Skip to Main Content
Cloud Management and AIOps


This is an IBM Automation portal for Cloud Management, Technology Cost Management, Network Automation and AIOps products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.

Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

ADD A NEW IDEA

Security and Compliance

Showing 10 of 4122

Add CSP Report Endpoint

In order to maintain and improve the quality of the Content-Security-Policy we currently need to offer a self hosted solution for the CSP-Reports* To not have to implement a endpoint on ourself, where to send CSP Reports, an Endpoint provided by I...
11 days ago in Instana / Real User Monitoring / Security and Compliance 0 Under review

Publish version history for instana agent and k8sensor

When upgrading to a new version of the static instana agent we have no idea what changes there actually are in the new version. We would like to know what we're getting ourselves into, and to be able to chose whether to upgrade or not. Additionall...
about 1 year ago in Instana / Security and Compliance 0 Future consideration

Map Groups with SAML (Okta)

We have SSO setup for the Instana Backend using SAML with Okta. We would like to be able to map groups provided by the Idp to Instana roles/groups. The ability to map our internal LDAP groups to Instana groups would give us the ability to apply ac...
over 2 years ago in Instana / Access Control / Security and Compliance 2 Functionality already exists

Security Vulnerability Management

Hello, It is very important to have a unified security insights & compliance dashboard and vulnerability management capabilities consolidated within the Instana APM / Observability solution. Besides application performance monitoring and proac...
10 months ago in Instana / Integrations / Security and Compliance 0 Planned for future release

Instana WEB monitoring API key protection against malicious data ingestion

Currently WEB monitoring configurations on Instana are allowing anyone having access to the key used in the JavaScript configuration to ingest data. For security reasons it would be nice to limit the acceptance of data ingested by using a particul...
about 1 year ago in Instana / Security and Compliance 0 Future consideration

TLS connections to scrape Prometheus endpoints

Allow TLS connections for connections from Instana agents/sensors instances to scrape target prometheus endpoints
about 1 year ago in Instana / Security and Compliance 1 Future consideration

To alert on CVEs, introduce a new event type in Instana for "Vulnerabilities Detected"

Instana should provide capabilites to create an event based on a vulnerability detected for the particular host/technology, so that the customer's support teams are alerted for the detected vulnerabilities. The event could be either a System Event...
about 1 year ago in Instana / Security and Compliance 1 Not under consideration

K8-Deployment Environment Variables from Kubernetes Secrets should not be visible in process Environment Variables

Introduction: --------------- Our enterprise company uses instana as a shared open platform for all our developers and teams. We recently noticed that some of the teams have visible secrets in the process views.Also, we use strict secret Filtering...
over 1 year ago in Instana / Agent / Security and Compliance 1 Not under consideration

support com.instana.secrets filtering on HTTP cookie headers

The HTTP Cookie header is useful to capture for debugging purposes. However, for security in depth it would be beneficial to be able to mask certain cookies, e.g. the login/session cookie.
over 2 years ago in Instana / Security and Compliance / Tracing 1 Not under consideration

New Agent Key in case of leak or security concerns

As customer I want to ensure that when the Agent Key leaks, nobody can abuse the Key and do harmful things with it. To be able to manage (add, manage, delete) the Keys (Sub-Keys) inside the Instana UI would help to monitor and govern who has acces...
almost 2 years ago in Instana / Access Control / Security and Compliance 2 Functionality already exists