Automated policy change alert in a distributed enterprise
First Claim
Patent Images
1. A method for automating management of policies in a distributed enterprise, the method comprising:
- receiving one or more prospective published enterprise policies from one or more publishing portals within the enterprise;
receiving one or more system policies from one or more directory service databases;
maintaining a policy expiration time value for each of the one or more system policies;
associating the one or more system policies to each received prospective published enterprise policy;
examining the associations between the system policies and the prospective published enterprise policies;
determining associations that would be unmatched, changed, or inconsistent based on the one or more prospective published enterprise policies;
generating an alert in an event that the one or more system policies would be unmatched, changed, or inconsistent based on the one or more prospective published enterprise policies; and
generating an alert in an event one or more system policies would expire in response to examining the associations between the systems policies and the prospective published enterprise policies.
2 Assignments
0 Petitions
Accused Products
Abstract
A distributed enterprise includes a policy management module and policy library for automating policy change alerting. The policy management module and policy library are configured to list associations between published policies, published policy exceptions, and one or more systems policies, and to determine if changes to published (written) enterprise policies, published policy exceptions, or systems policies have occurred. The policy management module and policy library are also configured to notify personnel of the distributed enterprise so that appropriate actions may be implemented.
-
Citations
8 Claims
-
1. A method for automating management of policies in a distributed enterprise, the method comprising:
-
receiving one or more prospective published enterprise policies from one or more publishing portals within the enterprise; receiving one or more system policies from one or more directory service databases; maintaining a policy expiration time value for each of the one or more system policies; associating the one or more system policies to each received prospective published enterprise policy; examining the associations between the system policies and the prospective published enterprise policies; determining associations that would be unmatched, changed, or inconsistent based on the one or more prospective published enterprise policies; generating an alert in an event that the one or more system policies would be unmatched, changed, or inconsistent based on the one or more prospective published enterprise policies; and generating an alert in an event one or more system policies would expire in response to examining the associations between the systems policies and the prospective published enterprise policies.
-
-
2. One or more computer-readable storage media having computer-executable instructions that, when executed, cause a processor to perform a method, the method comprising:
-
maintaining associations between a published policy and a system policy in a database; maintaining a policy expiration time value for the system policy; determining whether a prospective change to the published policy affects the system policy, wherein the determining comprises determining what specific change to the system policy would implement the prospective change to the published policy and determining whether the system policy will be orphaned as a result of the prospective change to the published policy; generating an alert when the prospective change is determined to affect the system policy; and generating an alert when the system policy would expire in response to implementing the prospective change to the published policy. - View Dependent Claims (3, 4, 5, 6, 7, 8)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
Original AssigneeMicrosoft Corporation
-
InventorsBeaulieu, Michelle, Leibmann, Matthias, Brown, Laurie A., Lawrence, Mark David, Hunter, Kimberley Ann, Vasishth, Karan
-
Primary Examiner(s)Song; Hosuk
-
Application NumberUS11/064,172Publication NumberTime in Patent Office1,553 DaysField of Search726 1- 4, 726/6, 726/7, 726 22- 23US Class Current726/1CPC Class CodesG06F 21/604 Tools and structures for ma...G06F 21/62 Protecting access to data v...H04L 63/102 Entity profilesH04L 63/20 for managing network securi...
