Secure agent-less enterprise infrastructure discovery
First Claim
1. A method, in an agent-less discovery engine of a data processing system, for securing dynamic discovery of an enterprise computing infrastructure, comprising:
- maintaining enterprise credential information in a secured trust store;
receiving an access request through a secure connection for access to a remote infrastructure component;
automatically determining the type of the access request;
for a root-level type access request, automatically responding to the request via the secure connection with enterprise root credentials from the trust store;
for an unprivileged type access request, automatically responding to the request via the secure connection with unprivileged access enterprise credentials from the trust store; and
automatically utilizing, by the agent-less discovery engine, the remotely received enterprise root credential or the remotely received unprivileged access enterprise credentials, depending on the determined type of the access request, to access the remote infrastructure component of the enterprise computing infrastructure to perform application configuration retrieval from the remote infrastructure component as part of the discovery of the enterprise computing infrastructure, wherein the secure trust store is maintained separate from the agent-less discovery engine.
1 Assignment
0 Petitions
Accused Products
Abstract
Mechanisms for securing dynamic discovery of an enterprise computing infrastructure is provided. One implementation involves maintaining enterprise credential information in a secured trust store, receiving an access request through a secure connection for access to a remote infrastructure component, determining the type of the access request, for a root-level type access request, responding to the request via the secure connection with enterprise root credentials from the trust store, and for an unprivileged type access request, responding to the request via the secure connection with unprivileged access enterprise credentials from the trust store.
-
Citations
13 Claims
-
1. A method, in an agent-less discovery engine of a data processing system, for securing dynamic discovery of an enterprise computing infrastructure, comprising:
-
maintaining enterprise credential information in a secured trust store; receiving an access request through a secure connection for access to a remote infrastructure component; automatically determining the type of the access request; for a root-level type access request, automatically responding to the request via the secure connection with enterprise root credentials from the trust store; for an unprivileged type access request, automatically responding to the request via the secure connection with unprivileged access enterprise credentials from the trust store; and automatically utilizing, by the agent-less discovery engine, the remotely received enterprise root credential or the remotely received unprivileged access enterprise credentials, depending on the determined type of the access request, to access the remote infrastructure component of the enterprise computing infrastructure to perform application configuration retrieval from the remote infrastructure component as part of the discovery of the enterprise computing infrastructure, wherein the secure trust store is maintained separate from the agent-less discovery engine. - View Dependent Claims (2, 3, 4)
-
-
5. An apparatus for securing dynamic discovery of an enterprise computing infrastructure, comprising:
-
a credential administrator configured for maintaining enterprise credential information in a secured trust store; a request processing module configured for receiving an access request through a secure connection for access to a remote infrastructure component; a request type identification module configured for automatically determining the type of the access request, the request processing module further configured such that; for a root-level type access request, the request processing module automatically responds to the request via the secure connection with enterprise root credentials from the trust store; and for an unprivileged type access request, the request processing module automatically responds to the request via the secure connection with unprivileged access enterprise credentials from the trust store; and an agent-less discovery engine configured to automatically utilize either the remotely received enterprise root credential or the remotely received unprivileged access enterprise credentials, depending on the determined type of the access request, to access the remote infrastructure component of the enterprise computing infrastructure to perform application configuration retrieval from the remote infrastructure component as part of the discovery of the enterprise computing infrastructure, wherein the secure trust store is maintained separate from the agent-less discovery engine. - View Dependent Claims (6, 7)
-
-
8. A system for dynamic discovery of an enterprise computing infrastructure, comprising:
-
an agent-less discovery engine configured for performing dynamic agent-less discovery, for access to a remote infrastructure component; a credential manager configured for securing dynamic discovery of the enterprise computing infrastructure, the credential manager comprising; a credential administrator configured for maintaining enterprise credential information in a secured trust store; a request processing module configured for receiving an access request from the agent-less discovery engine through a secure connection for access to a remote infrastructure component; and a request type identification module configured for automatically determining the type of the access request; the request processing module further configured such that; for a root-level type access request, the request processing module automatically responds to the request via the secure connection with enterprise root credentials from the trust store; and for an unprivileged type access request, the request processing module automatically responds to the request via the secure connection with unprivileged access enterprise credentials from the trust store, wherein the agent-less discovery engine configured to automatically utilize either the remotely received enterprise root credential or the remotely received unprivileged access enterprise credentials, depending on the determined type of the access request, to access the remote infrastructure component to perform application configuration retrieval from the remote infrastructure component as part of the discovery of the enterprise computing infrastructure, and wherein the secure trust store is maintained separate from the agent-less discovery engine. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification