Policy enforced intelligent persona manager
US-2017048327-A1 · Feb 16, 2017 · US
Multi cloud policy enactment via organizations to cloud-provider partnerships
US9961114B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9961114-B2 |
| Application number | US-201715430303-A |
| Country | US |
| Kind code | B2 |
| Filing date | Feb 10, 2017 |
| Priority date | Aug 26, 2014 |
| Publication date | May 1, 2018 |
| Grant date | May 1, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method includes acts for establishing a subscription for an entity. The method includes receiving, at a cloud service provider, a request from an entity to establish a subscription. The request includes credentials for the entity that are not proper credentials for an organization associated with the entity that the entity should use to access services for the organization. The method further includes performing a corrective action based on detecting one or more factors to determine that the entity is associated with the organization. The method further includes providing services based on the corrective action.
First claim
Opening claim text (preview).
What is claimed is: 1. In a cloud provider service environment, a method of controlling services provided to an entity based on the entity being associated with a particular organization, the method comprising: at a cloud service provider receiving, from the entity, a request for services provided by the cloud service provider, the request including a first set of credentials; identifying that the entity is associated with the particular organization by determining at least one or more of: a network identifier associated with the entity; a billing identifier associated with the entity; or a physical location associated with the entity; identifying that the first set of credentials does not match a second set of credentials that are associated with the particular organization at the cloud service provider; based on the entity being associated with the particular organization, and even though the first set of credentials do not match the second set of credentials, querying a management service regarding policies for the particular organization that apply to the entity; and applying the policies to the entity while providing the entity with the services. 2. The method of claim 1 , wherein the management service is a third party service. 3. The method of claim 1 , wherein the management service is part of the organization. 4. The method of claim 1 , wherein the applying the policies includes prompting the entity for credentials. 5. The method of claim 1 , wherein the applying the policies includes: enforcing policies that are associated with the organization on a subscription that is created by the entity without using proper credentials. 6. The method of claim 1 , wherein the policies are quantity and quality of service. 7. The method of claim 1 , wherein the policies are configuration policies. 8. The method of claim 1 , wherein the policies include access to shared enablers. 9. A cloud provider system, wherein the cloud provider system comprises: one or more processors; and one or more computer readable hardware storage device, wherein the one or more computer readable hardware storage device comprises stored computer executable instructions that are executable by at least one of the one or more processors to cause at least one of the one or more processors to control services provided to an entity based on the entity being associated with a particular organization by at least implementing the following: at the cloud system, receiving a request from the entity for services provided by the cloud service provider, the request including a first set of credentials; identifying that the entity is associated with the particular organization by determining at least one or more of: a network identifier associated with the entity; a billing identifier associated with the entity; or a physical location associated with the entity; identifying that the first set of credentials does not match a second set of credentials that are associated with the particular organization at the cloud service provider; based on the entity being associated with the particular organization, and even though the first set of credentials do not match the second set of credentials, querying a management service regarding policies for the particular organization that apply to the entity; and applying the policies to the entity while providing the entity with the services. 10. The cloud provider system of claim 9 , wherein the management service is a third party service. 11. The cloud provider system of claim 9 , wherein the management service is part of the organization. 12. The cloud provider system of claim 9 , wherein the applying the policies includes prompting the entity for credentials. 13. A computer program product comprising one or more computer readable hardware storage devices having stored thereon computer-executable instructions that are executable by one or more processors of a computing system comprising a cloud service provider to cause the computing system to control services provided by the cloud service provider to an entity based on the entity being associated with a particular organization and by at least implementing the following: at the cloud system, receiving a request from the entity for services provided by the cloud service provider, the request including a first set of credentials; identifying that the entity is associated with the particular organization by determining at least one or more of: a network identifier associated with the entity; a billing identifier associated with the entity; or a physical location associated with the entity; identifying that the first set of credentials does not match a second set of credentials that are associated with the particular organization at the cloud service provider; based on the entity being associated with the particular organization, and even though the first set of credentials do not match the second set of credentials, querying a management service regarding policies for the particular organization that apply to the entity; and applying the policies to the entity while providing the entity with the services. 14. The computer program product of claim 13 , wherein the management service is a third party service. 15. The computer program product of claim 13 , wherein the management service is part of the organization. 16. The computer program product of claim 13 , wherein the applying the policies includes enforcing policies that are associated with the organization on a subscription that is created by the entity without using proper credentials and wherein the policies include at least one or more of: quantity and quality of service; configuration policies; or access to shared enablers. 17. The cloud provider system of claim 9 , wherein the applying the policies includes enforcing policies that are associated with the organization on a subscription that is created by the entity without using proper credentials and wherein the policies include at least one or more of: quantity and quality of service; configuration policies; or access to shared enablers. 18. The method of claim 1 , wherein identifying that the entity is associated with the particular organization includes receiving a network identifier in the form of one or more of a domain name associated with the entity or an IP address associated with the entity. 19. The method of claim 1 , wherein identifying that the entity is associated with the particular organization includes receiving a billing identifier in the form of either or both of a billing address or a payment instrument that is already associated with the organization at the cloud service provider. 20. The method of claim 1 , wherein identifying that the entity is associated with the particular organization includes receiving a physical location identifier in the form of a telephone number that is already associated with the organization at the cloud service provider.
Assignees
Inventors
Classifications
- H04L63/205Primary
involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved (negotiation of communication capabilities H04L69/24) · CPC title
- G06Q10/10Primary
Office automation; Time management · CPC title
using passwords (cryptographic mechanisms or cryptographic arrangements for entity authentication using a predetermined code H04L9/3226) · CPC title
applying multi-factor authentication · CPC title
Protecting access to data via a platform, e.g. using keys or access control rules · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9961114B2 cover?
- A method includes acts for establishing a subscription for an entity. The method includes receiving, at a cloud service provider, a request from an entity to establish a subscription. The request includes credentials for the entity that are not proper credentials for an organization associated with the entity that the entity should use to access services for the organization. The method further…
- Who is the assignee on this patent?
- Microsoft Technology Licensing Llc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/205. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue May 01 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).