IDENTITY MANAGEMENT SUITE
First Claim
1. A server platform hosting an integrated software-based identity management suite comprising:
- an administration console for domain administration;
an authentication services module for user authentication;
an activity intelligence engine for monitoring user activity;
an open-source-based virtual layer for mapping fields of a legacy user directory to fields within said server platform; and
an internal interface using an open communication protocol adapted to provide communication between said open-source-based virtual layer and at least said authentication services module within said server platform.
1 Assignment
0 Petitions
Accused Products
Abstract
A server platform hosting an integrated software-based identity management suite used in a system for authenticating users with respect to a legacy application. The identity management suite includes an administration console for domain administration, an authentication services module for user authentication, an activity intelligence engine for monitoring user activity, an open-source-based virtual layer for mapping fields of a legacy user directory to fields within the server platform, and an internal interface using an open communication protocol adapted to provide communication between the open-source-based virtual layer and at least the authentication services module within the server platform.
62 Citations
25 Claims
-
1. A server platform hosting an integrated software-based identity management suite comprising:
-
an administration console for domain administration; an authentication services module for user authentication; an activity intelligence engine for monitoring user activity; an open-source-based virtual layer for mapping fields of a legacy user directory to fields within said server platform; and an internal interface using an open communication protocol adapted to provide communication between said open-source-based virtual layer and at least said authentication services module within said server platform. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer readable medium having stored thereon an integrated software suit for identity management, said integrated software suite comprising:
-
an administration console for domain administration; an authentication services module for user authentication; an activity intelligence engine for monitoring user activity; an application program interface (API) capable of facilitating access to a legacy user directory; a virtual LDAP layer for mapping fields of said legacy user directory to defined fields within said software suit; and an internal LDAP communication protocol interface adapted to provide communication between said virtual LDAP layer and said authentication services module. - View Dependent Claims (11, 12)
-
-
13. A server platform hosting an integrated software-based identity management suite comprising:
-
means for providing domain administration services; means for providing authentication services; means for providing activity intelligence services; means for facilitating access to a legacy user directory; means for mapping legacy user directory fields to server platform fields; and means for communicating said server platform fields to said means for providing authentication services. - View Dependent Claims (14, 15)
-
-
16. A system providing identity management with respect to a legacy application, said system comprising:
-
a first server platform hosting an integrated software-based identity management suite; at least one administrator computer-based platform operationally interfacing to said first server platform; and a second server platform hosting a legacy application and operationally interfacing to said first server platform via a secure web-based connection. - View Dependent Claims (17, 18, 19, 20, 21)
-
-
22. A method to authenticate a user for use of a legacy application hosted on a legacy server, said method comprising:
-
sending an application request from a user browser to a legacy server of a service provider of a legacy application; said legacy server redirecting said application request to an identity management server via said user browser; said identity management server sending a user login form to said user browser in response to receiving said redirected application request; said user browser sending user login information to said identity management server in response to a user of said user browser filling out said user login form; said identity management server authenticating said user with respect to said legacy application in response to said user login information; said identity management server sending encoded security assertion information to said legacy server via said user browser in response to a successful authentication of said user; said legacy server validating said security assertion information; and said legacy server sending application data corresponding to said legacy application to said user browser in response to validating said security assertion information. - View Dependent Claims (23, 24, 25)
-
Specification