Single tenant audit view in a multi-tenant environment
First Claim
1. A method of correlating multi-component, per-tenant audit information in a multi-tenant computing infrastructure, comprising:
- authenticating a user to the multi-tenant computing infrastructure;
associating a tenant identifier for use in the multi-tenant computing infrastructure with identity information generated as a result of the user authentication;
as audit events from one or more components are generated, associating at least some of the audit events with the tenant identifier;
storing the audit events; and
in response to a request, returning the audit events that have been associated with the tenant identifier.
5 Assignments
0 Petitions
Accused Products
Abstract
A method correlates audit information in a multi-tenant computing infrastructure. The method leverages a user'"'"'s authentication to the infrastructure, such as via federated single sign-on (F-SSO) from an identity provider. Preferably, the user'"'"'s tenant identifier in the environment is derived based on identity information obtained during the F-SSO exchange. This tenant identifier is propagated to one or more other components in the infrastructure that are accessed by the user. As audit event from multiple components in the computing infrastructure are generated, these audit events are annotated with the tenant identifier and stored in an audit repository. In response to a request to view the tenant'"'"'s audit data, a collection of tenant-specific audit events are then retrieved from the audit repository and displayed in a single tenant view. This approach ensures that audit event information is not leaked inadvertently between tenants.
-
Citations
18 Claims
-
1. A method of correlating multi-component, per-tenant audit information in a multi-tenant computing infrastructure, comprising:
-
authenticating a user to the multi-tenant computing infrastructure; associating a tenant identifier for use in the multi-tenant computing infrastructure with identity information generated as a result of the user authentication; as audit events from one or more components are generated, associating at least some of the audit events with the tenant identifier; storing the audit events; and in response to a request, returning the audit events that have been associated with the tenant identifier. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. Apparatus for correlating multi-component, per-tenant audit information in a multi-tenant computing infrastructure, comprising:
-
a processor; computer memory holding computer program instructions that when executed by the processor perform a method comprising; authenticating a user to the multi-tenant computing infrastructure; associating a tenant identifier for use in the multi-tenant computing infrastructure with identity information generated as a result of the user authentication; as audit events from one or more components are generated, associating at least some of the audit events with the tenant identifier; storing the audit events; and in response to a request, returning the audit events that have been associated with the tenant identifier. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A computer program product in a non-transitory computer readable medium for use in a data processing system for correlating multi-component, per-tenant audit information in a multi-tenant computing infrastructure, the computer program product holding computer program instructions which, when executed by the data processing system, performs a method comprising:
-
authenticating a user to the multi-tenant computing infrastructure; associating a tenant identifier for use in the multi-tenant computing infrastructure with identity information generated as a result of the user authentication; as audit events from one or more components are generated, associating at least some of the audit events with the tenant identifier; storing the audit events; and in response to a request, returning the audit events that have been associated with the tenant identifier. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification