发明名称 |
Role based tool delegation |
摘要 |
A method and apparatus for delegating root access to non-root users of a computer system while maintaining computer system security are disclosed. Such a method may include authorizing a role for a user, wherein the authorized role includes one or more tools and the tools enable root access for certain tasks that the tools perform when run, whereby the one or more tools are delegated to the user and authorizing a machine of the computer system for the authorized role, wherein the computer system comprises a plurality of machines and the user is enabled to utilize the authorized role only on authorized machines, whereby utilizing the authorized role comprises running the one or more tools of the authorized role. Embodiments of the invention may comprise authorization objects that comprise attributes identifying a user and the roles and machine for which the user is authorized.
|
申请公布号 |
US2002169956(A1) |
申请公布日期 |
2002.11.14 |
申请号 |
US20010850793 |
申请日期 |
2001.05.08 |
申请人 |
ROBB MARY THOMAS;HARRAH RICHARD D.;FINZ JEFFREY R.;SANCHEZ HUMBERTO A.;DREES DOUGLAS P.;LISTER TERENCE E.;CURTIS PAULA |
发明人 |
ROBB MARY THOMAS;HARRAH RICHARD D.;FINZ JEFFREY R.;SANCHEZ HUMBERTO A.;DREES DOUGLAS P.;LISTER TERENCE E.;CURTIS PAULA |
分类号 |
G06F21/00;H04L29/06;(IPC1-7):H04L9/00 |
主分类号 |
G06F21/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|