Skip to Main Content
IBM Sterling


This portal is to open public enhancement requests for IBM Sterling products and services. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Planned for future release
Categories Usability
Created by Guest
Created on May 8, 2019

Allow passwords longer than 28 characters for LDAP users

The password field on the SBI dashboard login page is restricted to a maximum of 28 characters.  However external users who are using LDAP for authentication can have passwords longer than this value, which makes it impossible for these users to log in unless we configure them with local authentication instead. 

The limitation appears to be entirely due to a hardcoded limit in the page itself and not due to any password length limit in the app / authentication mechanism, as users can work around the issue by using the browser development tools to change the values of the maxlength property for the input field from 28 to any larger value as below


<input class="inputStyle" type="password" autocomplete="off" maxlength="28" name="password" size="20">

to

<input class="inputStyle" type="password" autocomplete="off" maxlength="40" name="password" size="20">

Obviously it's not a reasonable expectation for users to manually change the code of the page every time they try to log in.  Our security and audit requirements specify that our users must authenticate using LDAP, so we need the dashboard to provide a reasonable length to accommodate long LDAP passwords.

What is your industry? Automotive
How will this idea be used?

users will be able to log into SI dashboards using external LDAP authentication without being arbitrarily restricted to 28 character passwords

  • Guest
    Reply
    |
    Feb 26, 2021

    Thank you for taking the time to provide your ideas to IBM. Your request is now a candidate for a future generally available (GA) release.


    We will be in touch with you shortly to discuss your willingness to serve as a sponsor user as we work to deliver this feature. If you have any additional feedback or thoughts in the meantime, or if there is anything else I can do, please do not hesitate to reply to this message to continue the conversation.


    Please note: IBM's statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM's sole discretion.