Integrated user profile administration tool
First Claim
1. A computer system for managing application passwords and user authority levels via a user profile administration tool integrated with a single sign-on system, comprising:
- a plurality of authentication databases for a plurality of applications accessible to a user, wherein each application of the plurality of applications is associated with one of the plurality of authentication databases, and wherein each authentication database of the plurality of authentication databases stores an application password for a corresponding application of the plurality of applications;
a single sign-on system with a data store storing a user profile of the user, wherein the user profile includes a plurality of application passwords for the plurality of applications for which the user has access and authority levels of the user for the plurality of applications, and wherein the single sign-on system, responsive to the user being signed-on to the single sign-on system using a single sign-on password, enables the user to access each application of the plurality of applications in accordance with a corresponding authority level of the user for the application in the user profile using a corresponding application password for the application in the user profile; and
a user profile administration tool that validates, via bulk provisioning functions, a template file that matches a format of a downloaded template file and that comprises required information for each user profile of a group of user profiles associated with the template file, the user profile administration tool comprising;
a password provisioning component stored in a non-transitory memory, that when executed by a processor after validation of the template file, resets, for a first application of the plurality of applications, a first application password of the plurality of application passwords stored in a first authentication database of the plurality of authentication databases to a reset application password without the user being aware of the reset of the first application password, wherein the user profile administration tool automatically synchronizes the reset application password in the first authentication database with the first application password for the first application in the user profile, anda role manager component stored in a non-transitory memory, that when executed by a processor, changes, for the first application, a first authority level of the user in the user profile to a new authority level based on the user changing roles, wherein the new authority level grants the user different access rights to the first application than the first authority level, and wherein the single sign-on system, responsive to the user being signed-on to the single sign-on system using the single sign-on password, enables the user to access the first application in accordance with the new authority level in the user profile using the reset application password for the first application in the user profile.
4 Assignments
0 Petitions
Accused Products
Abstract
A computer system is provided including a single sign-on system with applications and a data store storing user profiles, each including a user ID, wherein each of the user profiles has a corresponding application password for one or more of the applications, and a user profile administration tool. The user profile administration tool includes a password provisioning section where an administrator selects a user profile and further selects an application type. The application type includes an application type wherein the administrator resets the password for one or more of the applications. The application type also includes a stand-alone application type wherein the administrator resets a password for a stand-alone application. The user profile administration tool further includes a password synchronizing section wherein the user profile administration tool automatically synchronizes the application passwords with each of the corresponding user profiles.
84 Citations
19 Claims
-
1. A computer system for managing application passwords and user authority levels via a user profile administration tool integrated with a single sign-on system, comprising:
-
a plurality of authentication databases for a plurality of applications accessible to a user, wherein each application of the plurality of applications is associated with one of the plurality of authentication databases, and wherein each authentication database of the plurality of authentication databases stores an application password for a corresponding application of the plurality of applications; a single sign-on system with a data store storing a user profile of the user, wherein the user profile includes a plurality of application passwords for the plurality of applications for which the user has access and authority levels of the user for the plurality of applications, and wherein the single sign-on system, responsive to the user being signed-on to the single sign-on system using a single sign-on password, enables the user to access each application of the plurality of applications in accordance with a corresponding authority level of the user for the application in the user profile using a corresponding application password for the application in the user profile; and a user profile administration tool that validates, via bulk provisioning functions, a template file that matches a format of a downloaded template file and that comprises required information for each user profile of a group of user profiles associated with the template file, the user profile administration tool comprising; a password provisioning component stored in a non-transitory memory, that when executed by a processor after validation of the template file, resets, for a first application of the plurality of applications, a first application password of the plurality of application passwords stored in a first authentication database of the plurality of authentication databases to a reset application password without the user being aware of the reset of the first application password, wherein the user profile administration tool automatically synchronizes the reset application password in the first authentication database with the first application password for the first application in the user profile, and a role manager component stored in a non-transitory memory, that when executed by a processor, changes, for the first application, a first authority level of the user in the user profile to a new authority level based on the user changing roles, wherein the new authority level grants the user different access rights to the first application than the first authority level, and wherein the single sign-on system, responsive to the user being signed-on to the single sign-on system using the single sign-on password, enables the user to access the first application in accordance with the new authority level in the user profile using the reset application password for the first application in the user profile. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer implemented method for managing application passwords and user authority levels via a user profile administration tool integrated with a single sign-on system, comprising:
-
for each application of a plurality of applications accessible to a user, storing an application password for the application in an authentication database of a plurality of authentication databases, wherein each application of the plurality of applications is associated with one of the plurality of authentication databases; storing a user profile of the user in a data store associated with a single sign-on system, wherein the user profile includes a plurality of application passwords for the plurality of applications for which the user has access and authority levels of the user for the plurality of applications; responsive to the user being signed-on to the single sign-on system using a single sign-on password, enabling, by the single sign-on system, the user to access each application of the plurality of applications in accordance with a corresponding authority level of the user for the application in the user profile using a corresponding application password for the application in the user profile; validating, by a user profile administration tool stored in a non-transitory memory and executable by a processor via bulk provisioning functions, a template file that matches a format of a downloaded template file and that comprises required information for each user profile of a group of user profiles associated with the template file; for a first application of the plurality of applications and after validation of the template file, resetting, by a password provisioning component of the user profile administration tool, a first application password of the plurality of application passwords stored in a first authentication database of the plurality of authentication databases to a reset application password without the user being aware of the reset of the first application password; automatically synchronizing, by the user profile administration tool, the reset application password in the first authentication database with the first application password for the first application in the user profile; for the first application, changing, by a role manager component of the user profile administration tool, a first authority level of the user in the user profile to a new authority level based on the user changing roles, wherein the new authority level grants the user different access rights to the first application than the first authority level; and responsive to the user being signed-on to the single sign-on system using the single sign-on password, enabling, by the single sign-on system, the user to access the first application in accordance with the new authority level in the user profile using the reset application password for the first application in the user profile. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification