Skip to Main Content
Cloud Platform

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive a notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.

If you encounter any issues accessing the Ideas portals, please send email describing the issue to ideasibm@us.ibm.com for resolution.

For more information about IBM's Ideas program visit ibm.com/ideas.

Status Not under consideration
Created by Guest
Created on Aug 23, 2021

The Useable WebSphere Auditing Functions Are Required by the Department of Defense

The current WAS Auditing function does provide readily useable logs to even track down simple events such as starting/stopping an application server via the WAS Admin Console. I would like to see such functionality added to the NDM audit logs.


I also sending up an excel spreadsheet that outlines all the requirements for application server auditing for any WebSphere server deployed within a Department of Defense environment as specified by the Application Server V3.1 Security Technical Implementation Guide (STIG) as maintained by Defense Information Systems Agency (DISA). So that mean any WAS server deployed within the US Navy, US Airforce, US Army or other Federal environments.


The issues in the spreadsheet are considered CAT II issues and not adhering to these requirements or having a Plan of Action/Mitigation (POAM) would prevent an project from getting its Authority To Operate (ATO).

Idea priority High
  • Admin
    Gary Picher
    Sep 23, 2021

    Hi, and thank you for submitting this request for enhancement! Just so I am sure that I understand what the request is before I begin to evaluate it, can you confirm that you are asking us to provide an auditing event that will record the start and stop of application servers when those starts and stops are driven via the WebSphere Admin Console UI? Currently, we do audit those starts and stops when driven via wsadmin, but we do not when driven via the Admin Console.

    If you can confirm that this is the support you are asking for, then I will continue to evaluate. Thanks!