Systems and methods for establishing cloud-based instances with independent permissions
First Claim
1. A method of facilitating management of cloud-based service instances, the method comprising:
- establishing, by a cloud management service configured to communicate with a multi-tenant computing cloud, a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance;
receiving, by the cloud management service, a request for the cloud-based service instance, the request authenticated as originating from a requestor, wherein the request is a request for direct access, by the requestor, to the cloud-based service instance;
consulting, by the cloud management service, a set of access controls associated with the cloud-based service instance;
determining, by the cloud management service, responsive to the consulting, if the request is allowable by the requestor; and
enabling, by the cloud management service responsive to determining that the request is allowable by the requestor, the requestor to complete the request using an access credential associated with the access entity by returning, to the requestor, the access credential associated with the access entity.
5 Assignments
0 Petitions
Accused Products
Abstract
A method and system for facilitating management of cloud-based service instances, the system including one or more computing systems configured to communicate with at least one multi-tenant computing cloud, and configured to establish a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance. The system can receive a request for the cloud-based service instance, the request authenticated as originating from a requestor; consult a set of access controls associated with the cloud-based service instance; determine, responsive to the consulting, if the request is allowable by the requestor; and enable, responsive to determining that the request is allowable by the requestor, the requestor to complete the request using a restricted access credential associated with the access entity.
56 Citations
30 Claims
-
1. A method of facilitating management of cloud-based service instances, the method comprising:
-
establishing, by a cloud management service configured to communicate with a multi-tenant computing cloud, a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance; receiving, by the cloud management service, a request for the cloud-based service instance, the request authenticated as originating from a requestor, wherein the request is a request for direct access, by the requestor, to the cloud-based service instance; consulting, by the cloud management service, a set of access controls associated with the cloud-based service instance; determining, by the cloud management service, responsive to the consulting, if the request is allowable by the requestor; and enabling, by the cloud management service responsive to determining that the request is allowable by the requestor, the requestor to complete the request using an access credential associated with the access entity by returning, to the requestor, the access credential associated with the access entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method of facilitating management of cloud-based service instances, the method comprising:
-
establishing, by a cloud management service configured to communicate with a multi-tenant computing cloud, a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance; receiving, by the cloud management service, a request for the cloud-based service instance, the request authenticated as originating from a requestor, wherein the request is a request to perform an action on the cloud-based service instance; consulting, by the cloud management service, a set of access controls associated with the cloud-based service instance; determining, by the cloud management service, responsive to the consulting, if the request is allowable by the requestor; and enabling, by the cloud management service responsive to determining that the request is allowable by the requestor, the requestor to complete the request using an access credential associated with the access entity by forwarding the request to the multi-tenant computing cloud, with the access credential associated with the access entity. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A system for facilitating management of cloud-based service instances, the system comprising one or more servers including one or more hardware processors configured to communicate with at least one multi-tenant computing cloud, the one or more servers including one or more hardware processors configured to:
-
establish a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance; receive a request for the cloud-based service instance, the request authenticated as originating from a requestor, wherein the request is a request for direct access, by the requestor, to the cloud-based service instance; consult a set of access controls associated with the cloud-based service instance; determine, responsive to the consulting, if the request is allowable by the requestor; and enable, responsive to determining that the request is allowable by the requestor, the requestor to complete the request using a access credential associated with the access entity by returning, to the requestor, the access credential associated with the access entity. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
-
25. A system for facilitating management of cloud-based service instances, the system comprising one or more servers including one or more hardware processors configured to communicate with at least one multi-tenant computing cloud, the one or more servers including one or more hardware processors configured to:
-
establish a cloud-based service instance hosted in the multi-tenant computing cloud and an access entity with permissions to access the established cloud-based service instance; receive a request for the cloud-based service instance, the request authenticated as originating from a requestor, wherein the request is a request to perform an action on the cloud-based service instance; consult a set of access controls associated with the cloud-based service instance; determine, responsive to the consulting, if the request is allowable by the requestor; and enable, responsive to determining that the request is allowable by the requestor, the requestor to complete the request using an access credential associated with the access entity by forwarding the request to the multi-tenant computing cloud with the access credential associated with the access entity. - View Dependent Claims (26, 27, 28, 29, 30)
-
Specification