System and method for storage operation access security

  • US 8,762,335 B2
  • Filed: 05/21/2013
  • Issued: 06/24/2014
  • Est. Priority Date: 10/17/2006
  • Status: Active Grant
First Claim
Patent Images

1. A method for execution by at least one processor to manage users in a data management system, wherein the data management system manages secondary copies of data files, the method comprising:

  • adding a user of the data management system to a previously created group within the data management system,wherein the group associates one or more users with at least one access right for performing storage operations;

    receiving a request from the user to perform a storage operation,wherein the storage operation is to create a secondary copy of a production data file;

    causing a security system to be queried to determine access rights of the user,wherein the access rights relate to the user'"'"'s rights to access the production data file, and,causing the requested storage operation to be performed when the access rights permit the user to request the requested storage operation,wherein the secondary copy is used to restore production data from the production file from which the secondary copy is created;

    wherein causing the security system to be queried to determine the access rights includes determining one or more computers through which the user has access,wherein the access rights permit the data management system to perform the requested storage operation if the production data file is associated with one of the determined one or more computers;

    wherein adding the user to the created group within the data management system includes associating the created group with the user in the security system; and

    wherein the at least one access right for performing storage operations determines which data a user within the group can access.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×