Central adminstration of one or more resources

US 8,291,096 B2
Filed: 09/11/2006
Issued: 10/16/2012
Est. Priority Date: 11/05/2001
Status: Active Grant

First Claim

Patent Images

1. A client-server data processing system for providing one or more administrators access to at least one resource, the data processing system comprising:

a first security manager having a first set of administrative user identifiers associated with an administrator and a first set of corresponding passwords, the first security manager managing access of the administrator to a first resource via use of the first set of administrative user identifiers and the first set of corresponding passwords;

a second security manager having a second set of administrative user identifiers associated with the administrator and a second set of corresponding passwords, the second security manager managing access of the administrator to a second resource via use of the second set of administrative user identifiers and the second set of corresponding passwords;

a security controller for interfacing with the first security manager and the second security manager to provide an administrative global user identifier associated with the administrator, wherein the administrative global user identifier is representative of both the first set of administrative user identifiers and the second set of administrative user identifiers;

a global password and the global user identifier triggering the execution of a script, transparent to the administrator, that logs the administrator into the first security manager and the second security manager, wherein the global user identifier is transparent to the administrator;

a directory services system; and

a central authentication module associated with the directory services system, the central authentication module having a third set of user identifiers associated with the administrator and corresponding passwords, the global password and the administrative global user identifier arranged to log the administrator into the directory services system associated with the central authentication module.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A central administration tool or manager supports entry or selection of attribute data or datum (e.g., an attribute value) associated with at least one of a resource and a user. The entered or selected attribute data is arranged into a data structure (e.g., a file) for transmission over a communications network. The data structure is transmitted over the communications network to a directory interface. The transmitted data structure is processed to be compatible with interpretation by a directory services system. The directory services system is invoked consistent with the contents of the data structure (e.g., the file) and the previous processing of the data structure. Resources (e.g., applications) that are under the control of the directory services are managed consistent with the contents of the data structure.

Citations

11 Claims

1. A client-server data processing system for providing one or more administrators access to at least one resource, the data processing system comprising:
- a first security manager having a first set of administrative user identifiers associated with an administrator and a first set of corresponding passwords, the first security manager managing access of the administrator to a first resource via use of the first set of administrative user identifiers and the first set of corresponding passwords;
  
  a second security manager having a second set of administrative user identifiers associated with the administrator and a second set of corresponding passwords, the second security manager managing access of the administrator to a second resource via use of the second set of administrative user identifiers and the second set of corresponding passwords;
  
  a security controller for interfacing with the first security manager and the second security manager to provide an administrative global user identifier associated with the administrator, wherein the administrative global user identifier is representative of both the first set of administrative user identifiers and the second set of administrative user identifiers;
  
  a global password and the global user identifier triggering the execution of a script, transparent to the administrator, that logs the administrator into the first security manager and the second security manager, wherein the global user identifier is transparent to the administrator;
  
  a directory services system; and
  
  a central authentication module associated with the directory services system, the central authentication module having a third set of user identifiers associated with the administrator and corresponding passwords, the global password and the administrative global user identifier arranged to log the administrator into the directory services system associated with the central authentication module.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system according to claim 1 wherein the first security manager comprises a knowledge management system.
  - 3. The system according to claim 1 wherein the second security manager comprises a filenet document center.
  - 4. The system according to claim 1 wherein the first security manager comprises a lightweight-directory-access-protocol compliant knowledge management system.
  - 5. The system according to claim 1 wherein the security controller provides the administrator with access at an administrative level to modify an attribute of at least one resource.
  - 6. The system according to claim 1 wherein the security controller provides the administrator with access at an administrative level to delete an attribute of at least one resource.
  - 7. The system according to claim 1 wherein the security controller provides the administrator with access at an administrative level to add an attribute of at least one resource.
  - 8. The system according to claim 1 wherein at least one of the first resource and the second resource comprises at least one of an application program, a database of user listings, an address of a printer on a network.

9. A method for providing one or more administrators access to at least one resource, comprising:
- associating a first security manager having a first set of administrative user identifiers with an administrator and a first set of corresponding passwords, the first security manager managing access of the administrator to a first resource via use of the first set of administrative user identifiers and the first set of corresponding passwords;
  
  associating a second security manager having a second set of administrative user identifiers with the administrator and a second set of corresponding passwords, the second security manager managing access of the administrator to a second resource via use of the second set of administrative user identifiers and the second set of corresponding passwords;
  
  providing an administrative global user identifier associated with the administrator by interfacing with the first security manager and the second security manager, wherein the administrative global user identifier is representative of both the first set of administrative user identifiers and the second set of administrative user identifiers, wherein the global user identifier is transparent to the administrator;
  
  triggering the execution of a script, transparent to the administrator, by using a global password and the global user identifier, that logs the administrator into the first security manager and the second security manager; and
  
  associating a central authentication module with a directory services system, the central authentication module having a third set of user identifiers associated with the administrator and corresponding passwords, wherein the global password and the administrative global user identifier are arranged to log the administrator into the directory services system associated with the central authentication module.
- View Dependent Claims (10)
- - 10. The method of claim 9, further comprising logging the administrator into the directory services system associated with a central authentication module by using the global password and the administrative global user identifier.

11. A non-transitory computer readable storage medium comprising:
- a processor configured to;
  
  associate a first security manager having a first set of administrative user identifiers with an administrator and a first set of corresponding passwords, the first security manager managing access of the administrator to a first resource via use of the first set of administrative user identifiers and the first set of corresponding passwords;
  
  associate a second security manager having a second set of administrative user identifiers with the administrator and a second set of corresponding passwords, the second security manager managing access of the administrator to a second resource via use of the second set of administrative user identifiers and the second set of corresponding passwords;
  
  provide an administrative global user identifier associated with the administrator by interfacing with the first security manager and the second security manager, wherein the administrative global user identifier is representative of both the first set of administrative user identifiers and the second set of administrative user identifiers, wherein the global user identifier is transparent to the administrator;
  
  trigger the execution of a script, transparent to the administrator, by using a global password and the global user identifier, that logs the administrator into the first security manager and the second security manager; and
  
  associate a central authentication module with a directory services system, the central authentication module having a third set of user identifiers associated with the administrator and corresponding passwords, wherein the global password and the administrative global user identifier are arranged to log the administrator into the directory services system associated with the central authentication module.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Accenture Global Services Limited (Accenture PLC)
Original Assignee
Accenture Global Services Limited (Accenture PLC)
Inventors
Stone, Andrew J., Jablonski, Marty, Huckaby, Tim, Sherrell, Brad, Russell, Bruce, McCarthy, Tim, Sannar, Robin
Primary Examiner(s)
Moore, Ian N
Assistant Examiner(s)
ALEXANDER, JENEE LAUREN

Application Number

US11/518,836
Publication Number

US 20070094392A1
Time in Patent Office

2,227 Days
Field of Search

709/229, 726/5, 726/8
US Class Current

709/229
CPC Class Codes

D04B 1/26   stockings

G06F 9/468   Specific access rights for ...

H04L 63/0815   providing single-sign-on or...

H04L 63/20   for managing network securi...

Central adminstration of one or more resources

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Central adminstration of one or more resources

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links