System and method for single sign-on technical support access to tenant accounts and data in a multi-tenant platform

Assignee

• Zuora, Inc. · US

Inventors

• Oleg Mikheev · Belmont, US
• Joshy Austin · Fremont, US
• Pushkala Pattabhiraman · Fremont, US
• Levon Stepanian · Toronto, CA
• Pritesh Parekh · Fremont, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W4/60
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Shown is single sign-on support access to tenant accounts in a multi-tenant service platform involving a proxy user account in an identity provider for a tenant account on the service platform having security metadata associated therewith, mapping in the identity provider maps a support user to a proxy user identifier, a corresponding security endpoint in the service platform and mapping of the proxy user account identifier to the tenant account and security metadata. The identity provider authenticates a request to access the tenant account on the service platform, obtains the security credentials for the proxy user identifier, and sends a security assertion with the proxy user identifier and the security metadata to the security endpoint. The endpoint receives and validates the security assertion against the mapping for the proxy user identifier to the tenant account and the security metadata in the service platform, and permits access by the support user to the tenant account in the service platform.