CN109840719A - Management-control method, device and the server of organizational domains - Google Patents
Management-control method, device and the server of organizational domains Download PDFInfo
- Publication number
- CN109840719A CN109840719A CN201910153866.9A CN201910153866A CN109840719A CN 109840719 A CN109840719 A CN 109840719A CN 201910153866 A CN201910153866 A CN 201910153866A CN 109840719 A CN109840719 A CN 109840719A
- Authority
- CN
- China
- Prior art keywords
- organization
- operator
- business
- interface
- management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
This application provides a kind of management-control method of organizational domains, device and servers, are related to Internet technical field.Wherein the management-control method includes: the unified login interface for monitoring operator in organizational domains;If listening to log-on message, the management type of operator is determined according to log-on message;If the management type of operator is institutional framework class, organization and administration interface is switched to so that management service information is arranged in operator, if the management type of operator is service authority class, obtain the organization id of operator, the corresponding business interface of organization id is switched to so that operator carries out business processing, wherein, business interface is matched with the institutional framework of organization id.A set of Network Management System can be only disposed by the application, saves the deployment resource of hardware and software.Meanwhile make operator in each tissue only can to oneself business within the organization handle, ensure that mutually indepedent between tissue, the efficiency of management and reliability be effectively promoted.
Description
Technical field
This disclosure relates to Internet technical field, more particularly, to the management-control method, device and server of organizational domains.
Background technique
The management of existing enterprise or department includes that decentralized management and a point domain manage.Wherein, decentralized management essence is for difference
The administrator of rank provides the setting of different administration authorities to reach visible/invisible, can manage/not manageable purpose, than
Such as different types of equipment, the settings such as different function inquiry of the equipment of different zones and equipment, modification, additions and deletions or
Other service authorities.It is to be divided into equipment to be managed, data and Operation and Maintenance function by management domain in Fen Yu nature of management
Multiple virtual management entities, thus can be by different domain administrator management.In practical application, by the way that the account of administrator is assigned
Resource set and corresponding management permission can specifically be managed by giving, and realize above-mentioned Authority and Domain Based Management management.
Usual enterprise or department etc. organizational domains may include multiple specific organizations, in order to realize above-mentioned Authority and Domain Based Management
Management, each organization run Network Management System independent, such as the Ministry of Public Security, the provincial Ministry of Public Security belong to parent organization
Mechanism then needs to dispose a set of provincial public security management on the server of the provincial Ministry of Public Security for managing each city-level Ministry of Public Security
System;And each city-level Ministry of Public Security needs that the public security in affiliated urban district is managed and is safeguarded, and each city-level Ministry of Public Security phase
It is independent between mutually, then it needs to dispose a set of city-level Management system for police on the server of each city-level Ministry of Public Security respectively.It is this
The mode of independent deployment Network Management System, needs the hardware resource of each organization and software resource to meet its network management
The running environment of system, results in waste of resources to a certain extent.
Summary of the invention
In view of this, the management-control method, device and server for being designed to provide a kind of organizational domains of the disclosure, are not necessarily to needle
To each independent on-premise network management system of tissue, the deployment resource of hardware and software can be saved.
To achieve the goals above, the disclosure the technical solution adopted is as follows:
In a first aspect, the method is applied to server present disclose provides a kind of management-control method of organizational domains, comprising:
Monitor the unified login interface of operator in the organizational domains;
If listening to log-on message, the management type of operator is determined according to the log-on message;The management type
Including institutional framework class and service authority class;
If the management type of the operator is institutional framework class, organization and administration interface is switched to for the operator
Be arranged management service information, wherein the management service information include institutional framework configuration information corresponding with organization id and/or
Operator message corresponding with organization id;
If the management type of the operator is service authority class, the organization id of the operator is obtained, institute is switched to
The corresponding business interface of organization id is stated so that the operator carries out business processing, wherein the business interface and the tissue
The institutional framework of ID matches.
Second aspect, present disclose provides a kind of control device of organizational domains, described device is applied to server, comprising:
Management type determining module, for monitoring the unified login interface of operator in the organizational domains;If listened to
Log-on message determines the management type of operator according to the log-on message;The management type includes institutional framework class and industry
Business permission class;
Module is managed at interface, if the management type for the operator is institutional framework class, switches to organization and administration
Management service information is arranged for the operator in interface, wherein the management service information includes corresponding with organization id group
Knit structure configuration information and/or operator message corresponding with organization id;If the management type of the operator is operational authority
Class is limited, the organization id of the operator is obtained, switches to the corresponding business interface of the organization id for operator progress
Business processing, wherein the business interface is matched with the institutional framework of the organization id.
The third aspect, disclosure embodiment provide a kind of server, including processor and memory, the memory
Be stored with the machine-executable instruction that can be executed by the processor, the processor execute the machine-executable instruction with
Realize the above method.
Fourth aspect, disclosure embodiment provide a kind of machine readable storage medium, and the machine readable storage is situated between
Matter is stored with machine-executable instruction, and when being called and being executed by processor, the machine can be held the machine-executable instruction
Row instruction promotes the processor to realize the above method.
Management-control method, device, server and the machine readable storage medium of above-mentioned organizational domains, are grasped listening in organizational domains
When the log-on message of work person, corresponding interface is directly switched to according to the management type of operator and carries out business processing, operation letter
It is single, and under this mode, a set of Network Management System can be only disposed in entire organizational domains, the behaviour of each tissue in organizational domains
Work person can be logged in by the Network Management System, without being stepped on respectively by the autonomous system that respectively place is organized again
Record, had not only saved the Network Management System deployment resource of hardware and software, but also may be implemented to be managed collectively and distribute.Meanwhile it is logical
It crosses and operator is divided into institutional framework class and service authority class, can be realized from management layer and distinguish management, be conducive to management and dimension
Shield.In addition, making each tissue by showing business corresponding with the organization id of operator interface to service authority type of operator
Interior operator only can to oneself business within the organization handle, ensure that it is mutually indepedent between tissue, effectively
Improve the efficiency of management and reliability.
Other feature and advantage of the disclosure will illustrate in the following description, alternatively, Partial Feature and advantage can be with
Deduce from specification or unambiguously determine, or by implement the disclosure above-mentioned technology it can be learnt that.
To enable the above objects, features, and advantages of the disclosure to be clearer and more comprehensible, better embodiment is cited below particularly, and match
Appended attached drawing is closed, is described in detail below.
Detailed description of the invention
It, below will be to specific in order to illustrate more clearly of disclosure specific embodiment or technical solution in the prior art
Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below
Attached drawing is some embodiments of the disclosure, for those of ordinary skill in the art, before not making the creative labor
It puts, is also possible to obtain other drawings based on these drawings.
Fig. 1 is the application scenario diagram of the management-control method for the organizational domains that disclosure embodiment provides;
Fig. 2 is a kind of structural schematic diagram for tissue data field that disclosure embodiment provides;
Fig. 3 is a kind of flow chart of the management-control method for organizational domains that disclosure embodiment provides;
The structural schematic diagram carried out data transmission between the different tissues that Fig. 4 provides for disclosure embodiment;
Fig. 5 is a kind of structural schematic diagram of the control device for organizational domains that disclosure embodiment provides;
Fig. 6 is a kind of structural schematic diagram for server that disclosure embodiment provides.
Specific embodiment
To keep the purposes, technical schemes and advantages of disclosure embodiment clearer, below in conjunction with attached drawing to this public affairs
The technical solution opened is clearly and completely described, it is clear that and described embodiment is a part of embodiment of the disclosure,
Rather than whole embodiment.Based on the embodiment in the disclosure, those of ordinary skill in the art are not making creation
Property labour under the premise of every other embodiment obtained, belong to the disclosure protection range.
