IDENTITY MIGRATION SYSTEM APPARATUS AND METHOD
First Claim
1. A method to centralize identity management, the method comprising:
- retrieving locally managed identities from at least one server;
merging the locally managed identities with centrally managed identities according to a plurality of rules;
creating an identity map that maps the locally managed identities to the centrally managed identities;
communicating the identity map to the at least one server; and
reassigning resources of the locally managed identities to the centrally managed identities in accordance with the identity map.
26 Assignments
0 Petitions
Accused Products
Abstract
An identity migration agent operating on a local identity server and/or user computer retrieves locally managed identities for an identity migration server. The migration server merges the locally managed identities with centrally managed identities according to a plurality of rules, and creates an identity map that maps the locally managed identities to the centrally managed identities. The migration server communicates the identity map to the identity migration agent that reassigns resources of the locally managed identities to the centrally managed identities in accordance with the identity map. In certain embodiments, the migration server performs identity conflict checks and directs resource assignment rollback operations in response to a user request.
118 Citations
19 Claims
-
1. A method to centralize identity management, the method comprising:
-
retrieving locally managed identities from at least one server; merging the locally managed identities with centrally managed identities according to a plurality of rules; creating an identity map that maps the locally managed identities to the centrally managed identities; communicating the identity map to the at least one server; and reassigning resources of the locally managed identities to the centrally managed identities in accordance with the identity map. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An apparatus to centralize identity management, the apparatus comprising:
-
a communication module configured to receive locally managed identities from at least one migration agent; an identity merge module configured to merge locally managed identities with centrally managed identities according to a plurality of rules; an identity map module configured to create an identity map that maps the locally managed identities to the centrally managed identities; and the communication module configured to communicate the identity map to the at least one migration agent. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An apparatus to facilitate centralized identity management, the apparatus comprising:
-
a communication module configured to receive a request for locally managed identities; an identity migration agent configured to retrieve the locally managed identities in accordance with the request; the communication module further configured to communicate the locally managed identities to an identity migration server; the communication module further configured to receive an identity map from the identity migration server and store the identity map in an identity map data store, the identity map thereof maps the locally managed identities to centrally managed identities; the identity migration agent further configured to reassign resources of the locally managed identities to the centrally managed identities in accordance with the identity map; and an identification module configured to provide user identification services via the identity map for locally managed identities as though the locally managed identities were centrally managed identities.
-
-
17. A system to centralize identity management, the system comprising:
-
a centralized identity server configured to store identity information for a plurality of users; and an identity migration agent configured to retrieve locally managed identities and communicate the locally managed identities to an identity migration server; the identity migration server configured to; receive the locally managed identities from the identity migration agent; merge the locally managed identities with centrally managed identities according to a plurality of rules; create an identity map that maps the locally managed identities to the centrally managed identities; and communicate the identity map to the identity migration agent; the identity migration agent further configured to reassign resources of the locally managed identities to the centrally managed identities in accordance with the identity map. - View Dependent Claims (18)
-
-
19. A computer readable medium tangibly embodying a program of machine-readable instructions executable by a digital processing apparatus to perform operations to centralize identity management, the operations comprising:
-
retrieving locally managed identities from at least one server; merging the locally managed identities with centrally managed identities according to a plurality of rules; creating an identity map that maps the locally managed identities to the centrally managed identities; communicating the identity map to the at least one server; and reassigning resources of the locally managed identities to the centrally managed identities in accordance with the identity map.
-
Specification