CN103067463B - user root authority centralized management system and management method - Google Patents
user root authority centralized management system and management method Download PDFInfo
- Publication number
- CN103067463B CN103067463B CN201210557359.XA CN201210557359A CN103067463B CN 103067463 B CN103067463 B CN 103067463B CN 201210557359 A CN201210557359 A CN 201210557359A CN 103067463 B CN103067463 B CN 103067463B
- Authority
- CN
- China
- Prior art keywords
- server
- user
- authority
- information
- database
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a kind of user root authority centralized management system and management method, described system comprises: empowerment management server, data center, and server cluster; Wherein, described empowerment management server receives after user right amendment information, the record in the authority information database of renewal data center; Server in described server cluster, after user's login, the order of input root authority, according to title, the server identification generated query condition of the root authority order of the user name of this user's login, input, uses this querying condition data query center; According to Query Result, determine whether to carry out the order of root authority. Due to user right information is stored in to data center, by data center is unified, the user root authority of the each server in server cluster is managed concentratedly, and needn't in the configuration file of every station server, store all user right information; Thereby greatly save the resource in system.
Description
Technical field
The present invention relates to computer technology, relate in particular to the user root authority centralized management system in computer operating systemThe management method of unifying.
Background technology
Root(root) authority, be the one of System Privileges, with System(system) authority can be understood as a concept, butHigher than Administrator(keeper) authority; Root account is the super administrator's account in Linux and Unix systemFamily, this account has whole system highest weight limit, can start or stop a process, deletes or increases user, increase orForbidding hardware etc.
For example, the user who has a root authority in linux system can input the order of root authority in order line and holdSome function of row. For non-root user's domestic consumer, operating system also can allow it to use some root authority order:In the configuration file/etc/sudoers of linux system, record the user name of domestic consumer, and adopted this user name to carry outCorresponding relation between the spendable root authority of the user order of login. After user is with this user name login system, ifThe order of order line input root authority, operating system is first searched this user name institute recording in configuration file/etc/sudoersCorresponding root authority order, if comprising the order of the current input of user, shows that this user is authorized, operation systemSystem is carried out this order; If wherein do not comprise the order of the current input of user, show this order of the uncommitted use of this user, behaviourThe system of work will refuse to carry out this order. Root user has the authority of the above-mentioned configuration file/etc/sudoers of amendment.
For the root rights management of the operating system of separate unit server, can by root user revise configuration file/Etc/sudoers completes; If need to the root authority order in the operating system of multiple servers be managed concentratedly,Can be more loaded down with trivial details; Conventionally the user root authority centralized management system adopting, as shown in Figure 1, needs multiple in this systemRoot authority order in the operating system of the each server in server cluster is managed concentratedly; For example, need to be to serviceRoot authority order in the operating system of the each server in device cluster A, B, C is managed concentratedly. So, keeper according toConfiguration file format, in configuration file amendment or added user right information after be submitted to SVN(Subversion, be oneThe version control system of individual open source code), be further issued to Cfengine(Unix management tool by SVN) root jointPoint, is further issued to Cfengine two-level node by Cfengine root node, by Cfengine two-level node by configuration fileBe issued to the server cluster of this node communication in each server.
Describe as an example of server A (10.0.0.1) authority in user A application server cluster A example: have rootThe keeper of authority obtains by SVN after the information of up-to-date configuration file/etc/sudoers, amendment or the power of adding user ALimit information:
Cmnd_AliasCMD_CAT=/bin/cat
USERA10.0.0.1=rootNOPASSWD:CMD_CAT
Root authority order/bin/cat that its server A that shows that user A is 10.0.0.1 to IP address has holdsRow authority.
Amended configuration file is submitted to SVN by keeper, by SVN by Cfengine root node, by CfengineRoot node by each Cfengine two-level node, by each Cfengine two-level node to the server cluster of this node communication inEach server send.
