Privilege restriction enforcement in a distributed system
First Claim
1. A method for enforcing an administrative privilege in a distributed system, said method comprising:
- receiving an administrative request to administer a remote system in the distributed system in accordance with at least one administrative privilege;
determining if the at least one administrative privilege is authorized; and
if the at least one administrative privilege is authorized, granting the administrative request.
2 Assignments
0 Petitions
Accused Products
Abstract
Remote administrative privileges in a distributed system are disabled by default. To administer a remote system, express action is taken to elevate a user status to obtain remote administrative privileges. When local and remote systems communicate, information pertaining to the status of the logged on user is included in the communications. If the user wishes to legitimately administer a remote system, the user provides an explicit request. The request is processed. If the user is configured as an administrator of the remote system and the request contains an indication that the user'"'"'s administrative status has been elevated, an authorization token is generated. The authorization token is utilized by the remote system to allow the user to administer the remote system.
-
Citations
19 Claims
-
1. A method for enforcing an administrative privilege in a distributed system, said method comprising:
-
receiving an administrative request to administer a remote system in the distributed system in accordance with at least one administrative privilege; determining if the at least one administrative privilege is authorized; and if the at least one administrative privilege is authorized, granting the administrative request. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-readable medium having computer-executable instructions store thereon for enforcing an administrative privilege in a distributed system, comprising:
-
receiving an authentication payload comprising at least one administrative privilege associated with a user and a remote system in the distributed system; determining if the at least one administrative privilege is authorized; and if the at least one administrative privilege is authorized, permitting administration of the remote system in accordance with the authorized at least one administrative privilege. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A system for enforcing an administrative privilege, said system comprising:
-
an input/output portion for; receiving an administrative request to administer the system in accordance with at least one administrative privilege; and a processor portion for; determining if the at least one administrative privilege is authorized; and if the at least one administrative privilege is authorized, permitting administration of the system in accordance with the authorized at least one administrative privilege. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification