SYSTEMS AND METHODS FOR DETECTING AND MANAGING CLOUD CONFIGURATIONS
First Claim
1. A cloud configuration management method implemented in a cloud configuration management system communicatively coupled to one or more cloud nodes in a cloud system, the cloud configuration management method comprising:
- creating a plurality of golden configurations for each of a plurality of roles, wherein each of the one or more cloud nodes has one of the plurality of roles for operation in the cloud system;
defining metadata rules for each of the plurality of golden configurations;
performing a configuration analysis to audit the one or more cloud nodes using the metadata rules; and
providing results of the configuration analysis to determine misconfigurations of any of the one or more cloud nodes.
1 Assignment
0 Petitions
Accused Products
Abstract
A cloud configuration management method implemented in a cloud configuration management system communicatively coupled to one or more cloud nodes in a cloud system includes creating a plurality of golden configurations for each of a plurality of roles, wherein each of the one or more cloud nodes has one of the plurality of roles for operation in the cloud system; defining metadata rules for each of the plurality of golden configurations; performing a configuration analysis to audit the one or more cloud nodes using the metadata rules; and providing results of the configuration analysis to determine misconfiguration of any of the one or more cloud nodes.
34 Citations
19 Claims
-
1. A cloud configuration management method implemented in a cloud configuration management system communicatively coupled to one or more cloud nodes in a cloud system, the cloud configuration management method comprising:
-
creating a plurality of golden configurations for each of a plurality of roles, wherein each of the one or more cloud nodes has one of the plurality of roles for operation in the cloud system; defining metadata rules for each of the plurality of golden configurations; performing a configuration analysis to audit the one or more cloud nodes using the metadata rules; and providing results of the configuration analysis to determine misconfigurations of any of the one or more cloud nodes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A cloud configuration management system communicatively coupled to one or more cloud nodes in a cloud system, the cloud configuration management system comprising:
-
a network interface communicatively coupled to the one or more cloud nodes; a processor communicatively coupled to the network interface; and memory storing computer-executable instructions that, when executed, cause the processor to; create a plurality of golden configurations for each of a plurality of roles, wherein each of the one or more cloud nodes has one of the plurality of roles for operation in the cloud system; define metadata rules for each of the plurality of golden configurations; perform a configuration analysis to audit the one or more cloud nodes using the metadata rules; and provide results of the configuration analysis to determine misconfiguration of any of the one or more cloud nodes. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A cloud system with cloud configuration management implemented therein, the cloud system comprising:
-
a plurality of cloud nodes; and a cloud configuration management system communicatively coupled to the plurality of cloud nodes, wherein the cloud configuration management system comprises; a network interface communicatively coupled to the one or more cloud nodes; a processor communicatively coupled to the network interface; and memory storing computer-executable instructions that, when executed, cause the processor to; create a plurality of golden configurations for each of a plurality of roles, wherein each of the one or more cloud nodes has one of the plurality of roles for operation in the cloud system; define metadata rules for each of the plurality of golden configurations; perform a configuration analysis to audit the one or more cloud nodes using the metadata rules; and provide results of the configuration analysis to determine misconfiguration of any of the one or more cloud nodes.
-
Specification