Self-service systems and methods for granting access to resources
First Claim
1. Non-transitory physical computer storage comprising instructions stored thereon for implementing, in one or more processors, a method of automatically identifying suitable groups for a user to join and thereby gain access to a network resource, the method comprising:
- receiving a request for access to a network resource for which a user does not currently have access;
identifying available groups that have access to the network resource;
computing a suitability of each of the available groups based on one or more suitability factors, the one or more suitability factors reflecting one or more of the following;
access rights held by the available groups, one or more characteristics of the available groups, one or more characteristics of the resource, and one or more characteristics of the user; and
outputting one or more of the available groups as one or more suitable groups based on the computed suitability for the one or more available groups.
23 Assignments
0 Petitions
Accused Products
Abstract
A self-service system is provided that can automatically identify one or more existing groups to which a user can self-select to access a resource. The self-service system can identify any suitable existing group without requiring an administrator to predefine groups according to roles. In some implementations, the system intelligently identifies one or more suitable groups for a user from a list of available groups by analyzing a set of rules or criteria. For instance, the system can perform a weighted analysis of various rules and/or criteria to automatically and dynamically identify groups that have a closest fit to the access rights needed or requested by the user. Further, the system can evaluate certain best or preferred grouping practices to identify suitable groups. As a result, in certain embodiments, the self-service system alleviates planning burdens on administrators and provides greater flexibility in providing users with access to resources.
-
Citations
20 Claims
-
1. Non-transitory physical computer storage comprising instructions stored thereon for implementing, in one or more processors, a method of automatically identifying suitable groups for a user to join and thereby gain access to a network resource, the method comprising:
-
receiving a request for access to a network resource for which a user does not currently have access; identifying available groups that have access to the network resource; computing a suitability of each of the available groups based on one or more suitability factors, the one or more suitability factors reflecting one or more of the following;
access rights held by the available groups, one or more characteristics of the available groups, one or more characteristics of the resource, and one or more characteristics of the user; andoutputting one or more of the available groups as one or more suitable groups based on the computed suitability for the one or more available groups. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system for automatically identifying suitable groups for a user to join and thereby gain access to a network resource, the system comprising:
-
a group identifier module configured to receive a request for access to a network resource for which a user does not currently have access and to identify available groups that have access to the network resource; a suitability calculator implemented by a computer system comprising computer hardware, the suitability calculator configured to compute a suitability of each of the available groups based on one or more suitability factors, the one or more suitability factors reflecting one or more of the following;
access rights held by the available groups, one or more characteristics of the available groups, and one or more characteristics of the user; anda recommendation module configured to output one or more of the available groups as one or more suitable groups based on the computed suitability for the one or more available groups. - View Dependent Claims (11, 12, 13)
-
-
14. A method of automatically identifying suitable groups for a user to join and thereby gain access to a network resource, the method comprising:
-
receiving a request for access to a network resource for which a user does not currently have access; identifying available groups that have access to the network resource; computing a suitability of each of the available groups based on one or more suitability factors, the one or more suitability factors reflecting one or more of the following;
access rights held by the available groups, one or more characteristics of the available groups, one or more characteristics of the resource, and one or more characteristics of the user; andoutputting one or more of the available groups as one or more suitable groups based on the computed suitability for the one or more available groups. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification