MANAGING CHANGE EVENTS FOR DEVICES IN AN ENTERPRISE SYSTEM
First Claim
1. A method comprising:
- determining an action to be performed on a plurality of remote devices;
adding, on a queue, a first change event entry for each remote device in a first set of remote devices of the plurality of remote devices and a second change event entry for each remote device in a second set of remote devices of the plurality of remote devices, thereby adding multiple change event entries to the queue, wherein each remote device in the first set of remote devices is different from each remote device in the second set of remote devices, and wherein each of the first change event entry and the second change event entry includes information about a change event for a change in access to a computing system for each remote device in the first set of remote devices and each remote device in the second set of remote devices;
assigning, from the queue to a first computing node, a first change event entry corresponding to the first set of remote devices, wherein the first change event entry includes first information identifying each remote device in the first set of remote devices to be notified about the change event;
instantiating a first metadata object for the first change event entry and storing first metadata identifying each of the first set of remote devices in the first metadata object;
instructing, from the first computing node, the action to be taken on each of the first set of remote devices based on the first metadata object, wherein instructing the action to be taken on each of the first set of remote devices causes each remote device in the first set of remote devices to adjust access to the computing system based on the change event indicated by the first change event entry corresponding to the first metadata object;
assigning, from the queue to a second computing node, a second change event entry corresponding to the second set of remote devices, wherein the second change event entry includes second information identifying each remote device in the second set of remote devices to be notified about the change event;
instantiating a second metadata object for the second change event entry and storing second metadata identifying each of the second set of remote devices in the second metadata object; and
instructing, from the second computing node, the action to be taken on each of the second set of remote devices based on the second metadata object, wherein instructing the action to be taken on each of the second set of remote devices causes each remote device in the second set of remote devices to adjust access to the computing system based on the change event indicated by the second change event entry corresponding to the second metadata object.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques are disclosed for communicating to remote devices information about change events related to changes in access to an enterprise system. A device access management system may facilitate communication about a change event to the remote devices. Information about a change event may be stored in a change event object based on the type of change event (e.g., a policy change, an application change, and a settings change). A change event queue may persistently store information corresponding to change events. One or more computing nodes may be scheduled to execute an action process for each change event based on the type of the change event. A computing node may communicate information (e.g., an instruction to implement adjust access) about a change event to remote devices. A change event may persist on the queue until all remote devices are notified about the change event.
34 Citations
20 Claims
-
1. A method comprising:
-
determining an action to be performed on a plurality of remote devices; adding, on a queue, a first change event entry for each remote device in a first set of remote devices of the plurality of remote devices and a second change event entry for each remote device in a second set of remote devices of the plurality of remote devices, thereby adding multiple change event entries to the queue, wherein each remote device in the first set of remote devices is different from each remote device in the second set of remote devices, and wherein each of the first change event entry and the second change event entry includes information about a change event for a change in access to a computing system for each remote device in the first set of remote devices and each remote device in the second set of remote devices; assigning, from the queue to a first computing node, a first change event entry corresponding to the first set of remote devices, wherein the first change event entry includes first information identifying each remote device in the first set of remote devices to be notified about the change event; instantiating a first metadata object for the first change event entry and storing first metadata identifying each of the first set of remote devices in the first metadata object; instructing, from the first computing node, the action to be taken on each of the first set of remote devices based on the first metadata object, wherein instructing the action to be taken on each of the first set of remote devices causes each remote device in the first set of remote devices to adjust access to the computing system based on the change event indicated by the first change event entry corresponding to the first metadata object; assigning, from the queue to a second computing node, a second change event entry corresponding to the second set of remote devices, wherein the second change event entry includes second information identifying each remote device in the second set of remote devices to be notified about the change event; instantiating a second metadata object for the second change event entry and storing second metadata identifying each of the second set of remote devices in the second metadata object; and instructing, from the second computing node, the action to be taken on each of the second set of remote devices based on the second metadata object, wherein instructing the action to be taken on each of the second set of remote devices causes each remote device in the second set of remote devices to adjust access to the computing system based on the change event indicated by the second change event entry corresponding to the second metadata object. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system comprising:
