Dynamic rights assignment apparatus and method using network directory services
First Claim
1. An apparatus for dynamically managing file rights using a directory services system, the apparatus comprising:
- a network comprising interconnected computers;
a processor in the network for executing executable data structures;
a memory device operably connected to the processor for storing the executable data structures and operational data structures associated therewith, the executable and operational data structures comprising;
a directory services system for storing and managing directory services objects and relationships there between;
a resource object, of the directory services objects, corresponding to a resource selectively available over the network in accordance with file rights;
the resource object, further comprising a rights attribute for defining selected file rights associated with the resource and selected from the file rights; and
a consumer object, of the directory services objects, corresponding to an entity for using the resource in accordance with the selected file rights.
3 Assignments
0 Petitions
Accused Products
Abstract
A directory services system includes a resource object, such as an application object for accessing an actual resource associated with the resource object. Rights attributes of the resource object reflects information for controlling rights of a user (or entity) to access the actual resource. The rights attributes may include criteria for distribution. The rights attributes may be used to rapidly, dynamically, remotely, and easily define and control access to available instances of a resource object based on certain criteria, such as organization, membership, etc. A utility (snap-in) module may be relied upon to manage the values of the attribute. Application programming interfaces (executables) in a dynamically linked library may be provided to "consume" (use) the attributes in the resource objects stored in directory services database.
-
Citations
20 Claims
-
1. An apparatus for dynamically managing file rights using a directory services system, the apparatus comprising:
-
a network comprising interconnected computers; a processor in the network for executing executable data structures; a memory device operably connected to the processor for storing the executable data structures and operational data structures associated therewith, the executable and operational data structures comprising; a directory services system for storing and managing directory services objects and relationships there between; a resource object, of the directory services objects, corresponding to a resource selectively available over the network in accordance with file rights; the resource object, further comprising a rights attribute for defining selected file rights associated with the resource and selected from the file rights; and a consumer object, of the directory services objects, corresponding to an entity for using the resource in accordance with the selected file rights. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus for managing file rights in a computer network having at least one processor and a memory device operably connected thereto for storing executable data structures and operational data structures associated therewith, the executable and operational data structures comprising:
-
a directory services system storing and managing resource objects, consumer objects, and links there between; a plurality resource objects, each corresponding to a resource providing a function to nodes connected to the network; a resource object of the plurality of resource objects, comprising a file rights attribute; a consumer object of the consumer objects in the directory services system; a rights utility, executable by the processor to manage the values of the rights attributes to reflect access rights available with respect to the resource corresponding to the resource object; and a consuming executable, executable to use the rights attribute to link the consumer object to the resource object and to provide the access rights thereto for the consumer object.
-
-
12. A method for managing file rights over a network, the method comprising:
-
providing a directory services system for managing and relating objects; providing, in the directory services system, a resource object corresponding to a resource available over the network; providing, in the directory services system, a consumer object corresponding to a node in the network for using the resource; and providing a rights attribute in the resource object for defining rights available in association with the resource. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification