This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
As with standard Linux servers today Secure Proxy should be able to present Host Keys (more than one) in both RSA and ECDSA formats depending on what type the vendor incoming connection supports. Vendors are demanding Host Keys that are stronger t...
We are seeing increased reluctance from partner organisations to trust CBC mode, due to OpenSSH's withdrawal of support for this mode by default. This leaves Secure Proxy with only CTR mode encryption as a widely accepted option. To ensure that we...
The administrative consoles for the Sterling Secure Proxy do not contain inactivity session timeout settings. This is not in compliance with our security procedures that require implementation of automatic system timeouts that end user sessions af...
IBM B2B Integrator product needs an ability to capture the SFTP public key of a Client attempting to connect to File Gateway's mailbox.
When a client first attempts to connect to the server their public key should be captured and put in an holding tank. We find that many of our customers are unable to successfully capture and share their public key with out the format of the trans...
BKFS - Centralized administrator User Provisioning for SSP
User accounts created in LDAP must also be created in the following GUIs: SFG, SSP, and Control Center. Ability to centralize/ "one time" provisioning for all Sterling software would simplify the system administration.
Allow SSP engine certificate to be configured through configureEngineSsl.sh directly
The configureEngineSsl.sh script only supports importing configuration exported from CM. Typically CM and SSP engines are installed on different machines in different network zones. The certificates will be put on the servers directly. It's a lot ...
MyFileGateway Password Policy, expiry prompt and password reset functionality for external users (i.e. LDAP via SSP/SEAS)
Ability to notify password expiry to the external users (i.e. LDAP user) via MFG
Ability for external users to be able to reset their LDAP passwords via the MFG UI.
Ability to relay the LDAP password policy to the external users via MFG
Problem: We have trading partners using one CDNode that may have aCDProcess using either snodeid=(id,password) or snodeid=(id) or nosnodeID. When a snodeid=(id,password) is sent, we use SEAS goingto a Directory Server. The backend server is B2Bi a...
SSP - User Lockout feature. SSP -> Credentials -> User Store -> User Lockout Threshold setting A user account is locked after a specified number of failed login attempts. The number of failed login attempts allowed is defined by the User ...
SSP Welcom Page *make change to force 1st time users to change password.
Looking for solution in SSP welcome page for HTTPS users to be forced to change password on initial login. Current versions don't account for attribute in LDS/AD if the account is defined with attribute of expired.. Allowing the user / password to...
Do not place IBM confidential, company confidential, or personal information into any field.