-
one or more processors; and a memory storing one or more instructions which, upon execution by the one or more processors, causes the one or more processors to; determine an action to be performed on a plurality of remote devices; add, on a queue, a first change event entry for each remote device in a first set of remote devices of the plurality of remote devices and a second change event entry for each remote device in a second set of remote devices of the plurality of remote devices, thereby adding multiple change event entries to the queue, wherein each remote device in the first set of remote devices is different from each remote device in the second set of remote devices, and wherein each of the first change event entry and the second change event entry includes information about a change event for a change in access to a computing system for each remote device in the first set of remote devices and each remote device in the second set of remote devices; assign, from the queue to a first computing node, a first change event entry corresponding to the first set of remote devices, wherein the first change event entry includes first information identifying each remote device in the first set of remote devices to be notified about the change event; instantiate a first metadata object for the first change event entry and storing first metadata identifying each of the first set of remote devices in the first metadata object; instruct, from the first computing node, the action to be taken on each of the first set of remote devices based on the first metadata object, wherein instructing the action to be taken on each of the first set of remote devices causes each remote device in the first set of remote devices to adjust access to the computing system based on the change event indicated by the first change event entry corresponding to the first metadata object; assign, from the queue to a second computing node, a second change event entry corresponding to the second set of remote devices, wherein the second change event entry includes second information identifying each remote device in the second set of remote devices to be notified about the change event; instantiate a second metadata object for the second change event entry and storing second metadata identifying each of the second set of remote devices in the second metadata object; and instruct, from the second computing node, the action to be taken on each of the second set of remote devices based on the second metadata object, wherein instructing the action to be taken on each of the second set of remote devices causes each remote device in the second set of remote devices to adjust access to the computing system based on the change event indicated by the second change event entry corresponding to the second metadata object. - View Dependent Claims (17, 18)
-
-
19. A non-transitory computer-readable medium comprising one or more instructions stored thereon, that upon execution by one or more processors, causes the one or more processors to:
-
determine an action to be performed on a plurality of remote devices; add, on a queue, a first change event entry for each remote device in a first set of remote devices of the plurality of remote devices and a second change event entry for each remote device in a second set of remote devices of the plurality of remote devices, thereby adding multiple change event entries to the queue, wherein each remote device in the first set of remote devices is different from each remote device in the second set of remote devices, and wherein each of the first change event entry and the second change event entry includes information about a change event for a change in access to a computing system for each remote device in the first set of remote devices and each remote device in the second set of remote devices; assign, from the queue to a first computing node, a first change event entry corresponding to the first set of remote devices, wherein the first change event entry includes first information identifying each remote device in the first set of remote devices to be notified about the change event; instantiate a first metadata object for the first change event entry and storing first metadata identifying each of the first set of remote devices in the first metadata object; instruct, from the first computing node, the action to be taken on each of the first set of remote devices based on the first metadata object, wherein instructing the action to be taken on each of the first set of remote devices causes each remote device in the first set of remote devices to adjust access to the computing system based on the change event indicated by the first change event entry corresponding to the first metadata object; assign, from the queue to a second computing node, a second change event entry corresponding to the second set of remote devices, wherein the second change event entry includes second information identifying each remote device in the second set of remote devices to be notified about the change event; instantiate a second metadata object for the second change event entry and storing second metadata identifying each of the second set of remote devices in the second metadata object; and instruct, from the second computing node, the action to be taken on each of the second set of remote devices based on the second metadata object, wherein instructing the action to be taken on each of the second set of remote devices causes each remote device in the second set of remote devices to adjust access to the computing system based on the change event indicated by the second change event entry corresponding to the second metadata object. - View Dependent Claims (20)
-
Specification