ADD A NEW IDEA

Security

Showing 8

Audit Trail for in app changes

We are looking for a way to be able to log anytime any changes are made ANYWHERE in SEAS with an entry showing what the previous setting was vs the new setting and who made the change. Currently no matter what amout of debug logging is turned on t...
about 1 year ago in Sterling External Authentication Server / Security 2 Planned for future release

PIV Card Support for Sterling MFT/B2B Products

PIV was initially introduced by HSPD-12 (Homeland Security Presidential Directive 12), in August of 2004. However, it is just now that agencies are being mandated to comply with this directive. The first required delivery date that we know of for ...
over 6 years ago in Sterling External Authentication Server / Security 1 Future consideration

Develop SEAS to intelligently query for IPs that come from a subnet and allow them in if that subnet is in an LDAP attribute

Why useful? Useful because these days a lot of trading partners are coming from cloud environments that aren't front-ended by one (or a handful) IP address. Who benefits? Anyone who desires to whitelist IPs as a means of authentication or just as ...
about 4 years ago in Sterling External Authentication Server / Security 0 Functionality already exists

Support Kerberos authentication for SEAS bind to ADLDAP.

Support Kerberos authentication for SEAS bind to ADLDAP.
almost 3 years ago in Sterling External Authentication Server / Security 0 Future consideration

Disable concurrent user login in SEAS

As per Bank security team, Concurrent logins should not be allowed. If the user is login via different machines or different browsers, then the old session should be destroyed. As per them, we need to have this feature in the product or commitment...
over 1 year ago in Sterling External Authentication Server / Security 2 Future consideration

Inactive User Accounts Controls - Administrator and user Accounts

Application parameter settings that do not automatically disable and/or remove user accounts after a specified period of inactivity may result in unauthorized access, modification, destruction, and/or disclosure of confidential information
almost 6 years ago in Sterling External Authentication Server / Security 1 Not under consideration

Inactivity Session Timeout Controls - Administrator Accounts

The administrative consoles for the Sterling External Authentication Server do not contain inactivity session timeout settings. This is not in compliance with our security procedures that require implementation of automatic system timeouts that en...
almost 6 years ago in Sterling External Authentication Server / Security 1 Functionality already exists

Radiant Logic LDAP to be added in the list of LDAPs supported by SEAS.

Business requires Trading Partner's accessing myfilegateway via ssp, should be able to change the password whenever they want. Trading Partner's login credentials are stored under Radiant Logic LDAP. Currently Radiant Logic LDAP is not supported i...
about 4 years ago in Sterling External Authentication Server / Security 1 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.