Applying recursive policy for scoping of administration of policy based networking
First Claim
Patent Images
1. A method of delegating authority to control network resources, comprising:
- (a) providing parameters associated with network resources; and
(b) creating at least one rule for delegating a scope of authority to create at least one policy-based rule for controlling access and usage of network resources, the at least one rule for delegating comprising at least one of the parameters and an identifier designating to whom the scope of authority is delegated, the at least one policy-based rule comprising at least one of the parameters.
1 Assignment
0 Petitions
Accused Products
Abstract
A network super-administrator can delegate to one or more network sub-administrators a scope of authority to create policy-based rules used to control access and usage of network resources. The super-administrator can define the delegated scope of authority through a set of policy-based rules and can indicate to which sub-administrator the scope of authority is delegated through an identifier associated with the particular sub-administrator.
-
Citations
16 Claims
-
1. A method of delegating authority to control network resources, comprising:
-
(a) providing parameters associated with network resources; and
(b) creating at least one rule for delegating a scope of authority to create at least one policy-based rule for controlling access and usage of network resources, the at least one rule for delegating comprising at least one of the parameters and an identifier designating to whom the scope of authority is delegated, the at least one policy-based rule comprising at least one of the parameters. - View Dependent Claims (2, 3, 4)
-
-
5. A method of controlling network performance, comprising:
-
(a) providing parameters associated with network resources;
(b) creating at least one rule for delegating a scope of authority to create at least one policy-based rule for controlling access and usage of network resources, the at least one rule for delegating comprising at least one of the parameters and an identifier designating to whom the scope of authority is delegated, the at least one policy-based rule comprising at least one of the parameters;
(c) determining if a created one of the policy-based rules is within the delegated scope of authority; and
(d) modifying the created one of the policy-based rules if the created one of the policy-based rules is not within the delegated scope of authority such that the created one of the policy-based rules becomes within the delegated scope of authority. - View Dependent Claims (6, 7, 8, 9, 10)
-
-
11. A system for controlling network performance, comprising:
-
(a) a module for providing parameters associated with network resources;
(b) a module for creating at least one rule for delegating a scope of authority to create at least one policy-based rule for controlling access and usage of network resources, the at least one rule for delegating comprising at least one of the parameters and an identifier designating to whom the scope of authority is delegated, the at least one policy-based rule comprising at least on of the parameters;
(c) a module for determining if a created one of the policy-based rules is within the delegated scope of authority; and
(d) a module for modifying the created one of the policy-based rules if the created one of the policy based rules is not within the delegated scope of authority such that the created one of the policy-based rules becomes within the delegated scope of authority. - View Dependent Claims (12, 13, 14, 15, 16)
-
Specification