×

Common authorization management service

  • US 10,637,868 B2
  • Filed: 11/16/2016
  • Issued: 04/28/2020
  • Est. Priority Date: 11/16/2016
  • Status: Active Grant
First Claim
Patent Images

1. A method (700) for authorizing individuals of a plurality of enterprises to access one or more services provided by a plurality of service providers, the method comprising:

  • creating, by an administrator (801) of each of the plurality of enterprises and via a Common Authorized Management (CAM) service (150), a plurality of groups to contain one or more individuals at one of the plurality of enterprises (701);

    receiving security data in the CAM service from each of the plurality of service providers, wherein the security data is defined and provided by an associated service provider administrator at each of the plurality of service providers and the security data identifies which of the one or more services provided by each of the plurality of service providers is available to each of the plurality of enterprises (702);

    determining, by the administrator of each of the plurality of enterprises, a subset of the security data that is available for access by a subset of the plurality of groups (703);

    receiving associating data in the CAM service from the administrator of each of the plurality of enterprises, the associating data associating individuals in the subset of the plurality of groups with the capability to access the one or more services provided by each of the plurality of service providers based on the subset of security data (704);

    receiving a request to access a service of a target service provider from a computing device, the request comprising data including a user identifier of an individual of an enterprise of the plurality of enterprises and information regarding a target service provider in a common authorization management (CAM) service;

    in response to the received request, providing information indicative of whether the individual has an access right to the service of the target service provider; and

    redirecting the computing device to the target service provider with the information indicative of whether the individual has an access right to the service of the target service provider.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×