Managing credentials in a computer system
First Claim
Patent Images
1. An apparatus, comprising:
- a management host comprising a first processor and a first memory storing instructions that, when executed, manage credentials, said credentials being utilized between a first managed host comprising a second memory storing instructions that perform functions of a client and a second managed host comprising a third memory storing instructions that perform functions of the server, and storage of credentials for at least one of the first managed host and the second managed host being arranged externally from the first managed host and the second managed host,wherein the instructions stored in the first memory, when executed, cause information to be discovered about the first managed host and the second managed host by collecting the information about the first managed host and the second managed host and automatic management of the credentials for at least one of the first managed host and the second managed host based on the collected information.
1 Assignment
0 Petitions
Accused Products
Abstract
Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.
-
Citations
21 Claims
-
1. An apparatus, comprising:
-
a management host comprising a first processor and a first memory storing instructions that, when executed, manage credentials, said credentials being utilized between a first managed host comprising a second memory storing instructions that perform functions of a client and a second managed host comprising a third memory storing instructions that perform functions of the server, and storage of credentials for at least one of the first managed host and the second managed host being arranged externally from the first managed host and the second managed host, wherein the instructions stored in the first memory, when executed, cause information to be discovered about the first managed host and the second managed host by collecting the information about the first managed host and the second managed host and automatic management of the credentials for at least one of the first managed host and the second managed host based on the collected information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
managing credentials utilized between a first managed host comprising a first memory storing instructions that perform functions of a client and a second managed host comprising a second memory storing instructions that perform functions of a server, said credentials for at least one of said managed hosts being stored externally from said managed hosts, wherein said managing is performed by a management host comprising a processor and third memory storing instructions that perform functions of the managing comprising; discovering information about said managed hosts by collecting the information about the first managed host and the second managed host; and managing automatically said credentials stored externally from said managed hosts based on the discovered information. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A non-transitory computer program comprising computer readable program code embodied therein, operable to cause a management host comprising a processor and a first memory storing instructions therein to manage credentials utilized between a first managed host comprising a second memory storing instructions that perform functions of a client and a second managed host comprising a third memory storing instructions that perform functions of the server, wherein said credentials are stored externally from managed hosts, further operable to
discover information about said managed hosts by collecting the information about the first managed host and the second managed host; - and
manage automatically said credentials based on the discovered information.
- and
-
21. A system, comprising at least a manager apparatus comprising a processor and a first memory storing instructions that perform management functions, a first managed host comprising a second memory storing instructions that perform functions of a client, and a second managed host comprising a third memory storing instructions that perform functions of a server, wherein the manager apparatus is external to the first managed host and the second managed host, and wherein the instructions stored in the first memory, when executed:
-
manage credentials utilized between the first managed host and the second managed host, said keys for at least one of the managed hosts being stored externally from said at least one managed host, discover information about said managed hosts by collecting the information about the first managed host and the second managed host, and automatically manage said credentials based on the discovered information.
-
Specification