Multi-tenancy identity management system
US9276942B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Mar 15, 2013 |
| Grant date | Mar 1, 2016 |
| Priority date | — |
| Expiry date | Jun 13, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/104
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A multi-tenant identity management (IDM) system enables IDM functions to be performed relative to various different customers' domains within a shared cloud computing environment and without replicating a separate IDM system for each separate domain. The IDM system can provide IDM functionality to service instances located within various different customers' domains while enforcing isolation between those domains. A cloud-wide identity store can contain identity information for multiple customers' domains, and a cloud-wide policy store can contain security policy information for multiple customers' domains. The multi-tenant IDM system can provide a delegation model in which a domain administrator can be appointed for each domain, and in which each domain administrator can delegate certain roles to other user identities belong to his domain. Service instance-specific administrators can be appointed by a domain administrator to administer to specific service instances within a domain.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.