Control of access to a networked system
First Claim
1. A data processing system connectable over a network to a plurality of computers, wherein said data processing system has a plurality of authorized users, the data processing system comprising:
- means for restricting user access to the data processing system, said means for restricting access including means for performing a user authentication procedure in which, at logon, a user'"'"'s identity is compared with a list of said plurality of authorized users;
a system-wide profile referenced by all users of the data processing system at logon; and
means for temporarily preventing access to the data processing system by a particular user among said plurality of authorized users, wherein said means for temporarily preventing access permits a privileged user among said plurality of authorized users to create a list of temporarily unauthorized users including said particular user, said list of temporarily unauthorized users being referenced by the system-wide profile at logon, wherein the means for temporarily preventing access includes means for logging off users already logged on to the data processing system who are listed within said list of temporarily unauthorized users.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and data processing system are disclosed for controlling the access of a plurality users to a computer system connectable over a network to a plurality of computers. The data processing system has facilities for restricting user access to the data processing system which includes a user authentication procedure in which at logon a user'"'"'s identity is compared with a list of authorized users. In addition, the data processing system has a system-wide profile referenced by all users of the system at logon and temporary access control facilities for temporarily preventing access to the system by a normally authorized user or users. The temporary access control facilities allow a privileged user of the computer system to create a list of temporarily unauthorized users that is referenced by the system-wide profile at logon.
153 Citations
17 Claims
-
1. A data processing system connectable over a network to a plurality of computers, wherein said data processing system has a plurality of authorized users, the data processing system comprising:
-
means for restricting user access to the data processing system, said means for restricting access including means for performing a user authentication procedure in which, at logon, a user'"'"'s identity is compared with a list of said plurality of authorized users; a system-wide profile referenced by all users of the data processing system at logon; and means for temporarily preventing access to the data processing system by a particular user among said plurality of authorized users, wherein said means for temporarily preventing access permits a privileged user among said plurality of authorized users to create a list of temporarily unauthorized users including said particular user, said list of temporarily unauthorized users being referenced by the system-wide profile at logon, wherein the means for temporarily preventing access includes means for logging off users already logged on to the data processing system who are listed within said list of temporarily unauthorized users. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 17)
-
-
12. A method of temporarily preventing access to a data processing system connectable over a network to a plurality of computers, said data processing system having means for restricting user access to the data processing system, wherein said means for restricting access performs a user authentication procedure in which, at logon, the user'"'"'s identity is compared to a list of a plurality of authorized users, said means for restricting access further having a system-wide profile referenced by all users of the data processing system at logon, the method comprising the steps of:
-
referencing a list of temporarily unauthorized users from the system-wide profile; denying access to said data processing system to a user listed within said list of temporarily unauthorized users; and logging off users already logged on to the data processing system who are listed within said list of temporarily unauthorized users. - View Dependent Claims (13, 14, 15)
-
-
16. In a data processing system connectable over a network to a plurality of computers, the improvement comprising:
temporary access control facilitation means for temporarily disallowing a user access to the system, wherein said temporary access control facilitation means includes; a list of authorized users to be temporarily unauthorized to logon to said data processing system; means for restricting access to the data processing system for users on said list; and means for logging off users already logged on to the data processing system who are listed within said list of temporarily unauthorized users.
Specification