MANAGING USER ACCESS ENTITLEMENTS TO INFORMATION TECHNOLOGY RESOURCES
First Claim
1. A computer implemented method for provisioning user access to a business application within a framework of an identity management system, the computer implemented method comprising:
- providing an interface layer to map respective attributes, permissions, and resource accounts in a data repository needed to represent access to business applications via a managed service in the identity management system;
defining user entitlements on a user account associated with the managed service; and
provisioning user access to the business applications via the managed service in the identity management system upon user request.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer implemented method, data processing system, and computer program product for logical management and provisioning of business applications within the framework of an identity management system. The illustrative embodiments providing an interface layer to map respective attributes, permissions, and resource accounts in a data repository needed to represent access to business applications via a managed service in the identity management system. The illustrative embodiments define user entitlements on a user account associated with the managed service. The illustrative embodiments provision user access to the business applications via the managed service in the identity management system upon user request.
191 Citations
20 Claims
-
1. A computer implemented method for provisioning user access to a business application within a framework of an identity management system, the computer implemented method comprising:
-
providing an interface layer to map respective attributes, permissions, and resource accounts in a data repository needed to represent access to business applications via a managed service in the identity management system; defining user entitlements on a user account associated with the managed service; and provisioning user access to the business applications via the managed service in the identity management system upon user request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A data processing system for provisioning user access to a business application within a framework of an identity management system, the data processing system comprising:
-
a bus; a storage device connected to the bus, wherein the storage device contains computer usable code; at least one managed device connected to the bus; a communications unit connected to the bus; and a processing unit connected to the bus, wherein the processing unit executes the computer usable code to provide an interface layer to map respective attributes, permissions, and resource accounts in a data repository needed to represent access to business applications via a managed service in the identity management system;
define user entitlements on a user account associated with the managed service; and
provision user access to the business applications via the managed service in the identity management system upon user request.
-
-
18. A computer program product for provisioning user access to a business application within a framework of an identity management system, the computer program product comprising:
-
a computer usable medium having computer usable program code tangibly embodied thereon, the computer usable program code comprising; computer usable program code for providing an interface layer to map respective attributes, permissions, and resource accounts in a data repository needed to represent access to business applications via a managed service in the identity management system; computer usable program code for defining user entitlements on a user account associated with the managed service; and computer usable program code for provisioning user access to the business applications via the managed service in the identity management system upon user request. - View Dependent Claims (19, 20)
-
Specification