Get after configuration file in server A, Authorized operation completes; After the operating system of user A logon server A,Can use root authority order/bin/cat according to configuration file.
But, the present inventor's discovery, the system of prior art has also been issued to other clothes by above-mentioned configuration fileIn business device; For other server, the user A recording in configuration file server A is had/bin/cat holdsRow authority is redundancy; Along with the sharp increase of the quantity of the server of needs centralized management, the increase of number of users, configuration fileThe redundancy of middle record, by jumbo growth, causes the wasting of resources.
Summary of the invention
Embodiments of the invention provide a kind of user root authority centralized management system and management method, in order to economize onResource in the root authority centralized management system of family.
According to an aspect of the present invention, provide authoring system in a kind of root authority command set, having comprised: empowerment managementServer, data center, and server cluster; Wherein,
Described empowerment management server is for receiving the user right amendment information of keeper's input with root authorityAfter, generate corresponding data base manipulation statement; And according to the data base manipulation statement generating, upgrade the authority of described data centerRecord in information database;
Server in described server cluster is after user's login, the order of input root authority, according to this user's loginUser name generated query condition, send the inquiry request of carrying described querying condition to described data center; In described dataThe heart is according to the inquiry request receiving, by the letter of the user right matching with described querying condition in described authority information databaseBreath returns as Query Result; Described server confirms according to the Query Result returning whether Authority Verification passes through; If confirm logicalCross, carry out the root authority order of input;
Wherein, user right amendment information comprises: the information of amendment type and user right; Described user rightInformation comprises: user name, this user that user uses asks server identification, this user of the server of authorizing to ask to authorize shouldThe title of the root authority order of server.
According to another aspect of the present invention, also provide authorization method in a kind of root authority command set, having comprised:
Server in server cluster is logined after the order of input root authority, according to the user of this user's login userName generated query condition, sends the inquiry request of carrying described querying condition to data center;
Described data center, according to the inquiry request receiving, will match with described querying condition in authority information databaseThe information of user right return as Query Result;
Described server confirms according to the Query Result returning whether Authority Verification passes through; Pass through if confirm, carry out defeatedThe root authority order entering;
Wherein, the record in the authority information database of described data center is by empowerment management server update: instituteState empowerment management server and receive after the user right amendment information of keeper's input with root authority, generate accordingly and countAccording to storehouse action statement; And according to the data base manipulation statement generating, upgrade in the authority information database of described data centerRecord.
The embodiment of the present invention is due to user right information is stored in to data center, unified to server set by data centerThe user root authority of the each server in group is managed concentratedly, and needn't be if existing technology is in the configuration of every station serverIn file, store all user right information; Thereby greatly save the resource in system, the depositing of especially each serverStorage resource; Make whole system with lower cost, the user of the more huge server cluster of centralized management more rapidlyRoot authority.
Brief description of the drawings
Fig. 1 is the schematic diagram of the user root authority centralized management system of prior art;
Fig. 2 a, 2b are the schematic diagram of the user root authority centralized management system of the embodiment of the present invention;
Fig. 3 is the method flow diagram of empowerment management in the user root authority set of the embodiment of the present invention;
Fig. 4 be the embodiment of the present invention according to data center's canned data, the each server in server cluster is enteredThe method flow diagram of verifying in row user root authority set.
Detailed description of the invention
For making object of the present invention, technical scheme and advantage clearer, referring to accompanying drawing and enumerate preferred realityExecute example, the present invention is described in more detail. But, it should be noted that, many details of listing in description be only forMake reader have a thorough understanding to one or more aspects of the present invention, even if do not have these specific details passable yetRealize these aspects of the present invention.
