User permissions in computing systems
First Claim
Patent Images
1. A method, comprising:
- receiving, at a permissions verification system, a plurality of records, the plurality of records comprising a first record that includes at least a user identifier and an associated first access level that indicates a level of access to a first mainframe system, and a second record that includes at least the user identifier and an associated second access level that indicates a level of access to a second mainframe system, wherein the first record is of a first format and the second record is of a second format, the second format differing from the first format;
determining, at the permissions verification system, that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record, wherein determining that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record comprises converting the first format of the first record and the second format of the second record to a common format; and
responsive to determining that the first access level does not match the second access level, providing a notification of an inconsistency between the first access level and the second access level.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of verifying accuracy of permission and access levels in a mainframe system are presented. The system and method may include receiving a plurality of records including a user identifier and an associated access level. The access level in the record may be matched (e.g., the access level on the stored record must be less than or equal to the access on the new system to “pass” the test) to the access level in a mainframe system. If the access levels match, the access level may be stored in the mainframe system. If the access levels do not match, the record may be flagged and correction of the inconsistency may be performed.
33 Citations
15 Claims
-
1. A method, comprising:
-
receiving, at a permissions verification system, a plurality of records, the plurality of records comprising a first record that includes at least a user identifier and an associated first access level that indicates a level of access to a first mainframe system, and a second record that includes at least the user identifier and an associated second access level that indicates a level of access to a second mainframe system, wherein the first record is of a first format and the second record is of a second format, the second format differing from the first format; determining, at the permissions verification system, that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record, wherein determining that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record comprises converting the first format of the first record and the second format of the second record to a common format; and responsive to determining that the first access level does not match the second access level, providing a notification of an inconsistency between the first access level and the second access level. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. One or more non-transitory computer readable media storing computer readable instructions that, when executed, cause an apparatus to:
-
receive a plurality of records, the plurality of records comprising a first record that includes at least a user identifier and an associated first access level that indicates a level of access to a first mainframe system, and a second record that includes at least the user identifier and an associated second access level that indicates a level of access to a second mainframe system, wherein the first record is of a first format and the second record is of a second format, the second format differing from the first format; determine that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record by converting the first format of the first record and the second format of the second record to a common format; and responsive to determining that the first access level does not match the second access level, provide a notification of an inconsistency between the first access level and the second access level. - View Dependent Claims (8, 9, 10)
-
-
11. An apparatus comprising:
-
a processor; and memory operatively coupled to the processor and storing computer readable instructions that, when executed, cause the apparatus to; receive a plurality of records, the plurality of records comprising a first record that includes at least a user identifier and an associated first access level that indicates a level of access to a first mainframe system, and a second record that includes at least the user identifier and an associated second access level that indicates a level of access to a second mainframe system, wherein the first record is of a first format and the second record if of a second format, the second format differing from the first format; determine that the first access level associated with the user identifier in the first record does not match the second access level associated with the user identifier in the second record by converting the first format of the first record and the second format of the second record to a common format; and responsive to determining that the first access level does not match the second access level, provide a notification of an inconsistency between the first access level and the second access level. - View Dependent Claims (12, 13)
-
-
14. A method, comprising:
-
receiving, at a permissions verification system, a first user identifier; attempting a first login to a mainframe system, by the permissions verification system, including inputting the first user identifier and a default password, the default password being a password provided upon creation of the first user identifier, and the default password comprising one or more of a generic password assigned by the mainframe system to each user identifier upon creation and the user identifier; responsive to determining that the first login was successful, notifying a user associated with the first user identifier that the default password is associated with the first user identifier and does not meet a predetermined level of security; responsive to determining that the first login was unsuccessful, attempting a second login to the mainframe system including inputting a second user identifier and the default password; and responsive to determining that the second login was successful, notifying a user associated with the second user identifier that the default password is associated with the second user identifier and does not meet the predetermined level of security. - View Dependent Claims (15)
-
Specification