ROLE-BASED ACCESS CONTROL MODELING AND AUDITING SYSTEM

摘要

A role-based access control (RBAC) modeling and auditing system is described that enables a user to access and/or create security roles that can be applied to users of a first software application. When a security role having a particular set of permissions has been accessed or created, the system can present a simulated user interface (UI) that indicates information that can be viewed and/or actions that can be performed by a user to whom the security role has been assigned when interacting with the first software application. The system may further provide “run as” functionality that enables a simulated UI to be generated for a particular user and that can display the security role(s) associated with the particular user. The system may be embodied in a second software application, such as a tool that is associated with the first software application.

主权项

1. A computer-implemented method, comprising:
presenting one or more first user interface elements that allow a user to access or create a first security role, the first security role having one or more permissions associated therewith; and subsequent to the user accessing or creating the first security role via the one or more first user interface elements, presenting one or more second user interface elements that indicate at least one of:
information that can be viewed by a user to whom the first security role has been assigned when the user to whom the first security role has been assigned interacts with a first software application, andone or more actions that can be performed by the user to whom the first security role has been assigned when the user to whom the first security role has been assigned interacts with the first software application.