This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
Audit record/log for the SQL statement executed via db_exec.sh and db_execFile.sh scripts
Hi Team, Currently in Sterling B2B Integrator there is no audit records/logs for the SQL statements executed via scripts db_exec.sh and db_execFile.sh. We have verified the logs and ADMIN_AUDIT table and could not find any audit trial for the SQL ...
HTTP access log with URL, status code, IP's, user agent string, etc.
Security frequently audits to review the HTTP access logs for web server of Sterling Application (external facing apps). Security expect the HTTP access log to reflect the URL, status code, IP's, user agent string, etc. Can you suggest where to tr...
RestAPI support for Token Authentication rather than Basic Authentication
Looking for a future service availability to support Token Authentication, either with RestAPI or new one. As per my conversation with an IBM engineer on another troubleshooting call; support of Token Authentication by RestAPI is planned in future...
Address the log4J 1.x vulnerable Liberty WAR files in SB2Bi version 6.1.2
According to the release notes by IBM on the Sterling B2B Integrator version 6.1.2 it states "Apache log4j 1.x is removed and now we are using Apache log4j 2.17.2." However after updating to 6.1.2 The war files listed below still contained log4j 1...
In other PGP software you can alter the compression algorithm. In the case of Native PGP, we can only change compression at a global level. Down the road, if a partner requires a certain compression algorithm other than the global one that’s set, ...
Add verification on security level of signatureMethod/digestMethod
On XML Digital Signature service, you can choose which signature and digest method to use when signing; http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 https://www.w3.org/2001/04/xmldsig-more#rsa-sha1 However, when using the service in verify mo...
Custom HTTP Headers Response for B2B Sterling Integrator Applications
Web Application Security is always evolving and new vulnerabilities and hardening futures are being created continously. Many of the vulnerabilities remediation are based of add parameters in the HTTP Response Header. For example: Content-Security...
Do not place IBM confidential, company confidential, or personal information into any field.