AUTOMATIC DIRECTORY JOIN FOR VIRTUAL MACHINE INSTANCES
First Claim
Patent Images
1. A computer-implemented method for fulfilling a request to provision a virtual machine instance and, once provisioned, joining the virtual machine instance to a directory, comprising:
- under the control of one or more computer systems configured with executable instructions,receiving, at a virtual computer system service, network address information associated with the directory to enable the virtual machine instance to be provisioned and joined to the directory;
provisioning the virtual machine instance;
transmitting, to a managed directory service, a request for a set of temporary credentials for joining the virtual machine instance to the directory; and
receiving the set of temporary credentials from the managed directory service;
wherein the virtual machine instance is configured to utilize the network address information to establish a connection with the directory and utilize the set of temporary credentials to join the virtual machine instance to the directory.
1 Assignment
0 Petitions
Accused Products
Abstract
A customer utilizes an interface provided by a virtual computer system service to provision a virtual machine instance and join this instance to a directory. The interface may have previously obtained the domain name and the Internet Protocol addresses for one or more directories available to the customer for joining the virtual machine instance. The virtual computer system service may communicate with a managed directory service to obtain a set of temporary credentials that may be used to transmit a request to the directory to allow joining of the virtual machine instance. Upon provisioning of the instance, an agent operating within the instance may be configured to obtain the domain name and Internet Protocol addresses for the directory to establish a connection with the directory. The agent may also be configured to obtain the set of temporary credentials to transmit a request to the directory for joining of the instance.
-
Citations
22 Claims
-
1. A computer-implemented method for fulfilling a request to provision a virtual machine instance and, once provisioned, joining the virtual machine instance to a directory, comprising:
under the control of one or more computer systems configured with executable instructions, receiving, at a virtual computer system service, network address information associated with the directory to enable the virtual machine instance to be provisioned and joined to the directory; provisioning the virtual machine instance; transmitting, to a managed directory service, a request for a set of temporary credentials for joining the virtual machine instance to the directory; and receiving the set of temporary credentials from the managed directory service; wherein the virtual machine instance is configured to utilize the network address information to establish a connection with the directory and utilize the set of temporary credentials to join the virtual machine instance to the directory. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A computer system, comprising:
-
one or more processors; and memory having collectively stored therein instructions that, when executed by the computer system, cause the computer system to; receive a first request for network address information for one or more directories of a set of directories, the network address information usable to establish a connection to each of the one or more directories of the set of directories; transmit, to a computer system instance, the network address information for each of the one or more directories of the set of directories; receive a second request from the computer system instance for a set of credentials usable to join the computer system instance to a directory selected from the set of directories, the second request comprising identification of the selected directory; and transmit, to the computer system instance, the set of credentials usable to join the computer system instance to the selected directory. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable storage medium having collectively stored thereon executable instructions that, when executed by one or more processors of a computer system, cause the computer system to at least:
-
receive a first web service request for network address information associated with a directory to enable a computer system instance to be provisioned and joined to the directory; provision the computer system instance; transmit, to a managed directory service, a second web service request for credential information for joining the computer system instance to the directory; receive, from the managed directory service, the network address information associated with the directory and the credential information for joining the computer system instance to the directory; and provide the network address information for the directory and the credential information for joining the computer system instance to the directory. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeAmazon Technologies, Inc. (Amazon.com, Inc.)
-
Original AssigneeAmazon Technologies, Inc. (Amazon.com, Inc.)
-
InventorsShah, Shon Kiran, Mehta, Gaurang Pankaj, Rizzo, Thomas Christopher, Rao, Guruprakash Bangalore
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current1/1
-
CPC Class CodesG06F 2221/2113 Multi-level security, e.g. ...G06F 9/45533 Hypervisors; Virtual machin...H04L 41/5096 wherein the managed service...H04L 63/08 for authentication of entit...H04L 63/10 for controlling access to d...
