Skip to Main Content
Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

Pinned ideas

View all
PINNED supports ECDH-ES algorithms for JWE
Debit or credit card tokenizers (THALES / VISA / Etc.) implement JWE with ECDH as an encryption mechanism for sensitive data in the different flows applicable to wallets such as Apple Pay, GPay, etc. given its wide diffusion and easy adoption.
PINNED OpenAPI schema validation including headers
Currently to schema validate a REST based API in DataPower you have to extract the JSON schema from the OpenAPI file and then code manually code the individual header checks defined in the OpenAPI file Would be a vast improvement to be able to j...

All ideas

Showing 2708 of 2708

Outbound authentication to Azure Blob storage

Need any or all of the authentication support to push the data into Azure Blob storage on API Gateway. https://learn.microsoft.com/en-us/rest/api/storageservices/authorize-requests-to-azure-storage
4 months ago in webMethods API Gateway 1 Functionality already exists

Cache and time to live credentials parameter should be customizable while adding new LDAP directory.

Now we are able to create mutiple LDAP connections on APIgateway console, but the cache and time to live credentials parameter should not be customizable for each connection. It remains same for all the LDAP connections. Ref:SI-559489
4 months ago in webMethods API Gateway 0 Not under consideration

Browser side Drupal Encryption for Password being submitted to block the MITM attack

In VAPT, Customer is able to decrypt the password using Burp Suite to trap the request and see the password. The TLS Encryption Alone cannot block the attacker to decrypt the password. In some places, the Password used is of Organization which can...
7 months ago in API Connect 1 Not under consideration

LDAP Group mapping for consumer organizations

Since version 10.0.2 the ldap group mapping for pOrg and the CMC was introduced. We also think it is beneifical to be able to map ldap group to roles in a consumer organisation. Currently this is not supported.
almost 2 years ago in API Connect 2 Future consideration

Please add functionality to use ACE REST nodes to call REST based backend services, using separate application keystore instead of broker keystore.

We want to segregate the application related certs from Infrastructure certs for Message level encryption. As PolicySets and PolicySetBindings are applicable for only SOAP nodes. We have JSON based REST service at the backend, so we need to use ei...
over 3 years ago in App Connect 1 Future consideration

.NET MQ Client: Don't look in Windows keystore when running under Linux

IBM's .NET MQ XMS client library (versions from 9.2 through 9.3 were tested), cannot make TLS connections to a Queue Manager when the C# code runs in a Linux container, because it tries to look into the “My / CurrentUser” keystore, which doesn’t e...
4 months ago in MQ, MQ Advanced & MQ Appliance 0 Under review

Two Factor authentication not configured- Insufficient authentication security control.

Integration server is not using two factor authentication, and it is not configured in critical application users who has privileged access.
4 months ago in webMethods Integration/Microservices Runtime 0 Submitted

Concurrent Session allowed for a single user

observed that the applications opens in multiple session at the same time for the same account. This widens the attack surface of the application as attackers can seamlessly use valid credentials at the same time as their legitimate owner (and mak...
4 months ago in webMethods Integration/Microservices Runtime 0 Submitted

Allow to upload only the necessary images for an specific service type on the image-tool

Currently you can upload all the API Connect images to an image repository to run it on K8s. Some clients need to run only one of the services (portal, analytics, manager or gateway) on an specific cluster, but we're forcing to upload all the imag...
4 months ago in API Connect 2 Needs more information

Enable TAG as an First Class Attribute for Queue Manager and Queue and other MQ Objects

Adding TAG attribute to each MQ Object allows easy view; helps in FINOPS and dashboard. There is already a Description and Custom key attribute; but having a dedicated TAG attribute helps for easy operations.
7 months ago in MQ, MQ Advanced & MQ Appliance 1 Not under consideration