This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
Make Sterling Secure Proxy perform DNS resolution at the connection time
Currently SSP Engines only perform DNS lookups when the configuration is loaded from the configuration manager. This should be changed so that DNS resolution is performed at the time of a connection, when a node's configuration is accessed.
SSP - User Lockout feature. SSP -> Credentials -> User Store -> User Lockout Threshold setting A user account is locked after a specified number of failed login attempts. The number of failed login attempts allowed is defined by the User ...
Create Upgrade/Migration Process for SSP Engines/CMs
The SSP CM and Engines currently have to be on the same point release to function. This prevents a customer with a large installation base from gradually upgrading their environment. We have one CM with cold fail over and as many as 24 Engines att...
Configuration managment needs to have a schedule and approval process
Changes made in the configuration management interface should require an approval process that could make an external call for validation if needed. This would require a scheduling function as well as an approval process.
SCC needs a configuration reporting feature that allows users to determine the way in which objects are configured. Auditing of the application is an incredibly tedious process of checking every screen for every configuration item in the applicati...
Dictate cipher order for incoming HTTP transactions
We would like the ability within SSP to be able to dictate cipher order. Right now we have our security team testing our SSP nodes and when they test with the script here: https://testssl.sh/ Using version 2.9.5 we get back that the client can neg...
Allow Sterling Secure Proxy to perform URL Redirection for Reverse Proxy
Sterling Secure Proxy on Red Hat Linux version 2.6.32-696.1.1.el6.x86_64 is unable to route to different Outbound Nodes based on the URL that is sent to the proxy. Example (test vs prod at end of url):Incoming URL https:proxy.com:443/rosettanet/te...
Do not place IBM confidential, company confidential, or personal information into any field.