The terms such as " module " used in this application, " system " are intended to comprise the entity relevant to computer, for example but do not limitIn hardware, firmware, combination thereof, software or executory software. For example, module can be, but be not limited in: processThread, program and/or the computer of the process moved on device, processor, object, executable program, execution. For instance, meterThe application program of moving on calculation equipment and this computing equipment can be modules. One or more modules can be positioned at executoryIn process and/or thread, a module also can be positioned on a computer and/or be distributed in two or more calculatingBetween machine.
The present inventor considers, after user login services device, uses configuration file to enter the order of its inputThe method of row Authority Verification is relatively applicable to the management of the root authority order to separate unit server; Still adopt the method to serviceThe root authority order of device cluster manages, very inapplicable; Therefore, in embodiments of the invention, in data centerThe execution authority of having stored the root authority order that user has each server, the each server in server cluster is passableIn the time that the order of user's input is carried out to Authority Verification, communicate by letter with data center, carry out authority according to the authority information of its storageChecking; Like this, be also convenient to the order to root authority and concentrate mandate. Because Authority Verification is mainly to be completed by data center, in each server, needn't store a large amount of profile informations, more do not have the redundancy letter of the authority information of other serverBreath, thereby the resource of greatly having saved concentrated authoring system.
Describe the technical scheme of the embodiment of the present invention in detail below in conjunction with accompanying drawing. The user root that the embodiment of the present invention providesAuthority centralized management system, as shown in Figure 2 a, comprising: empowerment management server 201, data center 202, and server clusterIn each server 203.
By empowerment management server 201 to awarding in the user root authority set of the each server 203 in server clusterThe method flow of power management, as shown in Figure 3, comprises the steps:
S301: the user right amendment information of empowerment management server 201 receiving management person's inputs.
Particularly, in empowerment management server 201, rights management software can be installed, there is keeper's fortune of root authorityWhen this rights management software of row, this software can provide inputting interface or the WEB page; By inputting interface or WEB page pipeReason person inputs user right amendment information. User right amendment information specifically comprises: the letter of amendment type and user rightBreath.
Wherein, the amendment type of keeper input can comprise: add (add), delete (delete), and some otherOperation amendment type, such as reading (read) etc.
The information of the user right of keeper's input comprises: user name, the user that user uses asks the server of authorizingServer identification, user ask the title of the root authority order of authorizing this server; Wherein, server identification specifically canIt is the IP address of server.
Preferably, according to the similarity of user's operation, can the user name of the user with similar operations be divided in sameIn one user's group, in user's group, can comprise multiple user names; Also some root authority orders can be divided in to oneIn individual root authority command history, in a root authority command history, can comprise the title of multiple root authority order;
So, a kind of method of the information of inputting in higher efficiency user right can be, the letter of the user right of inputBreath can also comprise: the title of user's group, the user of this user's group asks server identification, this user's group of the server of authorizingUser ask the title of the root authority command history of authorizing this server.
Further, the information of user right also can comprise: the information such as effective time, mandate remarks of mandate.
S302: empowerment management server 201, according to the user right amendment information of input, generates corresponding database manipulationStatement.
Particularly, the rights management software in empowerment management server 201, according to the user right amendment information of input, is adjustedWith with amendment type corresponding api function, according to the Information generation phase of the user right in the user right amendment information of inputThe data base manipulation statement of answering.
For example, for add amendment type, call the API(ApplicationProgram that adds recordInterface, application programming interfaces) function, generate the information of adding the user right in the user right amendment information of inputtingData base manipulation statement;
For delete amendment type, call the api function of deletion record, generate the user right amendment of deleting inputThe data base manipulation statement of the information of the user right in information.
S303: empowerment management server 201, according to the data base manipulation statement generating, upgrades the power in data center 202Record in limit information database.
Particularly, in the authority information database of data center 202, recorded the information of user right; Empowerment management clothesBusiness device 201 can, according to the data base manipulation statement generating, upgrade the note in the authority information database in data center 202Record. Preferably, empowerment management server 201 can adopt the authority information database in Hive technology innovation data center 202In record; The data base manipulation statement generating in above-mentioned steps S302 can be specifically HiveSQL(StructuredQueryLanguage, SQL) statement.