The structural schematic diagram of organizational domains shown in Figure 1, wherein tissue one is the group of the highest level in the organizational domains
It knits, tissue two to tissue four is the second level tissue for belonging to tissue one and managing, and tissue two, tissue three and tissue four can be and bear respectively
The tissue for blaming respective district management is also possible to be responsible for the tissue of different functions.Wherein, organizational domains are the collection comprising multiple tissues
It closes, specifically can be a department, an enterprise, a group etc., such as the organizational domains are either national education
Portion is also possible to the Bureau of Education of local level.If an enterprise is an organizational domains, each department in the enterprise can make
For the tissue in organizational domains.The granularity of each tissue is set as needed in the granularity and organizational domains of organizational domains, and the disclosure is real
Mode is applied to this without limiting.
In disclosure embodiment, the structure type of each tissue can be varied in organizational domains, such as: line organization
(the superior and the subordinate), functional system (parallel stage), straight line (mix) with functional system.Under various institutional framework type cases, organizational domains
Control needs to have management object and the business scenario that can be managed collectively under various organization structure type, while meeting enterprise in group
Knit the Authority and Domain Based Management permission demand for control in structure between institutional framework.Based on this, disclosure embodiment provides a kind of group
Management-control method, device, server and the machine readable storage medium for knitting domain, in the case where saving resource, to organizational domains
Rationally and effectively managed.
The management-control method of a kind of management-control method for organizational domains that disclosure embodiment provides, the organizational domains is applied to service
Device, the server can be the server in the organizational domains in any tissue, be also possible to the privately owned Cloud Server of the organizational domains or
The publicly-owned Cloud Server of person.The Network Management System of the organizational domains can be disposed on the server in advance.In order to realize in organizational domains
Multiple groups knit between Authority and Domain Based Management management can be respectively in management setting level and object data in on-premise network management system
Level is disposed as follows:
In object data level, it is each organization configurations uniquely corresponding organization id (i.e. organization identification), will belongs to same
All data of a tissue are stored in the same tissue data field, therefore data field is organized to can be understood as a tissue
Data acquisition system.Different tissues in organizational domains can have corresponding tissue data field, the group organization data with other tissues
Domain partitioned storage.
The structural schematic diagram of tissue data field as shown in Figure 2.Wherein, each tissue data field and organization id are one a pair of
It should be related to.It include again Business Entity data field and operator information area in each tissue data field, Business Entity data field is used for
Store the Business Entity of the tissue, the Business Entity include people (such as operator), object (such as equipment) and item (such as various tasks or
Work) etc., operator information area is for storing information related with the operator of the tissue.Such as: tissue data field one can be with
Corresponding tissue one, for saving the Business Entity data and operator message that belong to tissue one;Tissue data field two can correspond to
Tissue two, for saving the Business Entity data and operator message that belong to tissue two;And so on.For the ease of searching number
According to, it can be according to business object type by the different subregions of Business Entity data field, each subregion corresponds to a business pair
As type, which stores the corresponding Business Entity data of the business object type, each industry in a tissue data field
Business object type data correspond to identical organization id, the Business Entity data can also include data entity ID (such as: equipment
ID, operator ID or a certain affairs ID etc.) and data attribute (such as the service life of Authorization Attributes, equipment, operator
Length of service or gender, the urgency level etc. of a certain affairs) etc..
It is each operator's configuration management type, the management type of operator may include tissue in management setting level
Structure class and service authority class.Wherein, institutional framework type of operator (alternatively referred to as superAdmin) can configure in organizational domains
The institutional framework of each tissue is managed and safeguards to the institutional framework, such as: newly-built institutional framework, modification institutional framework
Or delete institutional framework.In order to increase the reliability of data, after usual institutional framework establishes, if in the institutional framework
Some tissue be corresponding with Business Entity data, then the tissue cannot be deleted.If all Business Entity data of the tissue
It is deleted by the service authority type of operator of the tissue, then can just delete the tissue from the institutional framework of organizational domains.Tissue
Each operation for organizing to include can also be arranged other than it institutional framework can be managed and be safeguarded in structure type of operator
Member's information, but the not management to Business Entity data and operating right, the institutional framework type of operator do not need to configure yet
Organization id.And service authority type of operator can have management and operating right to the corresponding business of tissue where it, it is specific to weigh
Limiting range can determine according to the corresponding permission of operator post affiliated in the tissue.
