Local Computer Account Management at Domain Level
First Claim
Patent Images
1. A system comprising:
- a domain server having a domain database, said domain database comprising;
user metadata for a plurality of domain users, said user metadata comprising domain level permissions for each of said domain users;
device metadata for a plurality of local devices, said device metadata comprising local permission settings for said domain users;
a plurality of local devices, each of said local devices comprising;
a local security management database comprising permission settings for local users on said local device;
a local security management system configured to permit or deny access to local resources based on said permission settings in said local security management database; and
a security management updater configured to receive a set of local permission settings for said domain users for said local device, and update said local security management database with said local permission settings for each of said domain users for said local device.
2 Assignments
0 Petitions
Accused Products
Abstract
A domain level database containing domain user permission settings may contain local device permission settings for domain users. For each of the local devices attached to the domain, a client service may periodically query the domain database and receive local permission settings for individual domain users. The local permission settings may affect access and availability of certain local resources and actions to the domain users. The client service may update a locally maintained database that may be used by a local security management system to permit or deny access to local resources and local actions to individual users when those users are logged onto the local device.
-
Citations
20 Claims
-
1. A system comprising:
-
a domain server having a domain database, said domain database comprising; user metadata for a plurality of domain users, said user metadata comprising domain level permissions for each of said domain users; device metadata for a plurality of local devices, said device metadata comprising local permission settings for said domain users; a plurality of local devices, each of said local devices comprising; a local security management database comprising permission settings for local users on said local device; a local security management system configured to permit or deny access to local resources based on said permission settings in said local security management database; and a security management updater configured to receive a set of local permission settings for said domain users for said local device, and update said local security management database with said local permission settings for each of said domain users for said local device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method performed on a local device, said method comprising:
-
on a predetermined frequency, performing a query to a domain database, said domain database comprising; user metadata for a plurality of domain users, said user metadata comprising domain level permissions for each of a first plurality of domain users; device metadata for said local device, said device metadata comprising local permission settings for a second plurality of said domain users; receiving a set of local permission settings for each of said second plurality of said domain users; for each of said second plurality of said domain users, storing said set of local permission settings in a local security database; and permitting one of said second plurality of said domain users access to local device resources according to said local permission settings. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A method comprising:
-
updating a database, said database comprising; user metadata for a plurality of domain users, said user metadata comprising domain level permissions for each of a first plurality of domain users; device metadata for a first plurality of local devices, said device metadata comprising local permission settings for said domain users; and said updating comprising changing said local permission settings for a subset of said domain users for a second plurality of said local devices; and for each of said second plurality of local devices, receiving a query and responding to said query with said local permission settings for said domain users, said local permission settings being used by said local devices to update a local permission database and to change access permissions to local resources for said domain users on said local device. - View Dependent Claims (19, 20)
-
Specification