Skip to Main Content
Cloud Platform


This is an IBM Automation portal for Cloud Platform products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

WebSphere traditional

Showing 139 of 1931

Provide property to allow skipping of group membership lookup during login

We see a 20-120 second delay during login to our BAW (Business Automation Workflow) application which uses WebSphere 8.5.5.xTrace indicates the time is consumed before ever reaching the application, by WebSphere security code doing full traversal ...
1 day ago in WebSphere traditional 0 Submitted

Disable password decryption using wsadmin.sh command

Encrypted Admin password saved in soap.client.props file can be easily decrypted using below wsadmin commands. This has been flagged as a security concern by Citi Security team. We are requesting to disable this feature so that decrypting WebSpher...
23 days ago in WebSphere traditional 0 Submitted

AES256 product enhancement for twas on password encoding

twas 8.5.5 and twas 9 doesnt have support for AES-256 encryption of passwords. Presently supports only AES-128 encryption. Need help to enhance this password encryption/encoding of AES to 256 bits/keylength. https://www.ibm.com/docs/en/was/9.0.5?t...
4 months ago in WebSphere traditional 1 Future consideration

Add WAS z/OS support up to Db2 z/OS v13 FL50x for the sibDDLGenerator.sh script

The full details and background, etc., can be found in the Support Case TS017121234 The DDL produced by the WAS z/OS sibDDLGenerator.sh script is no longer valid; this manifested itself during our testing with Db2 v12 z/OS at FL504. Furthermore, t...
23 days ago in WebSphere traditional 0 Submitted

Explore the possibility of using ZERTJSSE on WAS

We are trying to configure WASv9 to make use of the ZERTJSSE provider and please note this is a continuation from the instructions obtained via previous case TS013670650. Subsequently we have opened a new case TS017440083 which the IBM support has...
about 2 months ago in WebSphere traditional 0 Submitted

WebSphere ND Primary FID (wasinternaluser) should disable in console (not from backend)

We are the internal WebSphere ND engineering team at Citi, responsible for automating end-to-end installations across the global Citi network, encompassing over 10,000 servers. Approximately one year ago, Citi's security team raised concerns regar...
4 months ago in WebSphere traditional 0 Under review

WebSphere Application Server Support for HashiCorp Vault usage

Our organization mandates the use of HashiCorp Vault to store and retrieve passwords. For Applications hosted on WebSphere Application Server, there is no direct support to make use of HashiCorp Vault to store/retrieve database password as part of...
over 3 years ago in WebSphere traditional 3 Not under consideration

For WebSphere Application Server to support LDAP Channel Binding for end user authenticaion

Using Enble the LDAP Channel binding will help us to end user authention in IBM Websherer Application Server and its proves more secure in centralized authentication mechanism.
about 1 month ago in WebSphere traditional 0 Submitted

Allow IBM HTTP Server behind a proxy/LB that performs SSL offloading to become aware that the original request uses https

In a situation where IHS is behind another proxy/LB that performs SSL offloading, it would be beneficent to implement a behavior similar to WAS, to check a http header defined by the web container custom property 'httpsIndicatorHeader' to know tha...
about 2 months ago in WebSphere traditional 0 Submitted

WebSphere OpenID Connect Relying Party - Could you please add client_assertion as an authentication method?

Current Situation: We are using the IBM supplied replying party plugin with Microsoft Entra: Component name: OpenID Connect Relying Party TAI TAI class name: com.ibm.ws.security.oidc.client.RelyingParty Version: 9.0 f5192405.01 This combination al...
4 months ago in WebSphere traditional 0 Under review