System and method for provisioning resources to users based on roles, organizational information, attributes and third-party information or authorizations

US 6,985,955 B2
Filed: 01/29/2001
Issued: 01/10/2006
Est. Priority Date: 01/29/2001
Status: Expired due to Fees

First Claim

Patent Images

1. A method for provisioning users with resources, the method comprising the steps of:

establishing a set of attributes, organizational information, and user roles;

defining a plurality of resource provisioning policies based on selected attributes, organizational information, and user roles;

receiving attribute information, organizational information, and user role information for a particular user, resource, or database;

determining which resource provisioning policies are applicable to the user based on the received user role information, organizational information, and attribute information;

seeking additional information or authorizations from third parties in accordance with the applicable resource provisioning policies; and

provisioning the user with the resources specified by the applicable resource provisioning policies if all necessary additional information or authorizations have been received from the third parties, the provisioning of the resources being determined at least in part by the additional information or authorizations;

wherein the step of seeking additional information or authorizations from third parties comprising the steps of;

receiving first additional information or authorizations from third parties in accordance with the applicable resource provisioning policies; and

seeking second additional information or authorizations from other third parties or the user based on the received first additional information or authorizations and the received attribute information, organizational information, and user role information.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for provisioning users with resources is disclosed. The method includes the steps of establishing a set of attributes, organizational information, and user roles and defining a plurality of resource provisioning policies based on selected attributes, organizational information, and user roles. The method also includes the steps of receiving attribute information and user role information for a particular user or resource, determining which resource provisioning policies are applicable to the user based on the received user role information, organizational information, and attribute information, seeking additional information or authorizations from third parties in accordance with the applicable resource provisioning policies, and provisioning the user with the resources specified by the applicable resource provisioning policies if all necessary additional information or authorizations have been received from the third parties.

160 Citations

8 Claims

1. A method for provisioning users with resources, the method comprising the steps of:
- establishing a set of attributes, organizational information, and user roles;
  
  defining a plurality of resource provisioning policies based on selected attributes, organizational information, and user roles;
  
  receiving attribute information, organizational information, and user role information for a particular user, resource, or database;
  
  determining which resource provisioning policies are applicable to the user based on the received user role information, organizational information, and attribute information;
  
  seeking additional information or authorizations from third parties in accordance with the applicable resource provisioning policies; and
  
  provisioning the user with the resources specified by the applicable resource provisioning policies if all necessary additional information or authorizations have been received from the third parties, the provisioning of the resources being determined at least in part by the additional information or authorizations;
  
  wherein the step of seeking additional information or authorizations from third parties comprising the steps of;
  
  receiving first additional information or authorizations from third parties in accordance with the applicable resource provisioning policies; and
  
  seeking second additional information or authorizations from other third parties or the user based on the received first additional information or authorizations and the received attribute information, organizational information, and user role information.
- View Dependent Claims (2, 3, 4)
- - 2. A method as recited in claim 1, the step of receiving attribute information, organizational information, and user role information comprising the step of receiving input from a user interface.
  - 3. A method as recited in claim 1, the step of receiving attribute information, organizational information, and user role information for a particular user comprising receiving attribute information and user role information from an employee records database.
  - 4. A method as recited in claim 2, the step of seeking additional information or authorizations from third parties comprising the steps of:
    - providing the third party with access to the user interface;
      
      indicating to the third party which information or authorization needs to be supplied; and
      
      suspending the provisioning of resources to the user until the additional information or authorization is supplied.

5. A system for provisioning users with resources, the system comprising:
- a data server for storing a set of attributes, organizational information, and user roles, a plurality of resource provisioning policies based on selected attributes, organizational information, and user roles, and attribute information and user role information for a particular user or resource; and
  
  one or more processors coupled to the memory and an organizational network, the processors programmed fordetermining which resource provisioning policies are applicable to the stored user role information, organizational information, and attribute information,seeking additional information or authorizations from third parties in accordance with the applicable resource provisioning policies, andprovisioning a user with the resources specified by the applicable resource provisioning policies if all necessary additional information or authorizations have been received from the third parties, the provisioning of the resources being determined at least in part by the additional information or authorizations,receiving first additional information or authorizations from third parties in accordance with the applicable resource provisioning policies, andseeking second additional information or authorizations from other third parties or the user based on the received first additional information or authorizations and the stored attribute information, organizational information, and user role information.
- View Dependent Claims (6, 7, 8)
- - 6. A system as recited in claim 5, further including a user interface for inputting the attribute information and user role information for a particular user or resource.
  - 7. A system as recited in claim 5 the data server further including an employee records database for storing attribute information and user role information for a particular user.
  - 8. A system as recited in claim 6 the processor further programmed for:
    - providing the third party with access to the user interface;
      
      indicating to the third party which information or authorization needs to be supplied; and
      
      suspending the provisioning of resources to the user until the additional information or authorization is supplied.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Bohren, Jeffrey S., Gullotta, Tony J., Chen, Liangtong, Curie, Jeffrey C.
Primary Examiner(s)
Tran, Philip B.

Application Number

US09/772,486
Publication Number

US 20020156904A1
Time in Patent Office

1,807 Days
Field of Search

709/229, 709/223, 709/225, 709/203, 709 25-226, 707/9, 705/8, 713/200, 713/201
US Class Current

709/229
CPC Class Codes

G06Q 10/06 Resources, workflows, human...

System and method for provisioning resources to users based on roles, organizational information, attributes and third-party information or authorizations

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

160 Citations

8 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for provisioning resources to users based on roles, organizational information, attributes and third-party information or authorizations

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

160 Citations

8 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links