| 发明名称 | Authentication policy usage for authenticating a user | ||
| 摘要 | A processor ascertains that a user is authorized to access a federated computing environment that includes at least two servers, which includes determining that input authentication information previously received from the user by a first server of the at least two conforms to at least one rule of an authentication policy of a second server having a highest relative priority among servers of the at least two servers whose authentication policy's at least one rule, in an authentication policy table within the first server, is conformed to by the received input authentication information. The authentication policy table within the first server includes (i) an authentication policy of each server of the at least two servers and (ii) a relative priority of each server in order of decreasing number of users registered in an authentication system of each server. | ||
| 申请公布号 | US9584548(B2) | 申请公布日期 | 2017.02.28 |
| 申请号 | US201614987825 | 申请日期 | 2016.01.05 |
| 申请人 | International Business Machines Corporation | 发明人 | Takehi Masahiro |
| 分类号 | H04L29/06;G06F21/31 | 主分类号 | H04L29/06 |
| 代理机构 | Schmeiser, Olsen & Watts, LLP | 代理人 | Schmeiser, Olsen & Watts, LLP ;Pivnichny John |
| 主权项 | 1. A method for authenticating a user, comprising: ascertaining, by a computer processor, that the user is authorized to access a federated computing environment that comprises a plurality of servers, wherein the plurality of servers comprises a first server, wherein said ascertaining comprises authenticating the user for a second server having a highest relative priority among servers of the plurality of servers without the user being informed that the user is being authenticated for the second server, said authenticating comprising determining that input authentication information previously received from the user by the first server conforms to at least one rule of an authentication policy of the second server whose authentication policy's at least one rule, in an authentication policy table within the first server, is conformed to by the received input authentication information, and wherein the authentication policy table within the first server comprises (i) an authentication policy of each server of the plurality of servers and (ii) a relative priority of each server in order of decreasing number of users registered in an authentication system of each server. | ||
| 地址 | Armonk NY US | ||