IBM Z Software
Hide about this portal


This portal is to open public enhancement requests against IBM Z Software products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

zSecurity

Showing 115

Sysplex Level CKFREEZE - Having ONE CKFREEZE for an entire sysplex would greatly speed up time for any zSecure UI or batch functions that have to read through CKFREEZE datasets

The idea is just have ONE CKFREEZE for ALL LPARs. This would greatly enhance efficient where zSecure UI or batch functions require reading of the CKFREEZE dataset. Having to parse through multiple datasets creates added overhead and adds to longer...
about 1 year ago in zSecurity / zSecure Admin 0 Future consideration

zSecure - Hour Granulartiy for REQUEST command

When requesting command execution in panel C2RP3XCS to get a connect to a group it is only possible to permit that access based on calendar days. Some privilege escalation should only be granted for a few hours instead of calendar days.
about 5 years ago in zSecurity / zSecure Admin 3 Future consideration

RACF Command to Remove all user IDs from a group

A Mainframe security administrator has difficulty or delay in removing all users from a certain group, for example to delete a group, so the idea is to have a single RACF command to remove all users from a group. The command could be REMOVE groupn...
5 months ago in zSecurity / zSecure Manager for RACF z/VM 1 Functionality already exists

Redesign the zSecurity by make it AI driven zSecurity and make all zSecurity adapters feeded to an AI driven single SIEM/SOAR Sensor

This idea is important because of the following: 1- We think, the future versions of IBM Z and LinuxONE, may need unifying the zSecurity adapters for SIEM, and feed the adapters inputs to single channel with a single very fast cyber security senso...
6 months ago in zSecurity / zSecure Adapters for SIEM 2 Not under consideration

Redesign the zSecurity Adapters for SIEM by Integration with the future SIEM based on Generative AI LLM, RAGs and Knowledge graph

This idea is important because of the following: 1- we think it is better to enable the future versions of zSecurity with new Device Support Modules DSMs which can be implemented by RAGs and Knowledge graph. 2- We think, in the future, zSecurity a...
6 months ago in zSecurity / zSecure Adapters for SIEM 2 Not under consideration

Option to include content of allowlists in printed Compliance reports.

Currently, for printed Compliance reports, used for auditing purposes, the allow lists, nor their contents are included in the reports. In previous versions of STIG compliance reports, the details were visibile, and we are pursueing having those a...
about 1 year ago in zSecurity / zSecure Audit 0 Future consideration

Allow a user to perform MFA compound authentication specifying only the security manager credential with a Radius server that pushes an authentication request to a user device.

Currently MFA requires a credential value that contains a “dummy” MFA portion to cause the Radius server to push an authentication request to the user device. Having the push request generated without explicitly having to specify the dummy MFA por...
over 2 years ago in zSecurity / Z Multi-Factor Authentication 3 Planned for future release

Enhance email notification to also send emails via CSSMTP

We were instructed to encrypt all email leaving the mainframe. MFA could encrypt its email connection. However, CSSMTP already supports encryption. CSSMTP has advantages like a central email connection point and retry if the email server (MTA) is ...
about 1 year ago in zSecurity / Z Multi-Factor Authentication 2 Future consideration

z/OS Unix Access Report for Users or Groups

In zSecure, we can get an access report for a User or Group via the RA.3.4 panels. This report shows us what RACF resources an ID has access to, whether directly via the ID or via a connected Group (selecting option 2 in RA.3.4). Such a report cur...
over 2 years ago in zSecurity / zSecure Admin 0 Planned for future release

Increase precision of counters for RACF commands in the REPORT VERBOSE/TERSE command when using RACF-Offline

RACF-offline provides the REPORT VERBOSE/TERSE command to include a summary of RACF commands issued as part of the RACF-Offline session. Currently the precision is 16 bits which means that any RACF command issued more than 65,535 times will have t...
8 months ago in zSecurity / zSecure Admin 0

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.