Skip to Main Content
IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

FILTER BY CATEGORY

Pinned ideas

PINNED Present Multiple Host Keys - RSA and ECDSA
As with standard Linux servers today Secure Proxy should be able to present Host Keys (more than one) in both RSA and ECDSA formats depending on what type the vendor incoming connection supports. Vendors are demanding Host Keys that are stronger t...

All ideas

Showing 2288

Security Exit must be usable by different SFTs and the STCname should be part of the RACF profile namess

In our environment we run several Connect:Direct stc's in one environment. The provided Security Exits do not offer a possibility to setup separate profiles for these stc's.We would like this to be changed. Second what we ask for is to add the STC...
over 2 years ago in Sterling Connect:Direct for Z/OS 2 Not under consideration

SFTP SSH Known Host Key ssh-ed25519 format

our customer are using ssh-ed25519 ssh key format we are not bael to add this format in SI SSH Known Host Key
over 1 year ago in Sterling B2B Integrator / Security 1 Planned for future release

Add capability to Connect:Direct to work around undesirable DVIPA behavior

We'd like to request a new initialization parm for Connect:DIrect (CD) to disable outbound TCP connection establishment until after the DTF opens its TCP listener ports. Our DTFs both send traffic and listen for traffic. We have had situations whe...
10 months ago in Sterling Connect:Direct for Z/OS 2 Not under consideration

Embed watsonx into IBM Sterling OMS to enable an AI foundation model that looks at all the OMS/Inventory data to provide a streamlined question/response dialog similar to chatbots and/or ChatGPC

The IBM Sterling OMS is a perfect solution to embed the watsonx solution. Building out a foundation model leveraging the OMS and Inventory data set would allow us to show a progressive approach to interact with the solution across various OMS pers...
4 months ago in OMS - Call Center 2 Future consideration

Restrict Elliptic curves for SSL connection for Https/AS2 connectivity

Currently, there is no option to restrict or use only required Elliptic curves for the SSL connection for https/AS2 connectivity. For Example: Below are the Elliptic curves secp192r1 – {1.2.840.10045.3.1.1} secp224r1 – {1.3.132.0.33} secp256r1 – {...
8 months ago in Sterling B2B Integration SaaS / Communication Protocols 3 Future consideration

Refresh Token provided in HTTP Headers

Current situation: The OpenID Connect refresh token is sent as a GET parameter to the webservers of pem-pp and pem-pr applications so the refresh token is showed in the URL history of the browser/sniffer traffic: Example: GET/rochesso/home?refresh...
2 months ago in Sterling Partner Engagement Manager / Security 0 Under review

Use Refresh token rotation to make Jwt token more secure

Current Situation: An access token allows temporary access to restricted resources, PEM APIs, and so has a short validity period of 5 minutes (configurable through system properties). A refresh token has a longer validity as it allows users to log...
2 months ago in Sterling Partner Engagement Manager / Security 0 Under review

Ability to suggest more items to SIM cycle count feature and create count tasks for the day

Once the cycle count scheduler creates the count tasks, customer would like to create additional count tasks for the day manually and count them as a cycle count activity. Customer wants cycle count program to consider these manually created count...
about 1 year ago in Store Engagement / APIs & SDKs 3 Future consideration

Password Vault support for CD web Services

This is to add to CD Web Services integration with Password Vault to avoid storing passwords inside the application. That should include "admin" user as well. Currently CD Web Services allows for cert-based authentication (for API) or user/passwor...
over 1 year ago in Sterling Connect:Direct / APIs & SDKs 2 Not under consideration

Add B2Bi REST API audit logs

B2Bi Rest API is becoming common in several solutions but there is not a proper audit log file or report to verify information like " USER - ACTION / API - TIMESTAMP" It is difficult to understand what is actually being consumed, by whom and how ...
about 4 years ago in Sterling B2B Integrator / APIs & SDKs 4 Planned for future release