This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.
IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.
ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.
Hello Pete,
Thank you for taking the time to provide your ideas to IBM. We truly value our relationship with you and appreciate your willingness to share details about your experience, your recommendations, and ideas.
IBM has evaluated the request and has determined that it cannot be implemented at this time or does not align with our current strategy or roadmap.
Having two certs available at the same time does not align with our security posture.
Hi Ryan,
1) We are not really asking for cert rollover capablity per se. Just the ability to have 2 certs available and effective for a short period of time until the old one expires.
2) The http server adapter needs to allow for 2 certificates to be in effect. And for example, you could only allow the second cert (the old one) to be in place if it expires in one month or less. But 2 certs would be valid for the trading partners to use so that they could switch to the new one at a time that is convenient for them rather than being forced to switch to the new one at a certain time. I do not see SNI as being related to the issue.
3) We are not using SSP.
Thanks, Pete
Thank you for the idea. Could you please restate the ask?
1) Are you asking for a cert rollover capability?
2) Any given time does the single http server adapter w/ 2 certs? SNI?
3) Are you using SSP?