Skip to Main Content
IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Sterling External Authentication Server

Showing 39

SEAS CRL and use of cached CRL

Enable SEAS to be configured in the UI to allow the cached CRL to be used after the refresh interval has expired. In the current setup, unchecking 'Reject expired CRL' does so, but also fails authentications at the end of the refresh interval.
almost 7 years ago in Sterling External Authentication Server / Administration & Configuration 0 Future consideration

SEAS to allow different passphrase for the KEYCERT and Keystore and Trustore

SEAS has to allow different passphrase for the KEYCERT and Keystore and Trustore. When submitting a CSR to Symantec CA a certificate passphrase has to be setup. Currently it MUST match Keystore and Trustore passphrase or certificate import and/or ...
almost 7 years ago in Sterling External Authentication Server / Administration & Configuration 0 Future consideration

SEAS Logging Update - User Account/Key Auth

We have SEAS pointing to an LDAP for authentication. When a user account fails to authenticate via SSH public/private key, the logs show that failure in 'error' mode, but that line does not contain the useraccount that failed to log in. We can onl...
almost 7 years ago in Sterling External Authentication Server / Usability 0 Future consideration

OpenLDAP support - Force password change on File Gateway Logon

We use OpenLDAP for password authentication of our external customers. Spoke with IBM developers (listed in PMR - Naru Manda) and was told that when Sterling was written because OpenLDAP did not have a password policy at the time, that no hook was...
almost 7 years ago in Sterling External Authentication Server / Usability 1 Needs more information

Admin User ID Creation Automation specifically for SEAS.

System : SEASActor: User needing automated Admin User id on-boarding. SEAS presently we have to use Java Thick client to log in and create Admin users. As part of the firm-wide initiative they need the Admin users on-boarding/off-boarding to be au...
almost 7 years ago in Sterling External Authentication Server / Administration & Configuration 0 Future consideration

SSP User ID based routing in clustered environment

They are detailed in the attached document
almost 7 years ago in Sterling External Authentication Server / Usability 0 Not under consideration

More detailed ERROR logging for SEAS

SEAS logging at ERROR level does not provide sufficient information regarding authentication failures, forcing us to keep logging level at DEBUG which uses an extremely high amount of disk space in order to have sufficient log retention. For examp...
almost 7 years ago in Sterling External Authentication Server / Usability 0 Functionality already exists

Email alerts for SEAS errors

Currently errors within SEAS cannot be detected without logging into the server and manually checking the SEAS logs. LDAP related failures (for example loss of connectivity to LDAP or expired password for the login we bind to LDAP with) are an exa...
almost 7 years ago in Sterling External Authentication Server / Reporting 1 Future consideration

PIV Card Support for Sterling MFT/B2B Products

PIV was initially introduced by HSPD-12 (Homeland Security Presidential Directive 12), in August of 2004. However, it is just now that agencies are being mandated to comply with this directive. The first required delivery date that we know of for ...
almost 7 years ago in Sterling External Authentication Server / Security 1 Future consideration