-
公开(公告)号:US10547599B1
公开(公告)日:2020-01-28
申请号:US14626843
申请日:2015-02-19
Applicant: Amazon Technologies, Inc.
Inventor: Gaurang Pankaj Mehta , Sameer Palande , Lawrence Hun-Gi Aung , Raghavendra Reddy Madakkagari , Shuo Wang , Salman Aftab Paracha , Chirag Pravin Pandya
IPC: H04L29/06
Abstract: A user transmits a request to an authentication service to access a managed directory. The request may include a first set of credentials usable by a managed directory service to authenticate the user. As a result of the first set of credentials being valid, the authentication service may prompt the user to provide a multi-factor authentication code, which may be used by an authentication server to further authenticate the user and enable the user to access the managed directory. The authentication service subsequently provides the multi-factor authentication code to the authentication server for validation. If the multi-factor authentication code is valid, the authentication service may enable the user to access the managed directory through an encrypted communications session.
-
公开(公告)号:US10511566B2
公开(公告)日:2019-12-17
申请号:US14098454
申请日:2013-12-05
Applicant: Amazon Technologies, Inc.
Inventor: Shon Kiran Shah , Thomas Christopher Rizzo , Gaurang Pankaj Mehta , Guruprakash Bangalore Rao , Sameer Palande , Krithi Rai
Abstract: Techniques for connecting computer system entities to remotely extended local computer system resources are described herein. A computer system entity that requests access to a local computer system resource has that request fulfilled by a managed directory service which receives the request and connects the computer system entity to the local computer system resource. While connected, the managed directory service extends the local computer system resource to a corresponding extended remote computer system resource, receives commands to perform operations on the local or extended remote computer system resources and, if the computer system entity is authorized to perform the operations on the appropriate computer system resource, the managed directory service performs the operations on the appropriate computer system resource.
-
公开(公告)号:US10509663B1
公开(公告)日:2019-12-17
申请号:US14614230
申请日:2015-02-04
Applicant: Amazon Technologies, Inc.
Inventor: Lekshmi Unnikrishnan , Manivannan Sundaram , Martin Chen Mao , Sivaprasad Venkata Padisetty , Praerit Garg , Sameer Palande , Bradley Scott Murphy , Manoj Krishna Ghosh
IPC: G06F9/455
Abstract: A customer submits a request to a virtual computer system service to launch a virtual machine instance and to join this instance to a managed directory. The service may obtain, from the customer, a domain name and Internet Protocol addresses for the selected directory, which is then stored within a systems management server. When launched, the instance may initiate an agent, which may communicate with the systems management server to obtain the configuration information. The agent may use this configuration information to establish a communications channel with the managed directory and create a temporary set of computer credentials that may be used to verify that the customer is authorized to join the virtual machine instance to the managed directory. If the credentials are valid, the managed directory may generate a computer account within the managed directory, which may be used to join the virtual machine instance to the managed directory.
-
Patent Agency Ranking
公开(公告)号:US10375013B2
公开(公告)日:2019-08-06
申请号:US14098450
申请日:2013-12-05
Applicant: Amazon Technologies, Inc.
Inventor: Shon Kiran Shah , Krithi Rai , Guruprakash Bangalore Rao , Thomas Christopher Rizzo , Colin Harrison Brace , Gaurang Pankaj Mehta , Sameer Palande , Deepak Suryanarayanan
Abstract: Techniques for connecting computer system entities to local computer system resources are described herein. A computer system entity that requests access to a local computer system resource has that request fulfilled by a managed directory service, which receives the request and connects the computer system entity to the local computer system resource. While connected, the managed directory service receives commands to perform operations on the local computer system resource and, if the computer system entity is authorized to perform the operations on the local computer system resource, the managed directory service performs the operations on the local computer system resource.
-
公开(公告)号:US20170250980A1
公开(公告)日:2017-08-31
申请号:US15456158
申请日:2017-03-10
Applicant: Amazon Technologies, Inc.
Inventor: Gaurang Pankaj Mehta , Neelam Satish Agrawal , Lawrence Hun-Gi Aung , Guruprakash Bangalore Rao , Shuo Wang , Sameer Palande , Krithi Rai , Chirag Pravin Pandya
CPC classification number: H04L63/0853 , G06F17/30386 , G06F21/6218 , H04L63/06 , H04L63/08 , H04L63/0807 , H04L63/0815 , H04L63/083 , H04L63/0838 , H04L63/102 , H04L63/105
Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.
