Enforcing JIT access control by leveraging pam and LDAP
US12375493B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jan 25, 2023 |
| Grant date | Jul 29, 2025 |
| Priority date | — |
| Expiry date | Nov 17, 2043 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/108
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Usage of Pluggable Authentication Module (PAM) for time bound access control to any PAM enabled Linux application predicated by rules stored in an LDAP directory including a processor to execute computer-executable instructions for receiving a user information from a user interface indicative of a user, receiving an access request via PAM indicative of the user information, a time of invocation of the access request and the host server, querying a lightweight directory access protocol directory in response to the user information and the request, receiving a plurality of attribute values associated with the user information including a time bound access limit and a host access restriction information, and coupling an access success response to the pluggable access module in response to a host server access allowance indicated by the host access restriction information for the host service and the time of invocation being within the time bound access limit.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.