IBM Data and AI Ideas Portal for Customers

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea

Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The product management team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.

Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.

Additional Information

To view our roadmaps:

Reminder: This is not the place to submit defects or support needs, please use normal support channel for these cases

IBM Employees:

The correct URL for entering your ideas is:




Showing 77

Let a change of a SYS*_GROUP in the dbm cfg be reflected in the db2audit secmaint.del-file next to/instead of in db2diag.log

For security monitoring purposes every 30 minutes our production db2audit-files are archived, extracted and uploaded to a special security server for analysis purposes. However very important information is missing: when changing a SYS*_GROUP, the...
almost 6 years ago in Db2 / Security 0 Not under consideration

Modify permissions on DB2/LUW installation directories

During installation and instance creation of DB2/LUW ESE (and AESE), the following directories are create as world writable (OTHER permissions of 777) without the sticky bit set: sqllib/db2dump/DIAG0000sqllib/db2dump/eventssqllib/tmpsqllib/uifsql...
about 6 years ago in Db2 / Security 0 Not under consideration

CLONE_SERVER_HOST is the READ ONLY in db2 native encryption with KMIP

The CLONE_SERVER_HOST keysecure server defined in kmip cfg is the READ ONLY server which fails create encrypted database and SHOW MASTER KEY DETAILS commands. Also it is not 100% failover compatible.
almost 4 years ago in Db2 / Security 0 Not under consideration

Do not block DDL on RCAC-protected table if rule not affected by change

after alter add column RCAC rule must be dropped and recreated, even if new column is not part of rule IBM perspective: In our ALTER TABLE ADD COLUMN documentation it says:
almost 2 years ago in Db2 / Security 0 Not under consideration

Trusted Context should be usable with static SQL

Trusted context or trusted connection is a security feature, which enables customers to differentiate between applications connecting to a database, based on whether they originate from a trusted or from a NON trusted client system.This works p...
about 6 years ago in Db2 / Security 0 Not under consideration

Database activation should carry separate security authority

ACTIVATE DATABASE should be a separate GRANTed authority.
over 4 years ago in Db2 / Security 0 Not under consideration

mixed case sensitive support for db2 luw on linux platform

On linux and other Unices, connecting to db2 luw with users having capital letters into their user name is not possible since the db2 security components, I guess the standard OS security plugin, assume that usernames are all lower cases.This beha...
over 6 years ago in Db2 / Security 0 Not under consideration

Nickname using session_user

Nicknames ignores the permissions of the session_user, they just check the permissions of the connect user. In our Db2 Security System we connect with an CONNECT_USER to the database.After an successfull Connection the connect user does an SET...
over 2 years ago in Db2 / Federation / Security 3 Delivered

Performance degradation after enabling RCAC

Performance degradation and difference in behavior of access plan on stored procedure query after enabling RCAC - column masking for a column which is part of select condition.The query access plan without RCAC is scanning only the table (Table A)...
about 5 years ago in Db2 / Security 0 Not under consideration

Allow IBM Data Server Runtime Client ODBC to connect with TLS signer certifcate to DB2 Server

DB2 ODBC client connect will not send a TLS signer certificate to DB2 server unless the client keystore DB has a default certificate. I had to set the cert as the default certificated in the my local keystore db >gsk8capicmd -cert -setdef...
over 2 years ago in Db2 / Security 2 Not under consideration