Controlling access to objects on multiple operating systems
First Claim
1. A method for controlling access to an entity on a network, the entity comprising one of a plurality of different types of entities that are controlled by a plurality of different operating systems, comprising the steps of:
- (a) identifying each trustee that can have access permissions to the entity, by querying a network operating system that controls access to the entity;
(b) selecting a generic request to control access to the entity from a set of predefined generic requests;
(c) translating the generic request for access control to the entity into a format usable by the network operating system that controls access to the entity; and
(d) causing the network operating system that controls access to the entity to implement the generic request in said format.
2 Assignments
0 Petitions
Accused Products
Abstract
A method and system for controlling access to entities on a network on which a plurality of servers are installed that use different operating systems. A request is entered by a user at a workstation on the network to set access permissions to an entity on the network in regard to a trustee. In response to the request, various application programming interfaces (APIs) are called to translate the generic request to set permissions on the entity into a format appropriate for the operating system that controls the entity. Assuming that the user has the appropriate rights to set access permissions to the entity as requested, and assuming that the trustee identified by the user is among those who can have rights set to the entity, the request made by the user is granted. Entities include both "containers" and "objects." Entities are either software, such as directories (containers) and files (objects), or hardware, such as printers (objects).
314 Citations
22 Claims
-
1. A method for controlling access to an entity on a network, the entity comprising one of a plurality of different types of entities that are controlled by a plurality of different operating systems, comprising the steps of:
-
(a) identifying each trustee that can have access permissions to the entity, by querying a network operating system that controls access to the entity; (b) selecting a generic request to control access to the entity from a set of predefined generic requests; (c) translating the generic request for access control to the entity into a format usable by the network operating system that controls access to the entity; and (d) causing the network operating system that controls access to the entity to implement the generic request in said format. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for controlling access to an entity on a network that is coupled to servers employing different operating systems, the entity comprising one of a plurality of different types of entities controlled by the different operating systems, comprising the steps of:
-
(a) presenting a user with an option to control access to the entity by selecting one access control option from a predefined plurality of access control options; (b) enabling the user to identify a trustee to whom said one access control option will apply; (c) determining that the user has permission to control access to the entity with said one access control option; (d) automatically identifying the operating system that controls the entity and determining that the trustee identified by the user has permission to access the entity in accordance with said one access control option, by checking an access control list for the entity on said operating system; (e) translating said one access control option into a request for setting an access to the entity by the trustee corresponding to said one access control option, where the request is in a format used by a server associated with the entity for setting the access to the entity under said operating system; and (f) transmitting said request to said server, said server responding to receipt of the request by setting the access to the entity in accordance with the request. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A system for controlling access to an entity on a network, the entity comprising one of a plurality of different types of entities that are associated with a plurality of different operating systems, said system comprising:
a processor in which a plurality of machine instructions are executed to control the access to an entity, execution of said machine instructions on the processor comprising; (a) means for enabling the user to specify at least one of a plurality of predefined generic requests for use in controlling access to the entity, said predefined generic requests being independent of the plurality of different operating systems that are associated with the entities; and (b) translation means for translating said at least one predefined generic request for controlling access to the entity into a system request having a format usable by a network operating system running on a server associated with the entity, in order to cause the network operating system running on said server to implement the system request and to set access to the entity accordingly. - View Dependent Claims (19, 20, 21, 22)
Specification