-
公开(公告)号:US09596233B1
公开(公告)日:2017-03-14
申请号:US15060236
申请日:2016-03-03
Applicant: Amazon Technologies, Inc.
Inventor: Gaurang Pankaj Mehta , Neelam Satish Agrawal , Lawrence Hun-Gi Aung , Guruprakash Bangalore Rao , Shuo Wang , Sameer Palande , Krithi Rai , Chirag Pravin Pandya
IPC: H04L29/06
CPC classification number: H04L63/0853 , G06F17/30386 , G06F21/6218 , H04L63/06 , H04L63/08 , H04L63/0807 , H04L63/0815 , H04L63/083 , H04L63/0838 , H04L63/102 , H04L63/105
Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.
Abstract translation: 用户,组和设备管理和认证系统允许管理员通过一组API来管理与一个或多个目录的域不相关联的设备的一个或多个目录。 该系统还允许不能直接访问目录用户列表的应用程序和服务来访问一个或多个目录。 用户,组和设备管理和认证系统可以是与中央管理的目录服务一起工作以提供这样的功能的附加系统。 例如,系统可以生成与特定目录相关联的访问令牌,该目录可由管理员访问的服务使用以调用由系统提供的API。 API调用可能会转换为特定于目录的API调用,该调用可用于在特定目录中执行操作。
-
公开(公告)号:US09313193B1
公开(公告)日:2016-04-12
申请号:US14500865
申请日:2014-09-29
Applicant: Amazon Technologies, Inc.
Inventor: Gaurang Pankaj Mehta , Neelam Satish Agrawal , Lawrence Hun-Gi Aung , Guruprakash Bangalore Rao , Shuo Wang , Sameer Palande , Krithi Rai , Chirag Pravin Pandya
CPC classification number: H04L63/0853 , G06F17/30386 , G06F21/6218 , H04L63/06 , H04L63/08 , H04L63/0807 , H04L63/0815 , H04L63/083 , H04L63/0838 , H04L63/102 , H04L63/105
Abstract: A user, group, and device management and authentication system allows administrators to manage one or more directories with devices that are not associated with a domain of the one or more directories via a set of APIs. The system also allows applications and services that do not have direct access to a list of directory users to access the one or more directories. The user, group, and device management and authentication system may be an add-on system that works in conjunction with a centrally-managed directory service to provide such functionality. For example, the system may generate an access token associated with a particular directory that can be used by a service accessed by an administrator to call an API provided by the system. The API call may be translated into a directory-specific API call that can be used to perform an action in the particular directory.
Abstract translation: 用户,组和设备管理和认证系统允许管理员通过一组API来管理与一个或多个目录的域不相关联的设备的一个或多个目录。 该系统还允许不能直接访问目录用户列表的应用程序和服务来访问一个或多个目录。 用户,组和设备管理和认证系统可以是与中央管理的目录服务一起工作以提供这样的功能的附加系统。 例如,系统可以生成与特定目录相关联的访问令牌,该目录可由管理员访问的服务使用以调用由系统提供的API。 API调用可能会转换为特定于目录的API调用,该调用可用于在特定目录中执行操作。
-
公开(公告)号:US20150134800A1
公开(公告)日:2015-05-14
申请号:US14098445
申请日:2013-12-05
Applicant: Amazon Technologies, Inc.
Inventor: Shon Kiran Shah , Guruprakash Bangalore Rao , Gaurang Pankaj Mehta , Thomas Christopher Rizzo , Sameer Palande , Krithi Rai
IPC: H04L12/24
Abstract: Techniques for connecting computer system entities to remote computer system resources are described herein. A computer system entity that requests access to a remote computer system resource has that request fulfilled by a managed directory service which receives the request and connects the computer system entity to the remote computer system resource. While connected, the managed directory service receives commands to perform operations on the remote computer system resource and, if the computer system entity is authorized to perform the operations on the remote computer system resource, the managed directory service performs the operation on the remote computer system resource.
Abstract translation: 本文描述了将计算机系统实体连接到远程计算机系统资源的技术。 请求访问远程计算机系统资源的计算机系统实体具有由接收请求并将计算机系统实体连接到远程计算机系统资源的受管目录服务实现的请求。 管理目录服务连接时,接收对远程计算机系统资源执行操作的命令,如果计算机系统实体被授权对远程计算机系统资源执行操作,则托管目录服务会在远程计算机系统上执行操作 资源。
-
-
-
-
-
-
-
Search Results
18
records
(took 0.051 seconds)
