Systems and methods for associating a virtual machine with an access control right
First Claim
1. A method for configuring a machine in a cloud-based computing environment, the method comprising:
- receiving, by a management server for a cloud-based computing environment provided by a third-party cloud infrastructure service, a request from a first machine or virtual machine instance to configure a second machine or virtual machine instance hosted in the cloud-based computing environment;
identifying, by the management server, an access control right associated with the first machine or virtual machine instance making the request;
determining, by the management server, a scope associated with the first machine or virtual machine instance based on the access control right;
authorizing, by the management server, the request within the scope based on the access control right;
transmitting, by the management server, an instruction to perform the request using the determined scope.
5 Assignments
0 Petitions
Accused Products
Abstract
The present invention is related to associating a machine or virtual machine instance with an access control right in a cloud-based computing environment. In one aspect, the present invention relates to an apparatus for or a method of associating a machine or virtual machine instance with an access control right in a cloud-based computing environment. In various embodiments, the apparatus is capable of, and the method includes, the following: receiving, in a cloud-based computing environment, a request to perform an action; using an identifier for the machine or virtual machine instance to determine that the received request was sent by, or on behalf of, the machine or virtual machine instance; and identifying an access control right associated with the machine or virtual machine instance making the request, to determine whether to perform the action on behalf of, or grant access by, the machine or virtual machine instance.
60 Citations
20 Claims
-
1. A method for configuring a machine in a cloud-based computing environment, the method comprising:
-
receiving, by a management server for a cloud-based computing environment provided by a third-party cloud infrastructure service, a request from a first machine or virtual machine instance to configure a second machine or virtual machine instance hosted in the cloud-based computing environment; identifying, by the management server, an access control right associated with the first machine or virtual machine instance making the request; determining, by the management server, a scope associated with the first machine or virtual machine instance based on the access control right; authorizing, by the management server, the request within the scope based on the access control right; transmitting, by the management server, an instruction to perform the request using the determined scope. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus for configuring a machine in a cloud-based computing environment, the method comprising, the apparatus comprising:
a cloud management service executing on a processor, the cloud management service configured to; receive a request from a first machine or virtual machine instance to configure a second machine or virtual machine instance hosted in a cloud-based computing environment provided by a third-party cloud infrastructure service; identify an access control right associated with the first machine or virtual machine instance making the request; determine a scope associated with the first machine or virtual machine instance based on the access control right; authorize the request within the scope based on the access control right; and transmit an instruction to perform the request using the determined scope. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
Specification