×

Configurable adaptive access manager callouts

  • US 9,531,697 B2
  • Filed: 04/30/2014
  • Issued: 12/27/2016
  • Est. Priority Date: 09/29/2011
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method comprising:

  • storing, at an authorization server computer, a mapping between an adaptive access manager and an identity domain of a plurality of identity domains;

    receiving, at the authorization server computer, an authentication request for a user associated with the identity domain, wherein the authentication request includes one or more attributes, the one or more attributes identifying a source by which the authentication request was communicated;

    in response to receiving the authentication request, determining, based on the mapping, that the adaptive access manager is associated with the identity domain with which the user is associated;

    in response to determining that the adaptive access manager is associated with the identity domain with which the user is associated, applying an identity domain-specific policy of the identity domain to the authentication request based on the one or more attributes of the authentication request;

    determining, based on applying the identity domain-specific policy to the authentication request, whether to call the adaptive access manager to determine a process for authenticating the user for the authentication request;

    upon determining to call the adaptive access manager, sending, at the authorization server computer, a request to the adaptive access manager for information defining an authentication process for authenticating the user for the authentication request;

    receiving, at the authorization server computer, from the adaptive access manager, a response including the information defining the authentication process;

    determining, based on the information defining the authentication process, to perform a different authentication process, the different authentication process being distinct from a standard authentication process to authenticate the user for the authentication request; and

    in response to determining to perform the different authentication process, the authorization server computer performing the different authentication process to authenticate the user for the authentication request.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×