool like Cyberark is in use, users don't have real logon-credentials for Windows- or Unix-Server any more; these are maintained by Cyberark.
almost 8 years ago in Sterling Connect:Direct / Security 3 Delivered

Password Vault Support for Connect Direct for Windows

IT Security forbids the use of static passwords and mandates that they are changed periodically.
over 6 years ago in Sterling Connect:Direct / Security 2 Delivered

Load balancer IP Address in the log messages generated by inbound traffic should be suppressed

Provide a configuration which could suppress the Load balancer health check pings in the log files...
almost 8 years ago in Sterling External Authentication Server / Administration & Configuration 0 Delivered

Support for OCSP in SEAS

OCSP should be an alternative to use CRL /LDAP protocol for checking for revoked certiificates .
almost 8 years ago in Sterling External Authentication Server / Technology Stack Support (OS, DB, Protocols) 0 Delivered

Certificate CRL check for Sterling Connect:Direct

It's not practical to use SEAS for certificate CRL check for Connect:Direct in a large enterprise environment where there are thousands of Connect:Direct nodes. Query-based CRL check via SEAS could greatly degrade the performance of Secure+ file t...
almost 8 years ago in Sterling Connect:Direct / Security 1 Delivered

Add TLS 1.3 Support to Connect:Direct for HPE Nonstop Platform

It was mentioned in HPE NonStop Forum that TLSv1.3 will be coming out later 2019 year. It was also mentioned by HPE that TLSv1.0 is a degraded security protocol and that HPE NonStop Client Applications running on X86 and Itanium Platform need to m...
over 6 years ago in Sterling Connect:Direct / Security 7 Delivered

Configuration to Choose Specific Protocol from Distribution Point CRL URL's

Configuration to Choose Specific Protocol from Distribution Point CRL URL's.
almost 8 years ago in Sterling External Authentication Server / Administration & Configuration 1 Delivered

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.