×

Automation framework

  • US 9,177,167 B2
  • Filed: 05/26/2011
  • Issued: 11/03/2015
  • Est. Priority Date: 05/27/2010
  • Status: Active Grant
First Claim
Patent Images

1. An information technology management system for use in enterprise data management, said system comprising:

  • a computer including;

    a processor;

    a memory; and

    a non-transitory, tangible computer-readable medium in which computer program instructions are stored, which instructions, when read by said computer, cause the computer to enable efficient management of access permissions;

    a metadata supply subsystem which receives metadata from a network, said metadata relating to actual access and access permissions;

    an access permissions management subsystem employing said metadata for managing access permissions to data elements in said network; and

    an access permissions management operation implementation subsystem which automatically governs the operation of said access permissions management subsystem, said access permissions management operation implementation subsystem having at least one of first and second modes of operation, and at least one of third and fourth modes of operation,said first mode of operation including simulating the operation of said access permissions management subsystem in changing access permissions to at least some of said data elements in said network and thereafter providing a report indicating simulated changes in access permissions;

    said second mode of operation including providing a report of proposed changes in access permissions without first simulating the operation of said access permissions management subsystem;

    said third mode of operation including providing an actionable report of multiple steps in implementation of proposed changes in access permissions to data elements for approval before automatic execution of said multiple steps; and

    said fourth mode of operation including operating said access permissions management subsystem to change access permissions to at least some of said data elements in said network and thereafter providing a report indicating actual changes in access permissions,said access permissions management operation implementation subsystem being configured, responsive to executing one of said first and second modes of operation, to execute at least one of said third and fourth modes of operation;

    and wherein said access permissions management operation implementation subsystem comprises at least one of;

    access permissions modification task scope granularity selection functionality operative to enable selection of a selectable scope of an access permissions modification task;

    access permissions modification task scheduling granularity selection functionality operative to enable selection of a selectable schedule of said access permissions modification task;

    access permissions modification granularity selection functionality operative to enable selection of selectable granularity of said access permissions modification task;

    access permissions modification execution mode granularity selection functionality operative to enable selection of a selectable execution mode of said access permissions modification task; and

    access permissions modification task approval functionality operative to enable approval of said access permissions modification task;

    and wherein said scope is defined by a set of rules based on at least one of said metadata.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×