Automated desktop placement

US 9,515,954 B2
Filed: 03/09/2016
Issued: 12/06/2016
Est. Priority Date: 03/11/2013
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, the method comprising:

as implemented by one or more computing devices configured with specific computer-executable instructions,receiving a request from a computing device of an entity to access a computing resource at a data center, the data center providing access to one or more computing resources;

determining an identity of a sub-entity of the entity associated with the request from the computing device, the entity comprising a plurality of sub-entities;

determining an access rule for accessing the computing resource from a plurality of access rules based at least partially on the identity of the sub-entity, wherein at least some of the plurality of access rules reduce the effect of a system failure of at least one computing resource at the data center on access to the computing resource by the entity;

identifying an instance of the computing resource at the data center based at least partially on the access rule; and

providing the computing device with access to the instance of the computing resource.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are presented for enabling a user to provide rules for the placement of computing resources at a data center for an entity that employs or is associated with the user. The data center can use the placement rules to select a data center computer system to host computing resources for a user. The rules can be used to establish diversity in computing resource placement at the data center thereby reducing the number of users who lose access to computing resources when a specific data center computer suffers a failure. Further, the placement rules can be used to facilitate configuration of the computer resources for the user based, for example, on the user'"'"'s employment responsibilities.

144 Citations

20 Claims

1. A computer-implemented method, the method comprising:
- as implemented by one or more computing devices configured with specific computer-executable instructions,receiving a request from a computing device of an entity to access a computing resource at a data center, the data center providing access to one or more computing resources;
  
  determining an identity of a sub-entity of the entity associated with the request from the computing device, the entity comprising a plurality of sub-entities;
  
  determining an access rule for accessing the computing resource from a plurality of access rules based at least partially on the identity of the sub-entity, wherein at least some of the plurality of access rules reduce the effect of a system failure of at least one computing resource at the data center on access to the computing resource by the entity;
  
  identifying an instance of the computing resource at the data center based at least partially on the access rule; and
  
  providing the computing device with access to the instance of the computing resource.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The computer-implemented method of claim 1, wherein providing the computing device with access to the instance of the computing resource comprises providing the computing device with access to an active instance of the computing resource.
  - 3. The computer-implemented method of claim 1, wherein at least some of the plurality of access rules are associated with a different sub-entity than at least some other of the plurality of access rules.
  - 4. The computer-implemented method of claim 1, further comprising:
    - receiving a second request from a second computing device of the entity to access the computing resource at the data center; and
      
      in response to determining that the second computing device is associated with the sub-entity of the entity that is associated with the computing device, preventing the second computing device from having access to the instance of the computing resource.
  - 5. The computer-implemented method of claim 4, further comprising providing the second computing device with access to a second instance of the computing resource.
  - 6. The computer-implemented method of claim 4, wherein determining that the second computing device is associated with the sub-entity of the entity comprises determining that a user of the second computing device is associated with the sub-entity.
  - 7. The computer-implemented method of claim 1, wherein identifying the instance of the computing resource at the data center comprises:
    - identifying a computing system at the datacenter based at least in part on the access rule; and
      
      allocating the instance of the computing resource on the identified computing system for the computing device.
  - 8. The computer-implemented method of claim 7, wherein providing the computing device with access to the instance of the computing resource comprises providing the computing device with access to the allocated instance of the computing resource on the identified computing system.
  - 9. The computer-implemented method of claim 1, wherein the access rule is provided by a user with administrative privileges for the sub-entity.

