Method for managing objects created in a directory service

US 7,398,529 B2
Filed: 03/06/2002
Issued: 07/08/2008
Est. Priority Date: 03/09/2001
Status: Expired due to Fees

First Claim

Patent Images

1. A computer implemented method for selective restoring of policy objects associated with a directory service of a computer system, comprising:

backing up a plurality of the policy objects associated with the directory service of the computer system;

detecting a problem with a selected one of the plurality of policy objects; and

restoring the selected one of the plurality of policy objects without restoring others of the plurality of policy objects, further comprising at least one of the following;

wherein backing up includes storing object settings, links to directory service objects, and security information regarding directory service objects;

wherein restoring includes restoring the selected one of the plurality of objects to a domain of the computer system from which it was backed up;

wherein restoring includes restoring the selected one of the plurality of objects to a parent domain of a domain of the computer system from which it was backed up;

wherein restoring includes restoring the selected one of the plurality of objects to a child domain of a domain of the computer system from which it was backed up;

orwherein a security privilege of the computer system is required to effect a particular setting of the policy objects and wherein the method further comprises delegating the security privilege to selected users for selected objects in the directory service, wherein various levels of security privileges can be delegated and wherein the levels of security privileges that can be delegated include the ability to configure an entire policy object or the ability to configure only one or a plurality of administrative templates contained in a policy object.

View all claims

20 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computerized method for managing objects created in a directory service of a distributed computing environment, including a component for backing up and restoring a single or plurality of directory service objects, a component for delegating security privileges to permit access to directory service objects, a component for retrieving data in policy storage format and representing the data in human-readable form, a component having a graphical user interface including a display capable of searching and reporting policy storage data in human readable form, a component capable of replicating a single or plurality of directory service objects across the domain tree boundaries of the directory service, a component for analyzing the effect a particular setting will have on a particular target represented as a directory service object before the setting is added to the directory service.

19 Citations

View as Search Results

19 Claims

1. A computer implemented method for selective restoring of policy objects associated with a directory service of a computer system, comprising:
- backing up a plurality of the policy objects associated with the directory service of the computer system;
  
  detecting a problem with a selected one of the plurality of policy objects; and
  
  restoring the selected one of the plurality of policy objects without restoring others of the plurality of policy objects, further comprising at least one of the following;
  
  wherein backing up includes storing object settings, links to directory service objects, and security information regarding directory service objects;
  
  wherein restoring includes restoring the selected one of the plurality of objects to a domain of the computer system from which it was backed up;
  
  wherein restoring includes restoring the selected one of the plurality of objects to a parent domain of a domain of the computer system from which it was backed up;
  
  wherein restoring includes restoring the selected one of the plurality of objects to a child domain of a domain of the computer system from which it was backed up;
  
  orwherein a security privilege of the computer system is required to effect a particular setting of the policy objects and wherein the method further comprises delegating the security privilege to selected users for selected objects in the directory service, wherein various levels of security privileges can be delegated and wherein the levels of security privileges that can be delegated include the ability to configure an entire policy object or the ability to configure only one or a plurality of administrative templates contained in a policy object.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 2. The method of claim 1 wherein the directory service further includes user objects.
  - 3. The method of claim 1 wherein the directory service further includes computer objects.
  - 4. The method of claim 1 wherein the directory service further includes printer objects.
  - 5. The method of claim 1 wherein the directory service further includes a directory service component with a descriptive parameter.
  - 6. The method of claim 1 wherein backing up includes storing object settings, links to directory service objects, and security information regarding directory service objects.
  - 7. The method of claim 1 wherein policy data associated with a policy object is stored in a database.
  - 8. The method of claim 7 wherein the database where policy data is stored is the registry.
  - 9. The method of claim 1 wherein the detected problem comprises corruption of the selected one of the plurality of policy objects.
  - 10. The method of claim 1 wherein detecting a problem with a selected one of the plurality of policy objects comprises detecting problems with a plurality of policy objects and restoring the selected one comprises restoring the plurality of policy objects with detected problems.
  - 11. The method of claim 1 wherein restoring the selected one of the plurality of policy objects includes replicating the selected one of the plurality of policy objects across domain boundaries of the computer system.
  - 12. The method of claim 1 further comprising:
    - analyzing the effect a particular setting of one of the policy objects will have on a particular target represented as a directory service object before the particular setting is implemented in the directory service.
  - 13. The method of claim 1 wherein the security privilege of the computer system is required to effect the particular setting of the policy objects and wherein the method further comprises:
    - delegating the security privilege to selected users for selected objects in the directory service, wherein the various levels of security privileges can be delegated and wherein the levels of security privileges that can be delegated include the ability to configure an entire policy object or the ability to configure only one or a plurality of administrative templates contained in a policy object.
  - 14. The method of claim 1 wherein restoring includes restoring the selected one of the plurality of objects to the domain of the computer system from which it was backed up.
  - 15. The method of claim 1 wherein restoring includes restoring the selected one of the plurality of objects to the parent domain of the domain of the computer system from which it was backed up.
  - 16. The method of claim 1 wherein the detected problem comprises deletion of the selected one of the plurality of policy objects.
  - 17. The method of claim 1 wherein the security privilege of the computer system is required to restore the particular setting of the policy objects and wherein the method further comprises:
    - delegating the security privilege to selected users for selected objects in the directory service.
  - 18. The method of claim 1 wherein restoring includes restoring the selected one of the plurality of objects to the child domain of the domain of the computer system from which it was backed up.

19. A computer system configured for selective restoring of policy objects associated with a directory service of a computer system, comprising:
- means for backing up a plurality of the policy objects associated with the directory service of the computer system;
  
  means for detecting a problem with a selected one of the plurality of policy objects; and
  
  means for restoring the selected one of the plurality of policy objects without restoring others of the plurality of policy objects, further comprising at least one of the following;
  
  wherein the means for backing up includes means for storing object settings, links to directory service objects, and security information regarding directory service objects;
  
  wherein the means for restoring includes means for restoring the selected one of the plurality of objects to a domain of the computer system from which it was backed up;
  
  wherein the means for restoring includes means for restoring the selected one of the plurality of objects to a parent domain of a domain of the computer system from which it was backed up;
  
  wherein the means for restoring includes means for restoring the selected one of the plurality of objects to a child domain of a domain of the computer system from which it was backed up;
  
  orwherein a security privilege of the computer system is required to effect a particular setting of the policy objects and wherein the system further comprises means for delegating the security privilege to selected users for selected objects in the directory service, wherein various levels of security privileges can be delegated and wherein the levels of security privileges that can be delegated include the ability to configure an entire policy object or the ability to configure only one or a plurality of administrative templates contained in a policy object.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NetIQ Corporation (Open Text Corporation)
Original Assignee
NetIQ Corporation (Open Text Corporation)
Inventors
Radhakrishnan, Dilip, Prabakaran, Senthil, Kazachkov, Vladimir
Primary Examiner(s)
An; Meng-Ai
Assistant Examiner(s)
WU, QING YUAN

Application Number

US10/092,646
Publication Number

US 20020178249A1
Time in Patent Office

2,316 Days
Field of Search

719/318, 719/316, 709/223, 709/225, 714/100, 714/1, 714/2, 707/200, 707/202, 707/204
US Class Current

719/316
CPC Class Codes

G06F 11/1451   by selection of backup cont...

G06F 11/1464   for networked environments

H04L 63/0263   Rule management

Method for managing objects created in a directory service

First Claim

20 Assignments

0 Petitions

Accused Products

Abstract

19 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Method for managing objects created in a directory service

First Claim

20 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

19 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links