Skip to Main Content
IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

My ideas: Sterling External Authentication Server

Showing 13

SEAS support for web proxy

Security has requested to enable the CRL check on file transfer service and the current network model does not allow any server to talk to internet directly without going through a proxy.

Load balancer IP Address in the log messages generated by inbound traffic should be suppressed

Provide a configuration which could suppress the Load balancer health check pings in the log files...

Support for OCSP in SEAS

OCSP should be an alternative to use CRL /LDAP protocol for checking for revoked certiificates .

Configuration to Choose Specific Protocol from Distribution Point CRL URL's

Configuration to Choose Specific Protocol from Distribution Point CRL URL's.

Better SSH Key matching functionality

Currently in order to perform SSH Key-based SFTP authentication for trading partners using SSP and SEAS we utilize the preconfigured "VerifySSHPublicKey" Attribute Assertion, defined as "{sshPublicKey_b64}" == "{attr[sshPublicKeyQuery].sshPublicKe...

Add TLS 1.3 Support to Sterling External Authentication Server

No description provided
over 6 years ago in Sterling External Authentication Server / Security 4 Delivered

Sterling External Authentication server (SEAS) Admin UI needs to be ported over from thick to Web client

System : Sterling External Authentication server (SEAS) Actor : MFT Administrators Presently to setup, install and configure SEAS we need to use Java thick client which is a Java WS application connecting on non-standard ports and requiring a Wind...
almost 7 years ago in Sterling External Authentication Server / Security 3 Delivered

HTTP Proxy Support in SEAS

We are using SEAS to do CRL checking during C:D session setup. We are having difficulties keeping up with some Certificate Authorities. Here is the process as we understand it…1. The URL for CRL checking is pulled out of the certificate.2. SEAS ...
almost 7 years ago in Sterling External Authentication Server / Security 1 Delivered

SEAS CRL to go through proxy connections

Enable SEAS to use a proxy connection when going out to check the CRL in order to avoid production incidents when an IP behind the CRL URL changes suddenly. Application server sits in a DMZ behind a firewall.
almost 7 years ago in Sterling External Authentication Server / Security 1 Delivered

SEAS SSO token synchronization

We need a way to synchronize the SSO tokens generated on one SEAS server to another SEAS server. This is needed for redundancy and failover support. Currently SSP points to a Primary SEAS Server and SI points to the Primary SEAS as well. If SSP fa...