Browse Prior Art Database

Extended Registry Object Support for Distributed Computing Environment

IP.com Disclosure Number: IPCOM000116484D
Original Publication Date: 1995-Sep-01
Included in the Prior Art Database: 2005-Mar-30
Document File: 4 page(s) / 90K

Publishing Venue

IBM

Related People

Lin, P: AUTHOR

Abstract

A set of interface extensions to the security registry in the Open Software Foundation's Distributed Computing Environment (DCE) is disclosed that provide representations of security information objects relevant to local operating system platforms.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 52% of the total text.

Extended Registry Object Support for Distributed Computing Environment

      A set of interface extensions to the security registry in the
Open Software Foundation's Distributed Computing Environment (DCE) is
disclosed that provide representations of security information
objects relevant to local operating system platforms.

      The DCE security service contains a registry of the
security-relevant attributes of principals and groups.  These
attributes are applicable to DCE itself and to UNIX-based local
operating system platforms.

      In the heterogeneous, multi-platform environment for which
production-level vendor implementations of DCE are targeted, it is
necessary to extend the DCE registry to contain representations of
security information relevant to a variety of local operating system
platforms, many of which bear little resemblance to UNIX.  In
particular, such extended representations are required to enable
combined (centralized, remote and distributed) administration of DCE
and local security registries.

This disclosure extends the DCE registry with the following
interfaces:
  o  Local user object interface
     The operations supported are:
     -  sec_rgy_localuser_add
         Add a new user to a local registry
     -  sec_rgy_localuser_delete
         Delete an existing user from a local registry
     -  sec_rgy_localuser_lookup
         Look up a user record in a local registry
     -  sec_rgy_localuser_replace
         Replace a user record in a local registry
     -  sec_rgy_localuser_get_groups
         Get the list of local groups to which the local user belongs
     -  sec_rgy_localuser_is_member
         Test the membership of a local user in a specified local
         group
  o  Local group object interface
     The operations supported are:
     -  sec_rgy_localgroup_add
         Add a new group to a local registry
     -  sec_rgy_localgroup_delete
         Delete an existing group from a local registry
     -  sec_rgy_localgroup_lookup
         Look up a group record in a local registry
     -  sec_rgy_localgroup_replace
         Replace a group record in a local registry
     -  sec_rgy_localgroup_add_member
         Add a local user to a local group
     -  sec_rgy_localgroup_delete_member
         Delete a local user from a local group
     -  sec_rgy_localgroup_get_members
    ...