Graphical user interface for unified identity management across internal and shared computing applications
First Claim
1. A method, comprising,using one or more processors to perform presenting a user interface to a user of an identity management module, whereinthe identity management module comprises one or more tools for allowing a user to create and manage one or more accounts on each of a shared computing system application and a customer internal application, andthe presenting comprises:
- presenting a single user interface including options fortransmitting an access management instruction for creating or managing one of the one or more accounts to the customer internal application via an on-premise proxy, andtransmitting another access management instruction for creating or managing one of the one or more accounts to the shared computing system application via a multi-customer gateway on the shared computing system; and
adaptively adjusting the user interface to highlight suggested access entitlement operations for creating or managing one of the one or more accounts based at least in part upon expected access entitlements derived from a learning based prediction engine, whereinthe adaptively adjusting the user interface to highlight suggested access entitlement operations comprises suggesting an access entitlement operation based at least in part on auditing one or more existing identities in an identity management database to detect access anomalies based on comparing existing access entitlements of a selected identity to existing access entitlements of others of the existing identities, andthe adaptively adjusting the user interface to highlight suggested access entitlement operations further comprises suggesting an access entitlement operation based at least in part on a hybrid prediction approach combining collaborative filtering and content based filtering.
3 Assignments
0 Petitions
Accused Products
Abstract
A single user interface for a user of an identity management module is presented. The single user interface includes options for transmitting an access management instruction to a customer internal application via an on-premise proxy, and transmitting another access management instruction to a shared computing system application via a multi-customer gateway on the shared computing system. The user interface is adaptively adjusted to highlight suggested access entitlement operations based at least in part upon expected access entitlements derived from a prediction engine.
-
Citations
21 Claims
-
1. A method, comprising,
using one or more processors to perform presenting a user interface to a user of an identity management module, wherein the identity management module comprises one or more tools for allowing a user to create and manage one or more accounts on each of a shared computing system application and a customer internal application, and the presenting comprises: -
presenting a single user interface including options for transmitting an access management instruction for creating or managing one of the one or more accounts to the customer internal application via an on-premise proxy, and transmitting another access management instruction for creating or managing one of the one or more accounts to the shared computing system application via a multi-customer gateway on the shared computing system; and adaptively adjusting the user interface to highlight suggested access entitlement operations for creating or managing one of the one or more accounts based at least in part upon expected access entitlements derived from a learning based prediction engine, wherein the adaptively adjusting the user interface to highlight suggested access entitlement operations comprises suggesting an access entitlement operation based at least in part on auditing one or more existing identities in an identity management database to detect access anomalies based on comparing existing access entitlements of a selected identity to existing access entitlements of others of the existing identities, and the adaptively adjusting the user interface to highlight suggested access entitlement operations further comprises suggesting an access entitlement operation based at least in part on a hybrid prediction approach combining collaborative filtering and content based filtering. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system, comprising:
-
at least one processor; and a memory comprising program instructions, wherein the program instructions are executable by the at least one processor to; present a user interface to a user of an identity management module, wherein the identity management module comprises one or more tools for allowing a user to create and manage one or more accounts on each of a shared computing system application and a customer internal application, and the program instructions executable by the at least one processor to present the user interface comprise; program instructions executable by the at least one processor to present a single user interface including options for transmitting an access management instruction for creating or managing one of the one or more accounts to the customer internal application via an on-premise proxy, and transmitting another access management instruction for creating or managing one of the one or more accounts to the shared computing system application via a multi-customer gateway on the shared computing system; and program instructions executable by the at least one processor to adaptively adjust the user interface to highlight suggested access entitlement operations for creating or managing one of the one or more accounts based at least in part upon expected access entitlements derived from a prediction engine, wherein the program instructions executable by the at least one processor to adaptively adjust the user interface to highlight suggested access entitlement operations comprise program instructions executable by the at least one processor to suggest an access entitlement operation based at least in part on auditing one or more existing identities in an identity management database to detect access anomalies based on comparing existing access entitlements of a selected identity to existing access entitlements of others of the existing identities, and program instructions executable by the at least one processor to adaptively adjust the user interface to highlight suggested access entitlement operations further comprise program instructions executable by the at least one processor to suggest an access entitlement operation based at least in part on a hybrid prediction approach combining collaborative filtering and content based filtering. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer-readable storage medium storing program instructions, wherein the program instructions are computer-executable to implement:
presenting a user interface to a user of an identity management module, wherein the identity management module comprises one or more tools for allowing a user to create and manage one or more accounts on each of a shared computing system application and a customer internal application, and the presenting comprises; presenting a single user interface including options for transmitting an access management instruction for creating or managing one of the one or more accounts to the customer internal application via an on-premise proxy, and transmitting another access management instruction for creating or managing one of the one or more accounts to the shared computing system application via a multi-customer gateway on the shared computing system; and adaptively adjusting the user interface to highlight suggested access entitlement operations for creating or managing one of the one or more accounts based at least in part upon expected access entitlements derived from a prediction engine, wherein the adaptively adjusting the user interface to highlight suggested access entitlement operations comprises suggesting an access entitlement operation based at least in part on auditing one or more existing identities in an identity management database to detect access anomalies based on comparing existing access entitlements of a selected identity to existing access entitlements of others of the existing identities, and the adaptively adjusting the user interface to highlight suggested access entitlement operations further comprises suggesting an access entitlement operation based at least in part on a hybrid prediction approach combining collaborative filtering and content based filtering. - View Dependent Claims (16, 17, 18, 19, 20, 21)
Specification