Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Post your ideas
IBM is transforming its request for enhancement (RFE) process. The purpose of the transformation is to provide a more consistent experience for you to submit requests and to enable IBM product owners to respond to your requests more quickly. For more information click here.
Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,
1. Post an idea
2. Upvote ideas that matter most to you
3. Get feedback from the IBM team to refine your idea
Help IBM prioritize your ideas and requests
The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.
Receive notifications on the decision
Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.
Connect Direct File Agent: Encryption and Decryption of keystore and truststore password
To setup client certifcate authentication for the File Agent, keystore and truststore passwords are required to be specified in clear text either on the command line or in a .lax file. Since the passwords are in clear text, this creates a securit...
synchronize the versions of JRE in Connect Direct
Install agent is packaged with an older version of Java with numerous security vulnerabilities. Main java : $ ./jre/ibm-java-x86_64-80/jre/bin/java -version
java version "1.8.0_261"
Java(TM) SE Runtime Environment (build 22.214.171.124 - pxa6480sr6fp15-...
Remove the need of 'Log on locally' permission for user accounts in Connect:Direct Windows
Remove the need of 'Log on locally' permission for user accounts in Connect:Direct Windows. In our organization providing service accounts with 'Log on locally' permission is picked as a Non-standard security configuration and deviating from our ...
CIphers configuration for Connect Direct Web Services
Connect Direct Web Services configuration should allow to limit list of allowed ciphers. Similar functionality is present for protocol configuration under "server.ssl.enabled-protocols”. Support for similar parameter e.g. "server.ssl.enabled-ciph...
Option to disable Connect Direct Web Services web page
Current version of Connect Direct Web Services software provides two interfaces - RESTful API and webpage GUI access. Software should allow to disable web GUI access.
Need to read/write files to 3rd part encryption format/schema via an I/O exit able to utilize sub processes for the decrypt/encrypt step.
We would be able to read/write to encrypted devices having proprietary formats.
CD for system i does not have possibility IFS directories and libraries restriction as on other platforms
In CD for unix is possible to define restriction for download and source directories in user map configuration on local functional user. I do not see this possiblity on CD for system i, Please could you add this functionality also for transfer fro...
Add cipher support
Need to connect to a wide variety of Customers.
TLS_RSA_WITH_AES_256_CCM (0xC0,0x9D)TLS_DHE_RSA_WITH_AES_128_CCM (0xC0,0x9E)TLS_DHE_RSA_WITH_AES_256_CCM (0xC0,0x9F)TLS_RSA_WITH_AES_128_CCM_8 (0xC0,0xA0)TLS_RSA_WITH_AES_256_CCM_8 (0xC0,0xA...
Allow Certificate-Based Authentication to Connect:Direct AIJ
Allow Connect:Direct to authenticate to Control Center using Kerberos.
Make the version info in the banner of the CLI commands (direct, ndmcli, ...) & GUIs consult a file in the install tree
We have received several security findings because CD gives version details that will allow hackers info on how to hack the software.