Empowerment management server 201 sends the HiveServer of HiveSQL statement to data center; HiveServer coupleData analysis is carried out in the HiveSQL request receiving, and carries out the operation of corresponding database.
Preferably, the authority information database in data center 202 can be LDAP(LightweightDirectoryAccessProtocol, LDAP) database.
According to data center's canned data, the each server 203 in server cluster is carried out to user root authority setThe method flow diagram of middle checking, as shown in Figure 4, comprises the steps:
S401: server 203, after non-root user's login, if user inputs the order of root authority, receives this userThe root authority order of input.
S402: server 203 generated query conditions, and send inquiry request to data center 202, data query centerAuthority information database in 202; Wherein, in inquiry request, carry the querying condition of generation.
In this step, server 203 can be according to the user name generated query condition of user's login, according to looking into of generatingInquiry condition sends inquiry request to data center 202; Or,
Server 203 can be also according to the user name of user's login, the server identification generated query bar of book serverPart, sends inquiry request according to the querying condition generating to data center 202; Or,
Server 203 can be also according to title, this service of the root authority order of the user name of user's login, inputThe server identification generated query condition of device, sends inquiry request according to the querying condition generating to data center 202.
In fact, pre-configured Authority Verification mode in the operating system of server 203, and data center 202The network address; Pre-configured according to this, to input after the order of root authority this user, operating system is tested according to the authority of configurationCard mode is removed to inquire about remote data base and is carried out Authority Verification instead of carry out Authority Verification by configuration file; And it is pre-configuredThe network address has indicated the reference address of remote data base. Therefore, server 203 can be according to pre-configured network groundLocation, sends to data center 202 querying condition generating.
Inquiry remote data base carries out the skill that the Authority Verification of user's authority order is well known to those skilled in the artArt; In fact, along with NIS(NetworkInformationSystem, the network information service) and DNS(DomainNameSystem, domain name system) appearance, search user profile and system information and just not only complete by search local file. In the past, check/etc/sudoer file just can obtain user right information, and can look into by number of ways nowLook for this category information. For example, file/etc/nsswitch.conf(NameServiceSwitchConfiguration, nameService handover configurations) specify to search the letter of particular type by which approach and according to what order by these approachBreath. If can also specify certain method to prove effective or what action deactivation system will take. Every in file nsswitch.confA line configuration has all indicated the information of how searching for, such as root authority information. Nsswitch.conf can be configured to as follows:
sudoersldap
Like this, input after the order of root authority user, operating system goes to look into according to the Authority Verification mode of configurationInquiry remote data base ldap database obtains relevant information and carries out Authority Verification. The operation of server 203 system in this proof procedureThe inquiry of relevant information is carried out in two or three data query requests of all normal transmissions to remote data base; And according to returningInformation is carried out Authority Verification. First request is used for resolving global configuration (for controlling verification certification level); Second requestBe used for the user's of match query information; If do not return to the user of coupling, the 3rd request is used for inquiring about all data stripsOrder, checks whether user belongs to one of them.
S403: the Query Result that server 203 returns according to data center 202 confirms whether Authority Verification passes through; If reallyRecognize and pass through, execution step S404; Otherwise, execution step S405.
If server 203 sends to the querying condition in the inquiry request of data center 202, is only to generate according to user name, data center 202 is according to this inquiry request, after search access right information database, by with querying condition in user nameThe information of the user right of joining is returned to server 203 as Query Result; Server 203 is according to this Query Result, Cong ZhongchaLook for the letter that whether has the user right matching with the server identification of title, the book server of the root authority order of inputBreath; If have, confirm to pass through; Otherwise checking is not passed through.
If server 203 sends to the querying condition in the inquiry request of data center 202, is according to user name, these clothesThe server identification of business device generates, and data center 202 is according to this inquiry request, after search access right information database, and will be withThe information of the user right that the user name in querying condition and server identification match is returned to server 203 as Query ResultReturn; Server 203, according to this Query Result, therefrom searches whether there is the use matching with the title of the root authority order of inputtingThe information of family authority; If have, confirm to pass through; Otherwise checking is not passed through.
If server 203 sends to the querying condition in the inquiry request of data center 202, is according to user name, inputThe server identification of title, book server of root authority order generate, data center 202 is according to this inquiry request,After search access right information database, by with querying condition in user name, server identification, the order of root authority title mutuallyThe information of the user right of joining is returned to server 203 as Query Result; If comprise in the Query Result that server 203 receivesThere is the information of user right, confirm to pass through; Otherwise checking is not passed through.
S404: server 203 is carried out the root authority order of user's input.
S405: server 203 is not carried out the root authority order of user's input, and shows uncommitted information.
More preferably, if system need to be managed multiple server clusters, the data center 202 in Fig. 2 a specifically can be as figureShown in 2b, comprising: main database server 211 and multiple from database server 212; Each from database server 212Be responsible for the user root authority centralized management of a server cluster, each server cluster is assigned one and takes from databaseBusiness device is communicated by letter with it. Each authority information database from database server realize with described main database server inAuthority information database synchronization.
For thering is hypotactic data center, in above-mentioned steps S303, empowerment management server 201 according to generateData base manipulation statement, upgrades the record in the authority information database in data center 202, specifically comprises:
Empowerment management server 201, according to the data base manipulation statement generating, upgrades the power in main database server 211Record in limit information database;
Complete after authority information database update at main database server 211, main database server 211 will upgrade numberEach from the authority information database of database server 212 according to being synchronized to; After synchronizing process completes, respectively from database serviceIn device 212, store the database with the database identical content of main database server 211.
With the each server the server cluster of communicating by letter from database server 212, according to depositing from database serverThe information of storage, carries out the method verified in user root authority set identical with the method described in above-mentioned Fig. 4, i.e. above-mentioned stepsIn S402, server 203 is according to the querying condition generating, and the authority information database in data query center 202, is specially:Server 203 according to generate querying condition, inquiry with book server place server set group communication from database serverIn authority information database; And pre-configured in each server in this server cluster should be from database serverThe network address.
The embodiment of the present invention is due to user right information is stored in to data center, unified to server set by data centerThe user root authority of the each server in group is managed concentratedly, and needn't be if existing technology is in the configuration of every station serverIn file, store all user right information; Thereby greatly save the resource in system, the depositing of especially each serverStorage resource; Make whole system with lower cost, the user of the more huge server cluster of centralized management more rapidlyRoot authority.
One of ordinary skill in the art will appreciate that all or part of step realizing in above-described embodiment method is passableCarry out by program the hardware that instruction is relevant and complete, this program can be stored in a computer read/write memory medium, as:ROM/RAM, magnetic disc, CD etc.
The above is only the preferred embodiment of the present invention, it should be pointed out that the ordinary skill people for the artMember, under the premise without departing from the principles of the invention, can also make some improvements and modifications, and these improvements and modifications also shouldBe considered as protection scope of the present invention.
Claims (10)
1. a user root authority centralized management system, comprising: empowerment management server, data center, and server setGroup; Wherein,
Described empowerment management server is used for receiving after the user right amendment information of keeper's input with root root authority,Generate corresponding data base manipulation statement; And according to the data base manipulation statement generating, upgrade the authority letter of described data centerRecord in breath database;
Server in described server cluster is after user's login, the order of input root authority, according to the use of this user's loginName in an account book generated query condition, sends the inquiry request of carrying described querying condition to described data center; Described data center rootAccording to the inquiry request receiving, the information of the user right matching with described querying condition in described authority information database is doneFor Query Result returns; Described server confirms according to the Query Result returning whether Authority Verification passes through; Pass through if confirm,Carry out the root authority order of input;
Wherein, user right amendment information comprises: the information of amendment type and user right; The information of described user rightComprise: user name, this user that user uses asks server identification, this user of the server of authorizing to ask to authorize this serviceThe title of the root authority order of device.
2. the system as claimed in claim 1, is characterized in that, described server cluster is multiple, and described data center is concreteComprise: main database server, and multiple from database server; Each server cluster is assigned one and takes from databaseBusiness device is communicated by letter with it; Authority in each authority information database and described main database server from database serverInformation database is synchronous; And
Described empowerment management server, specifically for according to the data base manipulation statement generating, upgrades described main database serverAuthority information database in record.
3. system as claimed in claim 1 or 2, is characterized in that, the information of described user right also comprises: the name of user's groupClaim, the user of this user's group asks the user of the server identification of the server of authorizing, this user's group to ask to authorize this serverThe title of root authority command history; Wherein, described user's group comprises multiple user names, described root authority command historyComprise the title of multiple root authority order.
4. a management method in user root authority set, comprising:
Server in server cluster is logined after the order of input root authority user, raw according to the user name of this user's loginBecome querying condition, send the inquiry request of carrying described querying condition to data center;
Described data center is according to the inquiry request receiving, by the use matching with described querying condition in authority information databaseThe information of family authority is returned as Query Result;
Described server confirms according to the Query Result returning whether Authority Verification passes through; Pass through if confirm, execution is inputtedThe order of root authority;
Wherein, the record in the authority information database of described data center is by empowerment management server update: described in awardAuthority management server receives after the user right amendment information of keeper's input with root authority, generates corresponding databaseAction statement; And according to the data base manipulation statement generating, upgrade the record in the authority information database of described data center;
Wherein, the information of described user right comprises: user name, this user that user uses asks the service of the server of authorizingDevice mark, this user ask the title of the root authority order of authorizing this server.
5. method as claimed in claim 4, is characterized in that, described server is tested according to the Query Result confirmation authority of returningWhether card is by being specially:
Described server is according to the Query Result returning, therefrom search whether have with the title of the root authority order of input andThe information of the user right that the server identification of book server matches; If have, confirm to pass through; Otherwise, confirm not pass through.
6. method as claimed in claim 4, is characterized in that, in described querying condition, also comprises: the server of book serverMark; And
Described server confirms that according to the Query Result returning whether Authority Verification is by being specially:
Described server, according to the Query Result returning, is therefrom searched the title phase whether having with the root authority order of inputtingThe information of the user right of joining; If have, confirm to pass through; Otherwise, confirm not pass through.
7. method as claimed in claim 4, is characterized in that, in described querying condition, also comprises: the server of book serverThe title of the root authority order of mark, input; And
Described server confirms that according to the Query Result returning whether Authority Verification is by being specially:
If include the information of user right in the Query Result that described server receives, confirm to pass through; Otherwise, confirm obstructedCross.
8. the method as described in as arbitrary in claim 4-7, is characterized in that, described data center specifically comprises: MDL clothesBusiness device, and multiple from database server; And
Described server cluster is multiple, and each server cluster is assigned one and communicates by letter with it from database server; And
Described according to the data base manipulation statement generating, upgrade record in the authority information database of described data center concreteComprise:
Described empowerment management server, according to the data base manipulation statement generating, upgrades the authority in described main database serverRecord in information database;
Described main database server more new data is synchronized to respectively from database server; And
Use this querying condition inquiry to be specially with the authority information database of the data center of described server set group communication:
Server in described server cluster uses this querying condition inquiry and book server place server set group communicationAuthority information database from database server.
9. method as claimed in claim 8, is characterized in that, the information of described user right also comprises: the title of user's group,The user of this user group asks the user of server identification, this user's group of the server of authorizing to ask to authorize this serverThe title of root authority command history; Wherein, described user's group comprises multiple user names, in described root authority command historyComprise the title of multiple root authority order.
