Cloud Platform


This is an IBM Automation portal for Cloud Platform products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

WebSphere traditional

Showing 33

Enable Password Encryption instead of encoding

Currently saved passwords can be decrypted especially if we share our xml files or seen by any vendor which is a major risk in auditing especially in banking or financial sectors. I think IBM can find a way so the password is hard to be 'plain' in...
over 7 years ago in WebSphere traditional 2 Delivered

Include uptime in javacore files

It would be good if the javacore file would include the uptime (start date/time) of the JVM.
over 12 years ago in WebSphere traditional 2 Delivered

Allow shell identity to be used for authentication of addnode.sh and syncnode.sh on z/OS

We have an automated scripts that runs for syncnode.sh and addnode.sh. The WAS Admin password is not known and is rotated. See open case TS007505717
over 3 years ago in WebSphere traditional 2 Delivered

IBM Business Automation Workflow password encrytption

IBM Business Automation Workflow product is only supported on WebSphere 8.5.5. and cannot take advantage of password encryption features that are available on WAS 9.0.5 It is requested that IBM Business Automation Workflow 19.0.0.3 running on WAS ...
about 5 years ago in WebSphere traditional 3 Delivered

We want IHS to be configured in a manner so that if client provide RSA certificate less than 2048 bit then the request should be rejected by IBM HttpServer

This is useful in making system less vulnerable. All client using IBM HttpServer would be benefitted form this. IBM HtpServer should work in a manner so that if client provide RSA certificate less than 2048 bit then the request should be rejected ...
over 2 years ago in WebSphere traditional 1 Delivered

Kerberos support for XA Recovery transactions on WAS

Requesting Kerberos authentication support for transactions during XA recovery. Kerberos functionality provided by IBM on WAS is not fully working and needs enhancement.
over 5 years ago in WebSphere traditional 1 Delivered

HTTP Strict Transport Security header (Strict-Transport-Security) header is missing in WAS Administrative console

HTTP Strict Transport Security (HSTS) is a mechanism which protects secure (HTTPS) websites from being downgraded to non-secure HTTP. This mechanism enables web servers to instuct their clients (web browsers or other user agents) to use secure HTT...
almost 7 years ago in WebSphere traditional 1 Delivered

Enable Account Lockout after 3 failed logins

Passwords are prune to Bruteforce attacks, an attacker can easily brute force the passwords as the password policy is weak andallows simple alpha numeric characters without any restriction of password length e.g.: admin, passetc.Account lockout me...
about 7 years ago in WebSphere traditional 2 Delivered

Allow IBM HTTP Server behind a proxy/LB that performs SSL offloading to become aware that the original request uses https

In a situation where IHS is behind another proxy/LB that performs SSL offloading, it would be beneficent to implement a behavior similar to WAS, to check a http header defined by the web container custom property 'httpsIndicatorHeader' to know tha...
10 months ago in WebSphere traditional 0 Delivered

To support AES-256 password encryption in traditional WebSphere

Client Feedback:As per this link https://www.ibm.com/docs/en/was/9.0.5?topic=files-encrypting-passwords-by-using-aes , WAS only supports AES-128 encryption. My customer's security standard requires AES-256 at the minimum.
over 1 year ago in WebSphere traditional 0 Delivered

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.