IBM Sterling Ideas

Submit new product ideas for IBM Sterling solutions. Before you submit, please review existing ideas; if an idea close to yours already exists, it's better to add comments or vote on the existing idea. We will review your ideas and use them to help prioritize our product development. Best of all, the portal will automatically update you when the status of your idea has been changed.

IBM is transforming its request for enhancement (RFE) process. The purpose of the transformation is to provide a more consistent experience for you to submit requests and to enable IBM product owners to respond to your requests more quickly. For more information click here.

Connect with IBM experts and your peers on the Supply Chain Collaboration Community and the Order Management Interest Group

Password Security Controls

Password security controls for SSP administrator interfaces using local authentication are not allow enough password security controls:

  • Passwords expiration can’t be enforced.
  • Password complexity settings are minimal and don’t comply with the security policy.
  • Accounts cannot be configured to lock after number of unsuccessful access attempts
  • Initial passwords cannot be set to expire upon initial login
  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Nov 9 2018
  • Under Consideration
How will this idea be used?

Currently we are utilizing local authentication administrative accounts. Password security controls for SSP administrator interfaces using local authentication are not configured in accordance with Trinity Health’s Enterprise Information Security (EIS) Procedures

What is your industry? Healthcare
What is the idea priority? High
  • Attach files
  • Admin
    VIJAY CHOUGULE commented
    5 Dec, 2018 03:32pm

    Thanks for submitting your idea. For SSP Engine, the admin is not currently able to be authenticated against the LDAP server, we will be evaluating options for the same. Thanks