This portal is to open public enhancement requests against the products and services belonging to IBM Sustainability Software. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.
IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.
ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.
See this idea on ideas.ibm.com
Use Case:
In our Maximo environment we collaborate with external users (suppliers, customers). However, the current setup does not allow those external users to send outbound e-mails from Maximo (create communication, scheduled reports). Those external users have a e-mail address which is obviously not a valid domain (e.g. not @mybusiness.com).
Problem Statement
With the current Maximo design limitations we run into spoofing issues. When external usersschedule a report or send a communication those e-mails are send using the primary e-mail address. As those users do not have a valid domain e-mail address these e-mails are blocked by the SMTP server. This is causing issues (blocked e-mails, queues, non-processed e-mails) in the e-mail environment. Our partner Microsoft does not accept such spoofing.
In my opinion it is a bug that there is a spoofing option in Maximo that cannot be prevented at this moment. Allowing such e-mails from a domain which you are not or which you do not belong to could get you blacklisted by the recipient. Besides e-mail providers (like Microsoft) also actively monitors for this undesired behavior.
Solution Proposal
There should be an option to whitelist a certain domain or multiple domains and that all other e-mails send from other domains can be 'overruled' and send from a standard e-mail address (e.g. maximo@mybusiness.com). Therefore we want to propose the idea to introduce a feature that allows administrators to:
Define in one property the supported domains (e.g. @mybusiness.com, @mybusiness.nl, etc.) using a comma separated list.
Define in second property a default 'send from' e-mail address that is applied in case the e-mail is send from a different domain then the supported domains
If these properties are enabled Maximo should validate each outbound e-mail before sending it to the SMTP server. It should replace the 'sendfrom' e-mail header with the e-mail address as defined in property #2 in case the e-mailaddress domain of the person which is sending the e-mail does not match one of the supported domains (as defined in property #1).
Additional remarks
A similar idea was proposed before: https://ideas.ibm.com/ideas/MASM-I-466
However, based on the response from IBM I believe that the idea was not properly understood by the IBM representative as in the response they mention the e-mail listener which is used for reading/processing inbound e-mails towards Maximo whereas the idea is clearly about outbound e-mails and replacing headers of those outbound e-mails.
Idea priority | Urgent |
Needed By | Yesterday (Let's go already!) |
By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.
One addition to the solution proposal that I forgot to mention. The 'replyto' mail header should ideally remain / be the official e-mail address of the person that has send the e-mail.
But perhaps it should also be possible to default with another e-mail address. This might also be desired in some situations as certain policies might not allow a different replyto domain as compared to the sendfrom domain.