Automated compliance exception approval
First Claim
1. A computer-implemented method for automated approval of a non-compliance of a modified configuration of a first computer system with one or more compliance rules,the method comprising:
- receiving by a first package management system a pre-approved modification pattern in form of a software package comprising a modification pattern specifying one or more modifications to be applied to a first configuration of the first computer system and one or more compliance exception pre-approvals assigned to the respective modification pattern, each of the respective pre-approvals specifying a pre-approved non-compliance of one or more of the respective modifications with the one or more compliance rules,deploying the respective pre-approved modification pattern by modifying the first configuration according to the modification pattern and providing the one or more compliance exception pre-approvals to a first compliance management system,performing a compliance check of the resulting modified configuration of the first computer system by the respective first compliance management system,in response to detecting a non-compliance with the one or more compliance rules, comparing the detected non-compliance with the one or more pre-approved non-compliances by the compliance management system,in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the first compliance management system.
4 Assignments
0 Petitions
Accused Products
Abstract
The invention relates to a computer-implemented method for automated approval of a non-compliance of a modified configuration of a computer system with one or more compliance rules, the method comprising: receiving by a package management system a pre-approved modification pattern in form of a software package, deploying a modification pattern of the software package and providing compliance exception pre-approvals of the software package to a compliance management system, performing a compliance check of the resulting modified configuration of the computer system, in response to detecting a non-compliance with a compliance rule, comparing the detected non-compliance with the one or more pre-approved non-compliances, in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the compliance management system.
20 Citations
20 Claims
-
1. A computer-implemented method for automated approval of a non-compliance of a modified configuration of a first computer system with one or more compliance rules,
the method comprising: -
receiving by a first package management system a pre-approved modification pattern in form of a software package comprising a modification pattern specifying one or more modifications to be applied to a first configuration of the first computer system and one or more compliance exception pre-approvals assigned to the respective modification pattern, each of the respective pre-approvals specifying a pre-approved non-compliance of one or more of the respective modifications with the one or more compliance rules, deploying the respective pre-approved modification pattern by modifying the first configuration according to the modification pattern and providing the one or more compliance exception pre-approvals to a first compliance management system, performing a compliance check of the resulting modified configuration of the first computer system by the respective first compliance management system, in response to detecting a non-compliance with the one or more compliance rules, comparing the detected non-compliance with the one or more pre-approved non-compliances by the compliance management system, in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the first compliance management system. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A computer-implemented method for automated approval of a non-compliance of a modified configuration of a computer system with one or more compliance rules by a compliance management system,
the method comprising: -
performing a compliance check of the modified configuration of the computer system by the compliance management system, the modified configuration of the computer system resulting from deploying a pre-approved modification pattern by a package management system modifying an initial configuration of the computer system according to a modification pattern, the modification pattern being provided by a pre-approved modification pattern in form of a software package comprising the modification pattern specifying one or more modifications to be applied to the initial configuration of the computer system and one or more compliance exception pre-approvals assigned to the respective modification pattern, each of the respective pre-approvals specifying a pre-approved non-compliance of one or more of the respective modifications with the one or more compliance rules, in response to detecting a non-compliance with the one or more compliance rules, comparing the detected non-compliance with the one or more pre-approved non-compliances from the software package provided to the compliance management system by the package management system, in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the compliance management system.
-
-
19. A computer program product for automated approval of a non-compliance of a modified configuration of a first computer system with one or more compliance rules, the computer program product comprising a computer readable storage medium having program instructions embodied therewith, the program instructions executable by a processor being configured to cause the processor to control a computer system to execute a method comprising:
-
receiving by a package management system a pre-approved modification pattern in form of a software package comprising a modification pattern specifying one or more modifications to be applied to a configuration of the computer system and one or more compliance exception pre-approvals assigned to the respective modification pattern, each of the respective pre-approvals specifying a pre-approved non-compliance of one or more of the respective modifications with the one or more compliance rules, deploying the respective pre-approved modification pattern by modifying the configuration according to the modification pattern and providing the one or more compliance exception pre-approvals to a compliance management system, performing a compliance check of the resulting modified configuration of the computer system by the respective compliance management system, in response to detecting a non-compliance with the one or more compliance rules, comparing the detected non-compliance with the one or more pre-approved non-compliances by the compliance management system, in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the compliance management system.
-
-
20. A computer system for automated approval of a non-compliance of a modified configuration of a first computer system with one or more compliance rules, the computer system comprising a memory for storing machine executable instructions and a processor for executing the machine executable instructions, execution of the machine executable instructions by the processor causing the processor to control the computer system to execute a method comprising:
-
receiving by a package management system a pre-approved modification pattern in form of a software package comprising a modification pattern specifying one or more modifications to be applied to a configuration of the computer system and one or more compliance exception pre-approvals assigned to the respective modification pattern, each of the respective pre-approvals specifying a pre-approved non-compliance of one or more of the respective modifications with the one or more compliance rules, deploying the respective pre-approved modification pattern by modifying the configuration according to the modification pattern and providing the one or more compliance exception pre-approvals to a compliance management system, performing a compliance check of the resulting modified configuration of the computer system by the respective compliance management system, in response to detecting a non-compliance with the one or more compliance rules, comparing the detected non-compliance with the one or more pre-approved non-compliances by the compliance management system, in response to a matching of the detected non-compliance with one or more of the respective pre-approved non-compliances, automatically approving the detected non-compliance by the compliance management system.
-
Specification