Rote based tool delegation

Assignee

• HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. · US

Inventors

• Mary Robb · Fort Collins, US
• Richard Harrah · Seattle, US
• Jeffrey R. Finz · Portland, US
• Humberto Sanchez · Fort Collins, US
• Douglas P. Drees · Fort Collins, US
• Terence E. Lister · Fort Collins, US
• Paula Curtis · Windsor, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/6218
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method and apparatus for delegating root access to non-root users of a computer system while maintaining computer system security are disclosed. Such a method may include authorizing a role for a user, wherein the authorized role includes one or more tools and the tools enable root access for certain tasks that the tools perform when run, whereby the one or more tools are delegated to the user and authorizing a machine of the computer system for the authorized role, wherein the computer system comprises a plurality of machines and the user is enabled to utilize the authorized role only on authorized machines, whereby utilizing the authorized role comprises running the one or more tools of the authorized role. Embodiments of the invention may comprise authorization objects that comprise attributes identifying a user and the roles and machine for which the user is authorized.