Common authorization management service
First Claim
1. A method (700) for authorizing individuals of a plurality of enterprises to access one or more services provided by a plurality of service providers, the method comprising:
- creating, by an administrator (801) of each of the plurality of enterprises and via a Common Authorized Management (CAM) service (150), a plurality of groups to contain one or more individuals at one of the plurality of enterprises (701);
receiving security data in the CAM service from each of the plurality of service providers, wherein the security data is defined and provided by an associated service provider administrator at each of the plurality of service providers and the security data identifies which of the one or more services provided by each of the plurality of service providers is available to each of the plurality of enterprises (702);
determining, by the administrator of each of the plurality of enterprises, a subset of the security data that is available for access by a subset of the plurality of groups (703);
receiving associating data in the CAM service from the administrator of each of the plurality of enterprises, the associating data associating individuals in the subset of the plurality of groups with the capability to access the one or more services provided by each of the plurality of service providers based on the subset of security data (704);
receiving a request to access a service of a target service provider from a computing device, the request comprising data including a user identifier of an individual of an enterprise of the plurality of enterprises and information regarding a target service provider in a common authorization management (CAM) service;
in response to the received request, providing information indicative of whether the individual has an access right to the service of the target service provider; and
redirecting the computing device to the target service provider with the information indicative of whether the individual has an access right to the service of the target service provider.
1 Assignment
0 Petitions
Accused Products
Abstract
An improved method in a computing environment for establishing access for individuals in at least one enterprise with one or more services provided by a plurality of service providers through the use of a Common Authorization Management (CAM) service is described herein. Through the CAM service, an enterprise administrator can group together one or more individuals at one enterprise, identify access rights to one or more services in the plurality of service providers for each group of individuals based on security data defined by a service provider administrator, and associate individuals from the subset of the plurality of groups at each enterprise with access rights to one or more services provided by the plurality of service providers.
-
Citations
16 Claims
-
1. A method (700) for authorizing individuals of a plurality of enterprises to access one or more services provided by a plurality of service providers, the method comprising:
-
creating, by an administrator (801) of each of the plurality of enterprises and via a Common Authorized Management (CAM) service (150), a plurality of groups to contain one or more individuals at one of the plurality of enterprises (701); receiving security data in the CAM service from each of the plurality of service providers, wherein the security data is defined and provided by an associated service provider administrator at each of the plurality of service providers and the security data identifies which of the one or more services provided by each of the plurality of service providers is available to each of the plurality of enterprises (702); determining, by the administrator of each of the plurality of enterprises, a subset of the security data that is available for access by a subset of the plurality of groups (703); receiving associating data in the CAM service from the administrator of each of the plurality of enterprises, the associating data associating individuals in the subset of the plurality of groups with the capability to access the one or more services provided by each of the plurality of service providers based on the subset of security data (704); receiving a request to access a service of a target service provider from a computing device, the request comprising data including a user identifier of an individual of an enterprise of the plurality of enterprises and information regarding a target service provider in a common authorization management (CAM) service; in response to the received request, providing information indicative of whether the individual has an access right to the service of the target service provider; and redirecting the computing device to the target service provider with the information indicative of whether the individual has an access right to the service of the target service provider. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system (100) for authorizing individuals of a plurality of enterprises to access one or more services (223-225, 232-234, 241-243) provided by a plurality of service providers (230, 239, 248), the system comprising at least one processor (802) and memory (804), the at least one memory communicatively coupled to the at least one processer, the at least one memory comprising computer-readable instructions that, when executed by the at least one processor, cause the system to:
-
create, via an administrator (801) of each of the plurality of enterprises and using a Common Authorized Management (CAM) service (150), a plurality of groups to contain one or more individuals at one of the plurality of enterprises; receive security data in the CAM service from each of the plurality of service providers, wherein the security data is defined and provided by an associated service provider administrator at each of the plurality of service providers and the security data identifies which of the one or more services provided by each of the plurality of service providers is available to each of the plurality of enterprises; determine, by an administrator (801) of each of the plurality of enterprises a subset of the security data that is available for access by a subset of the plurality of groups; receive associating data in the CAM service from the administrator of each of the plurality of enterprises, the associating data associating individuals in the subset of the plurality of groups with the capability to access the one or more services provided by each of the plurality of service providers based on the subset of security data; receive a request to access a service of a target service provider from a computing device, the request comprising data including a user identifier of an individual of an enterprise of the plurality of enterprises and information regarding a target service provider in the common authorization management (CAM) service; in response to the received request, provide information indicative of whether the individual has an access right to the service of the target service provider; and redirect the computing device to the target service provider with the information indicative of whether the individual has an access right to the service of the target service provider. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A non-transitory computer-readable medium for authorizing individuals of a plurality of enterprises to access one or more services provided by a plurality of service providers, bearing computer-executable instructions that, when executed upon a computer, cause the computer to perform operations comprising:
-
creating, via an administrator (801) of each of the plurality of enterprises and using a Common Authorized Management (CAM) service (150), a plurality of groups to contain one or more individuals at one of the plurality of enterprises; receiving security data in the CAM service from each of the plurality of service providers, wherein the security data is defined and provided by an associated service provider administrator at each of the plurality of service providers and the security data identifies which of the one or more services provided by each of the plurality of service providers is available to each of the plurality of enterprises; determining, by an administrator (801) of each of the plurality of enterprises, a subset of the security data that is available for access by a subset of the plurality of groups; receiving association data in the CAM service from the administrator of each of the plurality of enterprises, the association data associating individuals in the subset of the plurality of groups with the capability to access the one or more services provided by each of the plurality of service providers based on the subset of security data; receiving a request to access a service of a target service provider from a computing device, the request comprising data including a user identifier of an individual of an enterprise of the plurality of enterprises and information regarding a target service provider in the common authorization management (CAM) service; in response to the received request, providing information indicative of whether the individual has an access right to the service of the target service provider; and redirecting the computing device to the target service provider with the information indicative of whether the individual has an access right to the service of the target service provider. - View Dependent Claims (14, 15, 16)
-
Specification