logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 7093125 B1

PDFFull Text
Date of Patent:
Aug. 15, 2006

Filed:

May. 08, 2001

Rote based tool delegation

Applicants:

Mary Thomas Robb, Fort Collins, CO (US);

Richard D. Harrah, Seattle, WA (US);

Jeffrey R. Finz, Portland, OR (US);

Humberto A. Sanchez, Ii, Fort Collins, CO (US);

Douglas P. Drees, Fort Collins, CO (US);

Terence E. Lister, Fort Collins, CO (US);

Paula Curtis, Windsor, CO (US);

Inventors:

Mary Thomas Robb, Fort Collins, CO (US);

Richard D. Harrah, Seattle, WA (US);

Jeffrey R. Finz, Portland, OR (US);

Humberto A. Sanchez, II, Fort Collins, CO (US);

Douglas P. Drees, Fort Collins, CO (US);

Terence E. Lister, Fort Collins, CO (US);

Paula Curtis, Windsor, CO (US);

Assignee:

Hewlett-Packard Development Company, L.P., Houston, TX (US);

Attorney:
Primary Examiner:

Gilberto Barrón, Jr

Assistant Examiner:

Benjamin E Lanier

Int. Cl.
CPC ...
H04L 9/00 (2006.01); H04L 9/32 (2006.01); H04K 1/00 (2006.01); G06F 7/04 (2006.01); G06F 17/30 (2006.01); G06K 9/00 (2006.01);
U.S. Cl.
CPC ...
Abstract

A method and apparatus for delegating root access to non-root users of a computer system while maintaining computer system security are disclosed. Such a method may include authorizing a role for a user, wherein the authorized role includes one or more tools and the tools enable root access for certain tasks that the tools perform when run, whereby the one or more tools are delegated to the user and authorizing a machine of the computer system for the authorized role, wherein the computer system comprises a plurality of machines and the user is enabled to utilize the authorized role only on authorized machines, whereby utilizing the authorized role comprises running the one or more tools of the authorized role. Embodiments of the invention may comprise authorization objects that comprise attributes identifying a user and the roles and machine for which the user is authorized.

Find Patent Forward Citations

Loading…