Methods, systems, and computer program products that centrally manage password policies
First Claim
Patent Images
1. A method of controlling password changes in a system comprising:
- utilizing a central password policy manager for controlling the contents of passwords for a plurality of data processing systems, each data processing system having its own local password controller that compares user-provided information to its own password registry to locally confirm the identity and associated authorization of users attempting to log on to the corresponding data processing system, the central password policy manager controlling the contents of passwords by;
receiving password change requests by the central password policy manager, wherein each password change request is received from across a network in response to the local password controller of an associated one of the data processing systems receiving a request for modification of a password that is stored in its password registry;
utilizing the central password policy manager to check compliance of each of the password change requests received from the local password controllers based upon shared password content policies; and
returning an indication of compliance for each password change request received by the central password policy manager, to a corresponding one of the local password controllers, wherein, each local password controller modifies its associated password registry if authorized based on a corresponding returned indication of compliance from the central password policy manager.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of controlling password changes in a system having a plurality of data processing systems having separate password registries. Contents of passwords in the password registries of the data processing systems are controlled using password content policies that are centrally shared between the plurality of data processing systems.
108 Citations
18 Claims
-
1. A method of controlling password changes in a system comprising:
-
utilizing a central password policy manager for controlling the contents of passwords for a plurality of data processing systems, each data processing system having its own local password controller that compares user-provided information to its own password registry to locally confirm the identity and associated authorization of users attempting to log on to the corresponding data processing system, the central password policy manager controlling the contents of passwords by; receiving password change requests by the central password policy manager, wherein each password change request is received from across a network in response to the local password controller of an associated one of the data processing systems receiving a request for modification of a password that is stored in its password registry; utilizing the central password policy manager to check compliance of each of the password change requests received from the local password controllers based upon shared password content policies; and returning an indication of compliance for each password change request received by the central password policy manager, to a corresponding one of the local password controllers, wherein, each local password controller modifies its associated password registry if authorized based on a corresponding returned indication of compliance from the central password policy manager. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A password management system comprising:
-
a central password policy manager for controlling the contents of passwords for a plurality of data processing systems, each data processing system having its own local password controller that compares user-provided information to its own corresponding password registry to locally confirm the identity and associated authorization of users attempting to log on to the corresponding data processing system, the central password policy manager configured to; receive password change requests, wherein each password change request is received from across a network in response to the local password controller of an associated one of the data processing systems receiving a request for modification of a password that is stored in its password registry; utilize shared password content policies to check compliance of each of the password change requests received from the local password controllers, and return an indication of compliance for each password change request received by the central password policy manager to a corresponding one of the local password controllers, wherein each local password controller modifies its associated password registry if authorized based on a corresponding returned indication of compliance from the central password policy manager. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A computer program product for managing passwords, the computer program product comprising program code embodied in a computer-readable storage medium, the computer program code comprising:
program code for implementing a central password policy manager for controlling password changes in a system having a plurality of data processing systems, each data processing system having its own local password controller that compare user-provided information to its own password registry to locally confirm the identity and associated authorization of users attempting to log on to the corresponding data processing system, the program code for implementing the central password policy manager programmed for controlling the contents of passwords in the password registries for the plurality of data processing systems, having; program code for receiving password change requests by the central password policy manager, wherein each password change request is received from across a network in response to the local password controller of an associated one of the data processing systems receiving a request for modification of a password that is stored in its password registry; program code for utilizing the central password policy manager to check compliance of each of the password change requests received from the local password controllers based upon shared password content policies; and program code for returning an indication of compliance for each password change request received by the central password policy manager, to a corresponding one of the local password controllers, wherein each local password controller modifies its associated password registry if authorized based on a corresponding returned indication of compliance from the central password policy manager. - View Dependent Claims (15, 16, 17, 18)
Specification