10. A system comprising:
- an electronic data store configured to at least store a plurality of access rules; and
  
  a hardware processor in communication with the electronic data store, the hardware processor configured to execute computer-executable instructions to at least;
  
  receive a request from a computing device of an entity to access a computing resource at a data center;
  
  determine an identity of a sub-entity associated with a first user who is associated with the request, the entity comprising a plurality of sub-entities including the sub-entity;
  
  determine an access rule for accessing the computing resource from a plurality of access rules based at least partially on the identity of the sub-entity, wherein at least some of the plurality of access rules reduce the effect of a system failure at the data center on access to the computing resource by the entity;
  
  identify an instance of the computing resource at the data center based at least partially on the access rule; and
  
  provide the computing device with access to the instance of the computing resource.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The system of claim 10, wherein the hardware processor is further configured to execute computer-executable instructions to at least:
    - receive a second request from a second computing device of the entity to access the computing resource at the data center; and
      
      in response to determining that the second computing device is associated with the sub-entity, prevent the second computing device from having access to the instance of the computing resource.
  - 12. The system of claim 11, wherein the hardware processor is further configured to execute computer-executable instructions to at least provide the second computing device with access to a second instance of the computing resource.
  - 13. The system of claim 11, wherein determining that the second computing device is associated with the sub-entity of the entity comprises determining a role of a second user at the entity, the second user associated with the second computing device.
  - 14. The system of claim 10, wherein the hardware processor is further configured to execute computer-executable instructions to at least:
    - identify a computing system at the datacenter based at least in part on the access rule; and
      
      allocate the instance of the computing resource on the identified computing system for access by the computing device.
  - 15. The system of claim 14, wherein the hardware processor is further configured to execute computer-executable instructions to at least:
    - receive the access rule from a second user associated with the sub-entity;
      
      determine whether the second user is authorized to provide the access rule for the sub-entity; and
      
      in response to determining that the second user is authorized to provide the access rule, associate the access rule with the sub-entity at the electronic data store.

16. A computer-readable, non-transitory storage medium storing computer executable instructions that, when executed by one or more computing devices, configure the one or more computing devices to perform operations comprising:
- receiving a request associated with a first user from a computing device of the first user to access a computing resource at a data center;
  
  determining an identity of a sub-entity associated, with the first user from a plurality of sub-entities of an entity;
  
  determining an access rule for accessing the computing resource from a plurality of access rules based at least partially on the identity of the sub-entity, wherein at least some of the plurality of access rules reduce the effect of a system failure at the data center on access to the computing resource by the entity;
  
  identifying an instance of the computing resource at the data center based at least partially on the access rule; and
  
  providing the computing device with access to the instance of the computing resource.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The computer-readable, non-transitory storage medium of claim 16, wherein the data center is one of a plurality of data centers that are geographically distributed and wherein the access rule is configured to distribute access to the computing resource among the plurality of data centers.
  - 18. The computer-readable, non-transitory storage medium of claim 16, wherein the operations further comprise:
    - receiving a second request from a second computing device of the entity to access the computing resource at the data center; and
      
      in response to determining that the second computing device is associated with the sub-entity, preventing the second computing device from having access to the instance of the computing resource.
  - 19. The computer-readable, non-transitory storage medium of claim 16, wherein the operations further comprise:
    - identifying a computing system at the datacenter based at least in part on the access rule; and
      
      allocating the instance of the computing resource on the identified computing system for access by the computing device.
  - 20. The computer-readable, non-transitory storage medium of claim 16, wherein the operations further comprise:
    - receiving the access rule from a second user associated with the sub-entity;
      
      determining whether the second user is authorized to provide the access rule for the sub-entity; and
      
      in response to determining that the second user is authorized to provide the access rule, associate the access rule with the sub-entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Suryanarayanan, Deepak, Brown, David Everard, Ah Kun, Malcolm Russell, Farrell, Eugene Michael
Primary Examiner(s)
KATSIKIS, KOSTAS J

Application Number

US15/065,026
Publication Number

US 20160191410A1
Time in Patent Office

272 Days
Field of Search

709/217, 709/225, 709/226
US Class Current

1/1
CPC Class Codes

H04L 47/70   Admission control; Resource...

H04L 67/10   in which an application is ...

H04L 67/1097   for distributed storage of ...

H04L 67/306   User profiles

H04L 67/63   Routing a service request d...

Automated desktop placement

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

144 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Automated desktop placement

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

144 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links