10. method as claimed in claim 9, is characterized in that, described empowerment management server receives has root authorityAfter the user right amendment information of keeper's input, generate corresponding data base manipulation statement, specifically comprise:
Described empowerment management server receives after the user right amendment information of keeper's input with root authority, call withIn described user right amendment information, revise the corresponding api function of type, according to the user in described user right amendment informationThe corresponding data base manipulation statement of Information generation of authority.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210557359.XA CN103067463B (en) | 2012-12-19 | 2012-12-19 | user root authority centralized management system and management method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210557359.XA CN103067463B (en) | 2012-12-19 | 2012-12-19 | user root authority centralized management system and management method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103067463A CN103067463A (en) | 2013-04-24 |
| CN103067463B true CN103067463B (en) | 2016-05-11 |
Family
ID=48109917
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210557359.XA Active CN103067463B (en) | 2012-12-19 | 2012-12-19 | user root authority centralized management system and management method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103067463B (en) |
Families Citing this family (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103365685A (en) * | 2013-06-03 | 2013-10-23 | 深圳创维无线技术有限公司 | Super authority method and super authority device based on android |
| CN104243154B (en) * | 2013-06-07 | 2018-07-06 | 腾讯科技(深圳)有限公司 | Server user's permission centralized control system and method |
| CN103826215B (en) * | 2014-02-11 | 2018-03-02 | 北京奇虎科技有限公司 | A kind of method and apparatus for carrying out Root authority management on the terminal device |
| CN105376203B (en) * | 2014-08-26 | 2019-11-05 | 阿里巴巴集团控股有限公司 | The processing method of interactive information, apparatus and system |
| CN104618486A (en) * | 2015-02-06 | 2015-05-13 | 浪潮电子信息产业股份有限公司 | Unified management method of multi-platform users of cluster storage system |
| CN105303119A (en) * | 2015-09-14 | 2016-02-03 | 浪潮集团有限公司 | Multi-data center privilege management method and system |
| CN105956457B (en) * | 2016-04-27 | 2018-11-13 | 四川秘无痕信息安全技术有限责任公司 | A method of it frequently executing root authority and operates and obtain real-time results feedback |
| CN107517124A (en) * | 2017-07-18 | 2017-12-26 | 交控科技股份有限公司 | Method and device based on Transmission Control Protocol Remote configuration Version Management Software SVN authorities |
| CN108563958B (en) * | 2018-04-17 | 2022-06-14 | 平安普惠企业管理有限公司 | Role permission updating method and device, computer equipment and storage medium |
| CN109359443A (en) * | 2018-09-07 | 2019-02-19 | 郑州云海信息技术有限公司 | A kind of interface realizing method of distributed block storage system editor local authentication user |
| CN109522368A (en) * | 2018-09-28 | 2019-03-26 | 北京英视睿达科技有限公司 | A kind of method for managing user right and system |
| CN109543420B (en) * | 2018-09-29 | 2023-07-21 | 中国平安人寿保险股份有限公司 | Permission configuration method and device based on sud, electronic equipment and storage medium |
| CN109408593A (en) * | 2018-10-16 | 2019-03-01 | 国家电网有限公司 | A kind of data base management system, device and method |
| CN109784087A (en) * | 2018-12-13 | 2019-05-21 | 平安科技(深圳)有限公司 | Method, apparatus, medium and the electronic equipment of virtual platform user authority management |
| CN109711147B (en) * | 2019-01-02 | 2020-06-02 | 浪潮商用机器有限公司 | Method, device and system for managing three rights separately of operating system and storage medium |
| CN112688983A (en) * | 2019-10-18 | 2021-04-20 | 顺丰科技有限公司 | Proxy right management device, terminal device and storage medium |
| CN110968568B (en) * | 2019-12-04 | 2023-08-18 | 常熟理工学院 | Database management system |
| CN111414423B (en) * | 2020-03-20 | 2023-07-25 | 北京金山云网络技术有限公司 | Method, device and server for operating MongoDB database |
