Skip to Main Content
IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


ADD A NEW IDEA

Security

Showing 60

Security enhancement - support of roles for GRANT SETSESSIONUSER privilege

After the change of the security setup in DB2 database to a role based model there is still a part where some rights can only be granted to groups instead of roles. This forces admins to maintain to sets of security setups making a complex Task ev...
over 7 years ago in Db2 / Security 0 Not under consideration

implicit GRANT EXECUTE to SYSMON authority for all monitor routines(RIMS)

Customer has to grant the EXECUTE privilege on the monitoring functions to a user who already has the SYSMON authority. They would expect that a user of the SYSMON_GROUP holds this privilege implicitly. This looks like a restriction to the monitor...
about 9 years ago in Db2 / Monitoring / Security 1 Not under consideration

Add support for database SINGLE_USER mode access

Time to time there is requirement to be the only user on the database like drop and create database, but there are also users with system authorizations connected to database. Or there is product (even from IBM) like Maximo: https://www.ibm.com/su...
over 1 year ago in Db2 / Security 0 Not under consideration

Introduce similar to SYSPROC.AUDIT_DELIM_EXTRACT for extracting audit events directly to Syslog

Introduce similar to SYSPROC.AUDIT_DELIM_EXTRACT for extracting audit events directly to Syslog
about 7 years ago in Db2 / Security 1 Not under consideration

Grant 'create, drop and alter a tablespace' authority to specific user

The Sysctl group can create, drop and alter a tablespace in db2 and also have all authorities of SYSMAINT and SYSMON. Customer just want to give tablespace control authority to specific user.
about 7 years ago in Db2 / Security 0 Not under consideration

Provide the option to exclude SELECT statements from db2audit when collecting DML data

The painful and expensive IBM recommended workaround that ended up not being feasible was to create event monitors (multiple so that records can be cleared) with WLM. However, the volume and format of output generated by the event monitors is diss...
over 3 years ago in Db2 / Security 0 Not under consideration

Allow creating allow/deny list of system calls possible by fenced external routines

This will secure the database further from malicious users trying to break out into the host running managed Db2 services on Cloud. This can be done using:1. seccomp() before spawning the db2fmp process and 2. Making more secure SELinux policies f...
9 months ago in Db2 / Security 0 Not under consideration

Online db encryption at rest

To implement encryption at rest - we have to do backup - restore i.e. outage to application. OUtage can only be avoided in case of HADR setup which is not always the case. This RFE is to bring feature of online db encryption without any outage to ...
over 5 years ago in Db2 / Security 0 Not under consideration

Update SYSMON_GROUP Authority to include privileges needed for db2top (and other monitoring type functions)

Revisit db2top and dcmtop access requirements to identify the basic monitoring features which require privileges above and beyond sysmon_group privileges and update Db2 to have the sysmon_group given all necessary permissions
about 3 years ago in Db2 / Security 1 Not under consideration

DB2 LUW - Enhance Trusted Context

We use Trusted Context (TC) to allow connections into a database from IP's configured. However with the move to the cloud, it has become a challenge as the source IP's change dynamically with application restart. We need a TC mechanism to be able ...
over 6 years ago in Db2 / Security 0 Not under consideration