Browse Prior Art Database

Method and System for Creating and Propagating Scoped Role to Different Racks within a Multi-rack Environment

IP.com Disclosure Number: IPCOM000236680D
Publication Date: 2014-May-08
Document File: 2 page(s) / 76K

Publishing Venue

The IP.com Prior Art Database

Abstract

A method and system is disclosed for creating and propagating scoped role to different racks within a multi-rack environment.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 78% of the total text.

Page 01 of 2

Method and System for Creating and Propagating Scoped Role to Different Racks within a Multi-rack Environment

Disclosed is a method and system for creating and propagating scoped role to different racks within a multi-rack environment. The method and system implements a rack scope security role access control that allows each user to have roles that are either local (scoped to the local user) or multi-rack roles (scoped to the entire region). Instead of literality scoping security role to a rack, such as, for example, hardware_admin_writer@rack1, the disclosed approach divide roles into 2 categories, such as, for example, local roles and multi-rack roles. Each role associated to the user is stored inside and scoped to the local rack as illustrated in the figure 1.

Figure 1

In accordance with the method and system, optimization divides the roles into local roles and multi-rack roles. Local roles and the multi-rack roles are stored separately

within the system as illustrated in the figure 2.

Figure 2

Multi-rack roles are replicated across the domains, where as local roles are available

on the local systems. As a consequence, only the multi-rack roles are replicated, local roles are not recognized by other racks, hence scoped to the local system. Multi-rack roles are scoped to the domain as all the racks within the domain recognize the multi-rack roles. Subsequently, multi-rack role are replicated across different racks via the common file system or simple REST cal...