| 发明名称 |
PRIVILEGED ACCOUNT PLUG-IN FRAMEWORK - USAGE POLICIES |
| 摘要 |
Techniques for managing privileged accounts via a privileged access management service are provided. In some examples, the service may be configured with a plug-in framework for accessing secure resources. In some aspects, a log-in request that includes authentication information and corresponds to the service may be received. Session access to at least one secure resource may be provided when a user is authenticated. In some examples, a request to perform an action associated with the secure resource may be received during the session. Additionally, in some examples, the plug-in framework may be implemented to determine whether the user is allowed to perform the action. Further, performance of the action may be allowed or denied during the session based on the determination. |
| 申请公布号 |
US2015082373(A1) |
申请公布日期 |
2015.03.19 |
| 申请号 |
US201414221217 |
申请日期 |
2014.03.20 |
| 申请人 |
ORACLE INTERNATIONAL CORPORATION |
发明人 |
Kottahachchi Buddhika;Sharma Himanshu;Sathyanarayan Ramaprakash Hosalli;Ho Fannie;Theebaprakasam Arun;Tirumalai Srikant Krishnapuram;Stullich Olaf |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A system, comprising:
a memory storing computer-executable instructions; a privileged access management module that provides a privileged access management service configured with a plug-in framework for accessing secure resources; and a processor configured to access the memory and execute the computer-executable instructions to at least:
receive, from an entity associated with the secure resources, plug-in code for implementing runtime privileges;generate instructions for implementing the runtime privileges based at least in part on the received plug-in code;receive, from a user, a log-in request including at least first authentication information, the log-in request corresponding to the privileged access management service;provide access to at least one secure resource of the secure resources through a session when the user is authenticated with respect to the privileged access management service;receive, from a computing device of the user, a request to perform an action associated with the at least one secure resource within the session;implement the plug-in framework to determine, based at least in part on the runtime privileges and a runtime factor, whether the user is allowed to perform the action; andperform the action for the user if it is determined that the user is allowed to perform the action. |
| 地址 |
Redwood Shores CA US |
