DISTRIBUTION, TRACKING, MANAGEMENT, REPORTING AND DEPLOYMENT OF CLOUD RESOURCES WITHIN AN ENTERPRISE
First Claim
1. A computer implemented method of managing cloud resources provided by a service provider computing system to a user computing device via a computer network, said method comprising steps of:
- providing a client tool on the user computing device, said client tool comprising executable software, said computing device including a user input device,providing a management server in network communication with the client tool, said management server comprising a computing system communicatively coupled to the client tool,providing a database addressable by the management server, the database being stored on a mass storage device and including a stored end user identification and a stored cloud resource identification associated with the stored end user identification,the client tool intercepting a first request from the user computing device to the service provider computing system, said first request being generated from a first user input from a first user using the user input device,the client tool sending the intercepted first request to the management server via network communication,the intercepted first request including a first user identification and a first cloud resource identification,the management server retrieving from the database the stored end user identification and stored cloud resource identification,the management server determining if the stored end user identification is the same as the first user identification in the intercepted first request,the management server determining if the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request,if the management server determines that the stored end user identification is the same as the first user identification and the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request, then the management server sends an access granted reply to the client tool, andif the management server determines that the stored end user identification is not the same as the first user identification, then the management server sends an access denied reply to the client tool,if the management server determines that the stored cloud resource identification is not the same as the first cloud resource identification in the intercepted first request, then the management server sends an access denied reply to the client tool,if the client tool receives an access granted reply from the management server in response to the first request, then the first client tool allows the user computing device to send the first request to the service provider computer system, andif the client tool receives an access denied reply from the management server in response to the first request, then the first client tool preventing the user computing device from sending the first request to the service provider computer system.
0 Assignments
0 Petitions
Accused Products
Abstract
A cloud services management system (CMS) provides functional modules to help businesses manage cloud services by identifying users, business units and projects and assign levels of access to cloud services to each. Data pertaining to the foregoing is stored in a database. Using the CMS, an enterprise manages user privileges, distributes and reassigns modules to enable controlled distribution and re-assignment of cloud resources across an enterprise, monitors the consumption of cloud resources by an enterprise, geography, business unit, project and user, and provisions resources with time limits.
-
Citations
20 Claims
-
1. A computer implemented method of managing cloud resources provided by a service provider computing system to a user computing device via a computer network, said method comprising steps of:
-
providing a client tool on the user computing device, said client tool comprising executable software, said computing device including a user input device, providing a management server in network communication with the client tool, said management server comprising a computing system communicatively coupled to the client tool, providing a database addressable by the management server, the database being stored on a mass storage device and including a stored end user identification and a stored cloud resource identification associated with the stored end user identification, the client tool intercepting a first request from the user computing device to the service provider computing system, said first request being generated from a first user input from a first user using the user input device, the client tool sending the intercepted first request to the management server via network communication, the intercepted first request including a first user identification and a first cloud resource identification, the management server retrieving from the database the stored end user identification and stored cloud resource identification, the management server determining if the stored end user identification is the same as the first user identification in the intercepted first request, the management server determining if the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request, if the management server determines that the stored end user identification is the same as the first user identification and the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request, then the management server sends an access granted reply to the client tool, and if the management server determines that the stored end user identification is not the same as the first user identification, then the management server sends an access denied reply to the client tool, if the management server determines that the stored cloud resource identification is not the same as the first cloud resource identification in the intercepted first request, then the management server sends an access denied reply to the client tool, if the client tool receives an access granted reply from the management server in response to the first request, then the first client tool allows the user computing device to send the first request to the service provider computer system, and if the client tool receives an access denied reply from the management server in response to the first request, then the first client tool preventing the user computing device from sending the first request to the service provider computer system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for managing cloud resources provided by a service provider computing system to a user computing device via a computer network, said system comprising:
-
a client tool on the user computing device, said client tool comprising executable software, a management server in network communication with the client tool, said management server comprising a computing system communicatively coupled to the client tool, a database addressable by the management server, the database being stored on a mass storage device and including a stored end user identification and a stored cloud resource identification associated with the stored end user identification, the client tool intercepting a first request from the user computing device to the service provider computing system, the client tool sending the intercepted first request to the management server via network communication, the intercepted first request including a first user identification and a first cloud resource identification, the management server retrieving from the database the stored end user identification and stored cloud resource identification, the management server determining if the stored end user identification is the same as the first user identification in the intercepted first request, the management server determining if the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request, if the management server determines that the stored end user identification is the same as the first user identification and the stored cloud resource identification is the same as the first cloud resource identification in the intercepted first request, then the management server sends an access granted reply to the client tool, and if the management server determines that the stored end user identification is not the same as the first user identification, then the management server sends an access denied reply to the client tool, if the management server determines that the stored cloud resource identification is not the same as the first cloud resource identification in the intercepted first request, then the management server sends an access denied reply to the client tool, if the client tool receives an access granted reply from the management server in response to the first request, then the first client tool allowing the user computing device to send the first request to the service provider computer system, and if the client tool receives an access denied reply from the management server in response to the first request, then the first client tool preventing the user computing device from sending the first request to the service provider computer system. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification