Welcome to the #dominoforever Product Ideas Lab! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated jointly by the IBM & HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino page.


Improve SAML - We need act also as a Idp Provider

Currently, Domino can use SAML for authentication, but NOT to act as an IdP provider.

There is a lot of product on cloud that in order to do SSO, they do require an IdP,  an your are forced to use ADFS or Tivoli for that.    On the same way that Domino Directory  can be used as an LDAP Server, it would be great to allow it to act also as an IdP.  

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Jul 23 2018
  • Investigating
  • Attach files
  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    July 24, 2018 12:51

    FYI - No need to use ADFS or Tivoli. Take a look at https://www.ibm.com/us-en/marketplace/cloud-identity-connect#product-header-top

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    July 27, 2018 20:25

    But ADFS using Domino is free. The suggested IBM solution is $2.50 per user / per month

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    August 01, 2018 16:32

    There are other third party IDP's (like Okta) that need to seamlessly interop with the Domino stack; it has to go beyond just using ADFS.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    22 Jan 21:34

    Any SAML 2.0 provider is supported with Domino 10!
    So there are also other options. In most company ADFS or other IdPs are already deployed.

    It would only make sense for smaller companies from what I see.

    [ Daniel Nashed / http://blog.nashcom.de ]

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    22 Jan 22:28

    Not agree with most of comments. On the same way I do not drop the support for LDAP on Domino just because most of the companies already have LDAP directories available,     I should not drop the support of a IdP support inside the SAML features of Domino.    Also, why to use thirty party IDPs (Otka, Tivoli,  IBM Cloud Identity) products that have additional cost and need additional integratilons and directories,  when you already have directories and ldap features, and you can do everything on a simpler way on a single box ?    I see this would allow to open a lot of possibilties, please add iDP support asap!