This is an IBM Automation portal for Cloud Platform products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
We are using EKMF Web, and it uses WebSphere Liberty. EKMFWEB uses port 9443. Recently we received report that the port is vulnerable. Upon researching with IBM, it was found that weak ciphers have been included in liberty even when configured to ...
Support token authentication (IDT) when accessing a db when using a connection pool
PCI data security is requiring servers to never expose a password when accessing a db. The industry is moving towards using JWTs (for example, a RACF IDT on z/OS) to meet this requirement. JWT eliminate the need to manage a db password in Liberty ...
Mapping of a role in a JWT token to a technical user ID in SAF/RACF
As of today only WebSphere Liberty on z/OS and z/OS Connect EE (which is also based on WebSphere Liberty on z/OS) can only map the distributed user ID in a JWT token to a mainframe user ID in SAF/RACF. This is a problem when there is no equivalent...
Downloads for IBM J9 are behind a log-in and there does not seem to be an API to get them. E.g. for the release 220.127.116.11, we need to download archives for these platforms: AIX 64-bit, pSeries 18.104.22.168-JavaSE-SDK-aix-ppc64-archive Linux 64-bit, pSeri...
Add a parameter to BBOC START_SRVR commands to define the BBO$ user id for CICS WOLA Link Server Task
We are using BBOC START_SRVR commands to start the WOLA Link Server Tasks (BBO$) in our CICS regions. Currently, there is no parameter to define the user id, under which BBO$ is running. So, if we start the Link Server Task during the CICS startup...
S282 Abend when calling Liberty isAuthorized method
when calling the isAuthorized API to check the profile like below,you will see the abendProfile:AAAAA.BBBBBBB.11111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111Cla...
OIDC Provider capability to cache 3rd party token, so claims could be build from tokens directly without relying on LDAP
Although Liberty OIDC server can delegate user authentication to 3rd party identity provider (SAML, or OIDC), Liberty OP still relies on LDAP to fetch user attributes to build user claim. To remove LDAP dependency, OP need to be modified to cache ...
Do not place IBM confidential, company confidential, or personal information into any field.