IDiyas

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 9460277 B1

PDFFull Text
Date of Patent:
Oct. 04, 2016

Filed:

Dec. 06, 2010

Identity based auditing in a multi-product environment

Applicants:

Christian Bolik, Boeblingen, DE;

Neeta Garimella, San Jose, CA (US);

Jayashree Ramanathan, Round Rock, TX (US);

Markus Rohwedder, Boeblingen, DE;

Zhiguo Huang, Oro Valley, AZ (US);

Inventors:

Christian Bolik, Boeblingen, DE;

Neeta Garimella, San Jose, CA (US);

Jayashree Ramanathan, Round Rock, TX (US);

Markus Rohwedder, Boeblingen, DE;

Zhiguo Huang, Oro Valley, AZ (US);

Assignee:

International Business Machines Corporation, Armonk, NY (US);

Attorneys:

Richard A. Wilhelm

David H. Judson

Primary Examiner:

Syed Zaidi

Int. Cl.
CPC ...
G06F 21/00 (2013.01); G06F 21/31 (2013.01);
U.S. Cl.
CPC ...
G06F 21/31 (2013.01); G06F 2221/2101 (2013.01);
Abstract

An identity of a user performing an operation with respect to an application is propagated, from a point at which the user authenticates, to one or more other applications in a multi-product environment. The application may be a management console associated with an information cluster. In an embodiment, an administrator logs on to a management console (using an identity) and invokes a management operation. The management console then performs a programmatic remote access login (e.g., using SSH/RXA) to one or more nodes using a system account, invokes an application, and passes in the identity. As the application performs one or more management operations, audit events are logged, and these events each contain the identity that has been passed in by the management console during the SSH/RXA login. The technique thus provides a method for identity-based auditing in an environment having a plurality of applications, where each application typically has a respective authentication process or mechanism and distinct identity registries.

Find Patent Forward Citations

Loading…