MANAGING ACCESS IN ONE OR MORE COMPUTING SYSTEMS

摘要

Embodiments pertaining to managing access in one or more computing systems can include an operations controller in communication with the one or more computing systems for managing commercial transactions of the one or more computing systems and an access management controller in communication with the operations controller. The access management controller can receive an input that identifies relationships between user roles and actions associated with the one or more computing systems. The access management controller can provide the input to the operations controller for implementation of access rules in accordance with the relationships. The access management controller can attempt to access in the one or more computing systems at least a portion of the user roles and the actions after the operations controller has implemented the access rules. The access management controller can compare the attempted access with the relationships to determine access discrepancies.

主权项

1. A method of managing access in one or more computing systems, the method comprising:
receiving, by an access management device, an input comprising access rules for actions associated with the one or more computing systems, wherein the input identifies relationships between the actions and associated user roles; upon receiving approval of the relationships in the input, providing via a network the input to a control server for implementation of the access rules in accordance with the relationships; and upon implementation of the access rules, running an access test to determine any access discrepancy between an attempted access and the relationships in the input, wherein determining any access discrepancy comprises dynamically creating respective test users for each of the user roles to be tested based upon database information and verifying test user accessibility of the actions against the relationships in the input via an administrative tool of the control server.