Enumerated roles in a directory system

US 7,016,907 B2
Filed: 05/29/2001
Issued: 03/21/2006
Est. Priority Date: 05/29/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method of grouping entries in a directory server, said directory server comprising roles, the method comprising:

defining a plurality of entries in the directory server, wherein at least one the plurality of entries are associated with an enumerated role;

defining an enumerated role entry corresponding to the enumerated role, wherein the enumerated role entry comprises a plurality of group member attributes and the at least one of the plurality of entries is associated with at least one of the plurality of group member attributes;

determining which of the plurality of entries possess the enumerated role by querying the plurality of group member attributes in the enumerated role entry; and

providing the plurality of entries that possess the enumerated role to a client,wherein the at least one of the plurality of entries comprising the enumerated role is within a scope of the enumerated role entry.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Role is a comprehensive grouping mechanism used in a directory server. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Assigning entries to roles enables applications to locate the roles of a target entry, rather than select a group and browse the members list. By changing a role definition, a user can change an entire organization with ease. Any client with appropriate access privileges can discover, identify and examine any role definition.

An enumerated role is one that contains a list of target entries as members. By simply searching for the membership of the enumerated role, a client application will obtain a list of all members that possess that enumerated role.

168 Citations

6 Claims

1. A method of grouping entries in a directory server, said directory server comprising roles, the method comprising:
- defining a plurality of entries in the directory server, wherein at least one the plurality of entries are associated with an enumerated role;
  
  defining an enumerated role entry corresponding to the enumerated role, wherein the enumerated role entry comprises a plurality of group member attributes and the at least one of the plurality of entries is associated with at least one of the plurality of group member attributes;
  
  determining which of the plurality of entries possess the enumerated role by querying the plurality of group member attributes in the enumerated role entry; and
  
  providing the plurality of entries that possess the enumerated role to a client,wherein the at least one of the plurality of entries comprising the enumerated role is within a scope of the enumerated role entry.
- View Dependent Claims (2, 3)
- - 2. The method as in claim 1, further comprising:
    - rejecting the at least one of the plurality of entries that possess the enumerated role if the at least one of the plurality of entries possesses a nested role.
  - 3. The method as in claim 1, wherein the directory server support LightWeight Directory Access Protocol (LDAP).

4. A directory server, comprising:
- a plurality of entries in the directory server, wherein at least one the plurality of entries comprises an enumerated role;
  
  an enumerated role entry corresponding to the enumerated role, wherein the enumerated role entry comprises a plurality of group member attributes and the at least one of the plurality of entries is associated with at least one of the plurality of group member attributesfunctionality to determine which of the plurality of entries possess the enumerated role by querying the plurality of group member attributes in the enumerated role entry; and
  
  functionality to provide the plurality of entries that possess the enumerated role to a client,wherein the at least one of the plurality of entries comprising the enumerated role is within a scope of the enumerated role entry.
- View Dependent Claims (5, 6)
- - 5. The directory server as in claim 4, further comprising functionality toreject the at least one of the plurality of entries that possess the enumerated role if the at least one of the plurality of entries possesses a nested role.
  - 6. The directory server as in claim 4, wherein the directory server support LightWeight Directory Access Protocol (LDAP).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle America, Inc. (Oracle Corporation)
Original Assignee
Sun Microsystems Incorporated (Oracle Corporation)
Inventors
Rowley, Peter, Boreham, David, Smith, Mark C.
Primary Examiner(s)
Ali, Mohammad
Assistant Examiner(s)
Lu, Kuen S.

Application Number

US09/867,508
Publication Number

US 20030037044A1
Time in Patent Office

1,757 Days
Field of Search

709/203, 707/101, 707/102, 707/104.1, 707/3
US Class Current

1/1
CPC Class Codes

G06F 16/10   File systems; File servers

Y10S 707/99933   Query processing, i.e. sear...

Y10S 707/99942   Manipulating data structure...

Y10S 707/99943   Generating database or data...

Y10S 707/99945   Object-oriented database st...

Enumerated roles in a directory system

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

168 Citations

6 Claims

Specification

Use Cases

Quick Links

Others

Enumerated roles in a directory system

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

168 Citations

6 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others