Method and system for authenticating and auditing access by a user to non-natively secured applications
First Claim
1. For use in cooperation with an operating system having a native security system, a method for authenticating and auditing access by a user to non-natively secured applications, comprising:
- assigning a profile to the user to define the access rights to the non-natively secured applications;
providing at least one datastore in communication with the operating system for storing the user'"'"'s profile and account data relating to each of the non-natively secured applications, including an access control list defining authorized users and a set of pooled accounts authenticated for access to the respective non-natively secured application;
generating a call from a launcher application to the native security system or an extension thereof in response to a request by the user to access a selected non-natively secured application;
determining if the user is permitted access to the selected non-natively secured application;
requesting an account from the set of pooled accounts in response to a determination that the user is permitted access to the selected non-natively secured application;
determining if an account is available from the set of pooled accounts;
assigning an account to the user in response to a determination that an account is available from the set of pooled accounts, the assigned account operative as the user'"'"'s virtual identity to the selected non-natively secured application;
forwarding account data to the launcher application; and
generating an audit record to map the user to the assigned account.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for authenticating access by a user to non-natively secured applications intended for use in cooperation with an operating system having a native security system. A profile is assigned to the user which defines the user'"'"'s access rights to the non-natively secured applications. At least one datastore is provided in communication with the operating system for storing the user'"'"'s profile relating to each of the non-natively secured applications, including an access control list defining authorized users and a set of pooled accounts authenticated for access to the respective non-natively secured application. The user'"'"'s profile is compared with the access control list for the selected non-natively secured application to determine if a user is valid for the request. If the user is valid for the request, an available account is assigned to the user as the user'"'"'s virtual identity, account data is forwarded to a launcher application, and a audit record is written to map the user to the assigned account and thus the non-natively secured application.
211 Citations
20 Claims
-
1. For use in cooperation with an operating system having a native security system, a method for authenticating and auditing access by a user to non-natively secured applications, comprising:
-
assigning a profile to the user to define the access rights to the non-natively secured applications; providing at least one datastore in communication with the operating system for storing the user'"'"'s profile and account data relating to each of the non-natively secured applications, including an access control list defining authorized users and a set of pooled accounts authenticated for access to the respective non-natively secured application; generating a call from a launcher application to the native security system or an extension thereof in response to a request by the user to access a selected non-natively secured application; determining if the user is permitted access to the selected non-natively secured application; requesting an account from the set of pooled accounts in response to a determination that the user is permitted access to the selected non-natively secured application; determining if an account is available from the set of pooled accounts; assigning an account to the user in response to a determination that an account is available from the set of pooled accounts, the assigned account operative as the user'"'"'s virtual identity to the selected non-natively secured application; forwarding account data to the launcher application; and generating an audit record to map the user to the assigned account. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. For use in cooperation with an operating system having a native security system, a system for authenticating and auditing access by a user to non-natively secured applications, comprising:
-
at least one datastore in communication with the operating system for storing; (a) a profile assigned to the user to define the user'"'"'s access rights to the non-natively secured applications, (b) account data relating to each of the non-natively secured applications, including an access control list defining authorized users, and (c) a set of pooled accounts authenticated for access to the respective non-natively secured application; whereby the native security system is operative to; (a) request an account from the set of pooled accounts in response to a determination that the user is permitted access to a selected non-natively secured application; (b) determine if an account is available from the set of pooled accounts; (c) assign an account to the user in response to a determination that an account is available from the set of pooled accounts, the assigned account operative as the user'"'"'s virtual identity to the selected non-natively secured application; and (d) generate an audit record to map the user to the assigned account. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification