Single tenant audit view in a multi-tenant environment

Assignee

• International Business Machines Corporation · US

Inventors

• Heather M. Hinton · Austin, US
• Neil I. Readshaw · Gold Coast, AU
• Katsumi Ohnishi · Centreville, US
• Naohiko Uramoto · Yokohama, JP

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/41
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A method correlates audit information in a multi-tenant computing infrastructure. The method leverages a user's authentication to the infrastructure, such as via federated single sign-on (F-SSO) from an identity provider. Preferably, the user's tenant identifier in the environment is derived based on identity information obtained during the F-SSO exchange. This tenant identifier is propagated to one or more other components in the infrastructure that are accessed by the user. As audit event from multiple components in the computing infrastructure are generated, these audit events are annotated with the tenant identifier and stored in an audit repository. In response to a request to view the tenant's audit data, a collection of tenant-specific audit events are then retrieved from the audit repository and displayed in a single tenant view. This approach ensures that audit event information is not leaked inadvertently between tenants.