This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
Select multiple trust cert with search functionality
In SSP Dashboard, Netmap > Inbound Node[HTTP based protocol] > Security>CA Certificates/Trusted Root While selecting multiple certificates it becomes very difficult to select multiple cert and find to unselect certificate. It would be con...
Concept of Certificate Grouping and Referring Group Directly Under Netmaps
In Today's world, when Client Authentication is Enabled in SSP, firstly we need to get the root and intermediate certs and check-in to the SSP and then choose the new certificates in the respective netmaps. The number of netmaps we need to make th...
SSLv3 is disabled by default in SSP in the java.security file with the following line of code. We have attempted to add TLS1 to disable TLS1.0 only and we were not successful. Adding TSL1 to the list of algorithms disabled all versions of TLS not ...
License FASP at SSP rather than the endpoints. Add FASP support to SSP for additional protocols
FASP licensing could be applied to SSP rather than the underlying endpoints thereby allowing bridging to be performed where a multitude of underlying endpoints route through that SSP instance. Currently each endpoint has to be licensed individuall...
Ability to see perimeter server status on SSP (i.e. monitioring - running/stopped)
Currently we're unable to see which perimeter servers are active on the Sterling Secure Proxy engines, this in turn can cause issues if duplicates are present. This would mimic the monitoring ability currently in place for adapters.
Some sites still require Implicit SSL due to business pressure
Implicit SSL is generally not a best practice when setting up FTPS. The preferred alternative is Explicit SSL, which is the current standard for FTPS connections for Secure Proxy. However, some of our customers experience intense business pressure...
IBM B2B Integrator product needs an ability to capture the SFTP public key of a Client attempting to connect to File Gateway's mailbox.
When a client first attempts to connect to the server their public key should be captured and put in an holding tank. We find that many of our customers are unable to successfully capture and share their public key with out the format of the trans...
Dictate cipher order for incoming HTTP transactions
We would like the ability within SSP to be able to dictate cipher order. Right now we have our security team testing our SSP nodes and when they test with the script here: https://testssl.sh/ Using version 2.9.5 we get back that the client can neg...
Do not place IBM confidential, company confidential, or personal information into any field.