ROLE-BASED ACCESS TOOL

摘要

The tool to provide a role-based access tool is configured to receive a single sign-on login from a user; determine an identity of the user based on the single sign-on login; authorize a defined role of the user by: accessing a database comprising a plurality of users and associated roles; and determining the defined role based on the user's identity and the associated roles in the database; present one or more service catalogs to the user based on the defined role of the user; receive a request to complete an action associated with the one or more service catalogs; process the action for execution after receiving the request; and run the action on one or more systems.

主权项

1. A computer program product for providing a role-based access tool, the computer program product comprising at least one non-transitory computer-readable medium having computer-readable program code portions embodied therein, the computer-readable program code portions comprising:
an executable portion configured to receive a single sign-on login from a user; an executable portion configured to determine an identity of the user based on the single sign-on login; an executable portion configured to authorize a defined role of the user by:
accessing a database comprising a plurality of users and associated roles;determining a level of the user in an organization; anddetermining the defined role based on the identity of the user and the associated roles in the database and the level of the user;wherein the level is selected from the group consisting of a system administrator, a middleware administrator, a midrange administrator, a database administrator, and an application support specialist; an executable portion configured to present one or more service catalogs to the user based on the defined role of the user, wherein the one or more service catalogs comprise a listing of actions; an executable portion configured to receive a request to complete an action associated with the listing of actions from the one or more service catalogs, wherein the request comprises one or more systems on which to complete the action; an executable portion configured to process the action for execution after receiving the request by:
identifying system parameters associated with the action;evaluating each of the one or more systems on which the action will be run to determine whether each of the one or more systems meet the system parameters;determining that each of the one or more systems meet the system parameters; andvalidating the action based on determining that each of the one or more systems meet the system parameters; and an executable portion configured to run the action on each of the one or more systems, wherein the user does not provide an additional sign-in login for each of the one or more systems.