Hierarchical multi-tenancy management of system resources in resource groups
First Claim
1. A method of establishing hierarchical user management authority for a plurality storage resources organized into a plurality of resource groups in a computing storage environment by a processor device, comprising:
- associating the plurality of storage resources with a resource group object, the resource group object and a storage resource object by having a resource group attribute associating the storage resource object with one of the plurality of resource groups;
assigning a resource group label attribute to the resource group object;
defining at least one additional attribute of the resource group object that specify a plurality of management policies for the resource group object and the plurality of storage resources associated with the resource group object;
associating at least one of a plurality of available users of the plurality of storage resources with a user resource scope attribute;
defining a schema for comparing of a plurality of values of the user resource scope attribute with the resource group label attribute, wherein the at least one of the plurality of available users has authority to perform one of creating, modifying, delete, and managing the plurality of storage resources associated with the at least one of the plurality of resource groups and also authority to perform one of creating and modifying at least one of the plurality of resource groups;
assigning a parent resource group attribute to at least one of the resource group object that identifies another one of the plurality of resource groups as a parent of the plurality of resource groups such that a specified one of the plurality of resource groups may be hierarchically related to at least one child resource group;
constraining the resource group label attribute of the parent of the plurality of resource groups and the at least one child resource group such that a resource scope may be defined to match a subset of a set of the plurality of resource groups consisting of at least one of the plurality of resource groups and at least one of the descendants of the plurality of resource groups; and
requiring the plurality of management policies specified in at least one policy attribute of the at least one child resource group be as restrictive as the plurality of management policies specified in the at least one policy attribute of the parent of the plurality of resource groups.
1 Assignment
0 Petitions
Accused Products
Abstract
Establishing hierarchical user management authority for storage resources organized into resource groups in a computing storage environment are provided. Each storage resource is associated with a resource group and storage resource object having a resource group attribute associating the storage resource object with one of the resource groups. The resource group label attribute is assigned to the resource group object. An additional attribute of the resource group object, that specifies management policies for the resource group object and the storage resources associated with the resource group object, is defined. One of the available users of the storage resources is associated with a user resource scope attribute. A schema is defined for comparing of values of the user resource scope attribute with the resource group label attribute.
25 Citations
24 Claims
-
1. A method of establishing hierarchical user management authority for a plurality storage resources organized into a plurality of resource groups in a computing storage environment by a processor device, comprising:
-
associating the plurality of storage resources with a resource group object, the resource group object and a storage resource object by having a resource group attribute associating the storage resource object with one of the plurality of resource groups; assigning a resource group label attribute to the resource group object; defining at least one additional attribute of the resource group object that specify a plurality of management policies for the resource group object and the plurality of storage resources associated with the resource group object; associating at least one of a plurality of available users of the plurality of storage resources with a user resource scope attribute; defining a schema for comparing of a plurality of values of the user resource scope attribute with the resource group label attribute, wherein the at least one of the plurality of available users has authority to perform one of creating, modifying, delete, and managing the plurality of storage resources associated with the at least one of the plurality of resource groups and also authority to perform one of creating and modifying at least one of the plurality of resource groups; assigning a parent resource group attribute to at least one of the resource group object that identifies another one of the plurality of resource groups as a parent of the plurality of resource groups such that a specified one of the plurality of resource groups may be hierarchically related to at least one child resource group; constraining the resource group label attribute of the parent of the plurality of resource groups and the at least one child resource group such that a resource scope may be defined to match a subset of a set of the plurality of resource groups consisting of at least one of the plurality of resource groups and at least one of the descendants of the plurality of resource groups; and requiring the plurality of management policies specified in at least one policy attribute of the at least one child resource group be as restrictive as the plurality of management policies specified in the at least one policy attribute of the parent of the plurality of resource groups. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system of establishing hierarchical user management authority for storage resources organized into a plurality of resource groups in a computing storage environment, comprising:
-
at least one processor device; a resource group manager, controlled by the at least one processor device, operational in the computing storage environment, wherein the resource group manager is adapted for; associating the plurality of storage resources with a resource group object, the resource group object and a storage resource object by having a resource group attribute associating the storage resource object with one of the plurality of resource groups, assigning a resource group label attribute to the resource group object, defining at least one additional attribute of the resource group object that specify a plurality of management policies for the resource group object and the plurality of storage resources associated with the resource group object, associating at least one of a plurality of available users of the plurality of storage resources with a user resource scope attribute, defining a schema for comparing of a plurality of values of the user resource scope attribute with the resource group label attribute, wherein the at least one of the plurality of available users having authority to perform one of creating, modifying, delete, and managing the plurality of storage resources associated with the at least one of the plurality of resource groups and also authority to perform one of creating and modifying at least one of the plurality of resource groups, assigning a parent resource group attribute to at least one of the resource group object that identifies another one of the plurality of resource groups as a parent of the plurality of resource groups such that a specified one of the plurality of resource groups may be hierarchically related to at least one child resource group, constraining the resource group label attribute of the parent of the plurality of resource groups and the at least one child resource group such that a resource scope may be defined to match a subset of a set of the plurality of resource groups consisting of at least one of the plurality of resource groups and at least one of the descendants of the plurality of resource groups, and requiring the plurality of management policies specified in at least one policy attribute of the at least one child resource group be as restrictive as the plurality of management policies specified in the at least one policy attribute of the parent of the plurality of resource groups. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer program product for establishing hierarchical user management authority for storage resources organized into a plurality of resource groups in a computing storage environment by a processor device, the computer program product comprising a non-transitory computer-readable storage medium having computer-readable program code portions stored therein, the computer-readable program code portions comprising:
-
an executable portion for associating the plurality of storage resources with a resource group object, the resource group object and a storage resource object by having a resource group attribute associating the storage resource object with one of the plurality of resource groups; an executable portion for assigning a resource group label attribute to the resource group object; an executable portion for defining at least one additional attribute of the resource group object that specify a plurality of management policies for the resource group object and the plurality of storage resources associated with the resource group object; an executable portion for associating at least one of a plurality of available users of the plurality of storage resources with a user resource scope attribute; an executable portion for defining a schema for comparing of a plurality of values of the user resource scope attribute with the resource group label attribute, wherein the at least one of the plurality of available users having authority to perform one of creating, modifying, delete, and managing the plurality of storage resources associated with the at least one of the plurality of resource groups and also authority to perform one of creating and modifying at least one of the plurality of resource groups; an executable portion for assigning a parent resource group attribute to at least one of the resource group object that identifies another one of the plurality of resource groups as a parent of the plurality of resource groups such that a specified one of the plurality of resource groups may be hierarchically related to at least one child resource group; an executable portion for constraining the resource group label attribute of the parent of the plurality of resource groups and the at least one child resource group such that a resource scope may be defined to match a subset of a set of the plurality of resource groups consisting of at least one of the plurality of resource groups and at least one of the descendants of the plurality of resource groups; and an executable portion for requiring the plurality of management policies specified in at least one policy attribute of the at least one child resource group be as restrictive as the plurality of management policies specified in the at least one policy attribute of the parent of the plurality of resource groups. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification