Cloud Platform


This is an IBM Automation portal for Cloud Platform products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

WebSphere traditional

Showing 33

HTTP Strict Transport Security header (Strict-Transport-Security) header is missing in WAS Administrative console

HTTP Strict Transport Security (HSTS) is a mechanism which protects secure (HTTPS) websites from being downgraded to non-secure HTTP. This mechanism enables web servers to instuct their clients (web browsers or other user agents) to use secure HTT...
about 7 years ago in WebSphere traditional 1 Delivered

Enable Account Lockout after 3 failed logins

Passwords are prune to Bruteforce attacks, an attacker can easily brute force the passwords as the password policy is weak andallows simple alpha numeric characters without any restriction of password length e.g.: admin, passetc.Account lockout me...
over 7 years ago in WebSphere traditional 2 Delivered

Change background color for Admin Console

WAS admins have a non-prod console, and a prod console open side by side to do any config comparisons, and by accident, easily one might change the configuration in Production Live Console, which is quite risky. There have been many instances that...
over 7 years ago in WebSphere traditional 4 Delivered

Enable Password Encryption instead of encoding

Currently saved passwords can be decrypted especially if we share our xml files or seen by any vendor which is a major risk in auditing especially in banking or financial sectors. I think IBM can find a way so the password is hard to be 'plain' in...
about 8 years ago in WebSphere traditional 2 Delivered

Increase keylength of Diffie Hellman key to 4096

Need for increased Diffie Hellman keylength in communication with partners in the E-business area. Especially when doing card-payments with 3D secure
about 8 years ago in WebSphere traditional 1 Delivered

cryptic exception when session max count exceeded

when WAS ND (v8.5.5.10) has a session setting to limit max HTTP sessions per JVM and that limit is crossed a cryptic exception is being thrown. it took 8 hours for IBM team to understand the real cause.
almost 9 years ago in WebSphere traditional 0 Delivered

Passwords in security.xml XOR encoded and weak

Dear Team, We are badly hit by our security team on this XOR encoding mechanism of Websphere console users. We need Websphere product with inbuild encryption facility to make the sure password are in encypted format (AES/DES). Kindly take this as ...
almost 9 years ago in WebSphere traditional 2 Delivered

Provide support for Kerberos Constrained Delegation (S4U2Proxy, S4U2Self) in WebSphere Full Profile

With JDK 8 the S4U2Proxy and S4U2Self mechanisms are implemented in the GSSApi for delegated access with credentials of the client to backend servers with Kerberos. See: http://www.ibm.com/support/knowledgecenter/api/content/nl/en-us/SSYKE2_8.0.0/...
over 9 years ago in WebSphere traditional 2 Delivered

Datasource connection setup and cleanup configurable statements for WebSphere Liberty profile

In Websphere classic we can provide a custom datasource helper class on the datasource definition to do some setup and teardown of the connection based on the current context/thread before its given back to the caller or returned to the pool. In W...
almost 10 years ago in WebSphere traditional 1 Delivered

Old pid log used after crash

One system in sysplex crashed. After it was IPLed back noted that Apache HTTP server didn't start. It's proc quietly ended with CC 0000. Checked logs/proc.output and found this: :/ST1/etc/ihsconfig/ihs/ihsaest1/logs # cat proc.output You are logge...
about 10 years ago in WebSphere traditional 3 Delivered

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.