| CN115348185B (en) * | 2022-08-19 | 2023-12-05 | 招银云创信息技术有限公司 | Control method and control device of distributed query engine |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101170409A (en) * | 2006-10-24 | 2008-04-30 | 华为技术有限公司 | Method, system, service device and certification server for realizing device access control |
| CN102088350A (en) * | 2009-12-08 | 2011-06-08 | 长春吉大正元信息技术股份有限公司 | Directory service-based authorization management system and implementation method thereof |
| CN102088351A (en) * | 2009-12-08 | 2011-06-08 | 长春吉大正元信息技术股份有限公司 | Authorization management system and implementation method thereof |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4968917B2 (en) * | 2006-07-28 | 2012-07-04 | キヤノン株式会社 | Authority management apparatus, authority management system, and authority management method |
-
2012
- 2012-12-19 CN CN201210557359.XA patent/CN103067463B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101170409A (en) * | 2006-10-24 | 2008-04-30 | 华为技术有限公司 | Method, system, service device and certification server for realizing device access control |
| CN102088350A (en) * | 2009-12-08 | 2011-06-08 | 长春吉大正元信息技术股份有限公司 | Directory service-based authorization management system and implementation method thereof |
| CN102088351A (en) * | 2009-12-08 | 2011-06-08 | 长春吉大正元信息技术股份有限公司 | Authorization management system and implementation method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103067463A (en) | 2013-04-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103067463B (en) | user root authority centralized management system and management method | |
| RU2628902C2 (en) | Coordination mechanism for cloud choice | |
| US7200806B2 (en) | System and method for generating pre-populated forms | |
| CN103957248B (en) | A kind of public real time data releasing cloud service platform based on Internet of Things | |
| CN105357201A (en) | Access control method and system for object cloud storage | |
| US20110314520A1 (en) | Online service access controls using scale out directory features | |
| CN109683911B (en) | System for realizing automatic application deployment and influence analysis | |
| CN106156289A (en) | The method of the data in a kind of read-write object storage system and device | |
| CN103595730A (en) | Ciphertext cloud storage method and system | |
| CN105393243A (en) | Transaction ordering | |
| CN101777047A (en) | System, equipment and method for accessing database under multiple-tenant environment | |
| CN107391758A (en) | Database switching method, device and equipment | |
| CN103064927A (en) | Data access method and device of distributed file system | |
| CN105989426A (en) | Customer relationship management system facing standard information service industry | |
| CN109542861B (en) | File management method, device and system | |
| CN103034735A (en) | Big data distributed file export method | |
| CN103685463A (en) | Access control method and system in cloud computing system | |
| CN105653901A (en) | Component repository management method and system | |
| CN104852965A (en) | Method and system for user account project management | |
| CN103023921A (en) | Authentication and access method and authentication system | |
| JP2005148962A (en) | File system | |
| CA3147372A1 (en) | Electronic invoice management method, device, computer apparatus, and storage medium | |
| CN109933486B (en) | Logistics data monitoring processing method, device and system | |
| CN102299945A (en) | Gateway configuration page registration method, system thereof and portal certificate server | |
| CN114172752B (en) | Group type interconnection method for nodes of Internet of things |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20230417 Address after: Room 501-502, 5/F, Sina Headquarters Scientific Research Building, Block N-1 and N-2, Zhongguancun Software Park, Dongbei Wangxi Road, Haidian District, Beijing, 100193 Patentee after: Sina Technology (China) Co.,Ltd. Address before: 100080, International Building, No. 58 West Fourth Ring Road, Haidian District, Beijing, 20 floor Patentee before: Sina.com Technology (China) Co.,Ltd. |