Managed directory service with extension
First Claim
1. A computer-implemented method, comprising:
- receiving, at a managed directory service, a request from a customer of a computing resources service provider to extend a customer computer system directory hosted in a customer computing environment by at least creating an extended customer computer system directory in a virtual network managed on behalf of the customer by the computing resources service provider in a computing environment of the computing resource service provider, the customer computer system directory referencing a set of data stored in the customer computing environment, wherein extending the customer computer system directory provides a service of the computing resource service provider access to the set of data based at least in part on a uniform resource identifier associated with the customer computer system directory;
determining whether fulfillment of the request is authorized based at least in part on a first set of credentials associated with the customer;
obtaining, by the managed directory service, information usable to access the customer computer system directory, the information based at least in part on a second set of credentials associated with the customer computer system directory; and
using the information to replicate the customer computer system directory from the customer computing environment to the extended customer computer system directory hosted in the computing environment of the computing resource service provider, based at least in part on the second set of credentials.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for connecting computer system entities to remotely extended local computer system resources are described herein. A computer system entity that requests access to a local computer system resource has that request fulfilled by a managed directory service which receives the request and connects the computer system entity to the local computer system resource. While connected, the managed directory service extends the local computer system resource to a corresponding extended remote computer system resource, receives commands to perform operations on the local or extended remote computer system resources and, if the computer system entity is authorized to perform the operations on the appropriate computer system resource, the managed directory service performs the operations on the appropriate computer system resource.
-
Citations
18 Claims
-
1. A computer-implemented method, comprising:
-
receiving, at a managed directory service, a request from a customer of a computing resources service provider to extend a customer computer system directory hosted in a customer computing environment by at least creating an extended customer computer system directory in a virtual network managed on behalf of the customer by the computing resources service provider in a computing environment of the computing resource service provider, the customer computer system directory referencing a set of data stored in the customer computing environment, wherein extending the customer computer system directory provides a service of the computing resource service provider access to the set of data based at least in part on a uniform resource identifier associated with the customer computer system directory; determining whether fulfillment of the request is authorized based at least in part on a first set of credentials associated with the customer; obtaining, by the managed directory service, information usable to access the customer computer system directory, the information based at least in part on a second set of credentials associated with the customer computer system directory; and using the information to replicate the customer computer system directory from the customer computing environment to the extended customer computer system directory hosted in the computing environment of the computing resource service provider, based at least in part on the second set of credentials. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system, comprising:
-
one or more processors; and memory to store executable instructions that, as a result of execution by the one or more processors, cause the system to at least; receive a request from a customer of a computing resources service provider to extend a customer computer system directory hosted in a customer computing environment by at least instantiating an extended customer computer system directory in a virtual network managed on behalf of the customer by the computing resource service provider in a computing environment of the computing resource service provider, the customer computer system directory referencing a set of data stored in the customer computing environment, wherein extending the customer computer system directory provides a service of the computing resource service provider access to the set of data based at least in part on a uniform resource locator associated with the customer computer system directory; determine whether fulfillment of the request is authorized based at least in part on a first set of credentials associated with the customer; obtain information usable to access the customer computer system directory, the information based at least in part on a second set of credentials associated with the customer computer system directory; and use the information to replicate at least a portion of the customer computer system directory from the customer computing environment to the extended customer computer system directory hosted by the computing resources service provider. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A non-transitory computer-readable storage medium comprising executable instructions that, as a result of being executed by one or more processors of a computer system, cause the computer system to at least:
-
receive a request from a customer of a computing resources service provider to extend a customer computer system directory hosted in a customer computing environment by at least creating an extended customer computer system directory in a virtual network managed on behalf of the customer by the computing resources service provider in a computing environment of the computing resource service provider, the customer computer system directory referencing a set of data stored in the customer computing environment, wherein extending the customer computer system directory provides a service of the computing resource service provider access to the set of data based at least in part on a uniform resource locator associated with the customer computer system directory; determine whether fulfillment of the request is authorized based at least in part on a first set of credentials associated with the customer; obtain information usable to access the customer computer system directory, the information based at least in part on a second set of credentials associated with the customer computer system directory; and use the information to replicate at least a portion of the customer computer system directory from the customer computing environment to the extended customer computer system directory of the computing resources service provider. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification