Skip to Main Content
IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

My ideas: Security

Showing 9 of 2641

Enable SEAS to directly consume SAML/OIDC passed roles.

Enhancement request for the SEAS (STERLING External Authentication Server) service. Request SEAS have the ability to consume roles or entitlements through federation service, all roles are passed through the federated service from a role that is s...
3 months ago in Sterling External Authentication Server / Security 0 Submitted

Audit Trail for in app changes

We are looking for a way to be able to log anytime any changes are made ANYWHERE in SEAS with an entry showing what the previous setting was vs the new setting and who made the change. Currently no matter what amout of debug logging is turned on t...
over 1 year ago in Sterling External Authentication Server / Security 2 Planned for future release

PIV Card Support for Sterling MFT/B2B Products

PIV was initially introduced by HSPD-12 (Homeland Security Presidential Directive 12), in August of 2004. However, it is just now that agencies are being mandated to comply with this directive. The first required delivery date that we know of for ...
almost 7 years ago in Sterling External Authentication Server / Security 1 Future consideration

Develop SEAS to intelligently query for IPs that come from a subnet and allow them in if that subnet is in an LDAP attribute

Why useful? Useful because these days a lot of trading partners are coming from cloud environments that aren't front-ended by one (or a handful) IP address. Who benefits? Anyone who desires to whitelist IPs as a means of authentication or just as ...
over 4 years ago in Sterling External Authentication Server / Security 0 Functionality already exists

Support Kerberos authentication for SEAS bind to ADLDAP.

Support Kerberos authentication for SEAS bind to ADLDAP.
about 3 years ago in Sterling External Authentication Server / Security 0 Future consideration

Disable concurrent user login in SEAS

As per Bank security team, Concurrent logins should not be allowed. If the user is login via different machines or different browsers, then the old session should be destroyed. As per them, we need to have this feature in the product or commitment...
almost 2 years ago in Sterling External Authentication Server / Security 2 Future consideration

Inactive User Accounts Controls - Administrator and user Accounts

Application parameter settings that do not automatically disable and/or remove user accounts after a specified period of inactivity may result in unauthorized access, modification, destruction, and/or disclosure of confidential information
about 6 years ago in Sterling External Authentication Server / Security 1 Not under consideration

Inactivity Session Timeout Controls - Administrator Accounts

The administrative consoles for the Sterling External Authentication Server do not contain inactivity session timeout settings. This is not in compliance with our security procedures that require implementation of automatic system timeouts that en...
about 6 years ago in Sterling External Authentication Server / Security 1 Functionality already exists

Radiant Logic LDAP to be added in the list of LDAPs supported by SEAS.

Business requires Trading Partner's accessing myfilegateway via ssp, should be able to change the password whenever they want. Trading Partner's login credentials are stored under Radiant Logic LDAP. Currently Radiant Logic LDAP is not supported i...
over 4 years ago in Sterling External Authentication Server / Security 1 Not under consideration