It can be that " organization id " attribute is arranged in the operator according to the tissue belonging to operator in tissue data field,
Operator ID, the operator's title, operator of each operator are configured in the operator information area of the tissue data field of the tissue
Attribute information and the corresponding organization id of the operator.
In order to enhance the safety of tissue data, the corresponding data of its organization id can be checked by making operator only,
On the interface of Network Management System, it can be the corresponding business interface of each organization id, industry is carried out in business interface
Business processing.It should be noted that the operator message of the partial service permission type of operator in tissue can also be by the tissue
The higher service authority type of operator of rank is configured.It modifying, deleting or when search operation to Business Entity data,
All inherit " organization id " attribute of current business solid data.
The flow chart of the management-control method of organizational domains as shown in Figure 3, the management-control method of the organizational domains can be applied to above-mentioned clothes
Business device, this method comprises the following steps:
Step S302 monitors the unified login interface of operator in organizational domains.
In one embodiment, the operator of different tissues can be stepped on by unified login interface in organizational domains
Record, then inputs log-on message.Whether server can be monitored log-on message input in unified login interface.The login interface
It may include log-on message input field or log-on message digitizer bar.
Wherein, log-on message input field can be the input field of username and password;Log-on message digitizer bar can pass through
The characteristic information of sensor acquisition operator on server, using collected characteristic information as the log-on message of operator,
This feature information specifically can be facial image or fingerprint image etc..
The above-mentioned unified login interface of present embodiment, on the one hand provides unified login for the operator in organizational domains and enters
Mouthful, on the other hand can the login legitimacy to operator verify, the third aspect can also verify it is legal on the basis of,
It further determines that the management type of operator, and then switches to interface corresponding with its management type, carry out subsequent operation, simplify
Login process, improves the user experience of login.
Step S304 determines the management type of operator according to log-on message if listening to log-on message.Operator's
Management type may include institutional framework class and service authority class.
In order to enhance safety, before the management type for determining operator according to log-on message, first login can be believed
The legitimacy of breath is verified, and after verifying is legal, the management type of operator is determined further according to log-on message.It specifically, can be with
The corresponding relationship of log-on message and management type based on each operator prestored in Network Management System determines current log in
Operator management type.Such as: log-on message is listened to, the legitimacy of log-on message is verified, it can be after being verified
Management type corresponding with log-on message is searched in Network Management System, so that it is determined that the management type of operator.If verifying is not
Pass through, then login failure, stops follow-up process.
It is understood that also may include the device identification of the used equipment of operator, network in above-mentioned log-on message
The device identification of each legitimate device and the corresponding relationship of management type can be prestored in management system can when operator logs in
To search management type corresponding with the device identification in log-on message in a network, so that it is determined that the management class of operator
Type.
Step S306 switches to organization and administration interface if the management type of operator is institutional framework class for described
Management service information is arranged in operator.
Wherein, management service information includes institutional framework configuration information corresponding with organization id and/or corresponding with organization id
Operator message.In organizational domains, each tissue all has unique corresponding organization id, the organization id can be server with
What machine generated, it is also possible to the configuration of institutional framework type of operator.
The permission of institutional framework type of operator may include:
The institutional framework configuration information of each tissue in organizational domains is set, and/or, each tissue in organizational domains is set
Operator message etc..
Above-mentioned management service information can be arranged by organization and administration interface in institutional framework type of operator.
Step S308 obtains the organization id of operator, switches to group if the management type of operator is service authority class
The corresponding business interface ID is knitted so that operator carries out business processing.Wherein, business interface is matched with the institutional framework of organization id.
If the management type of operator is service authority class, its corresponding group can be searched according to the user name of operator
ID is knitted, the corresponding business interface of organization id is switched to, allows the business interface of service authority type of operator tissue belonging to it
Interior carry out business processing.Wherein, the function in the corresponding business interface of each organization id is related with this organization id, each function
At least one Business Entity data can be corresponded to, such as organization id is manpower portion, then the organization id corresponds to business interface and can wrap
It includes: staff's benefits, new staffs training, recruitment etc..If operator selects a certain function, can be in the corresponding drop-down of the function
The operation of related service solid data is carried out in menu or the link page.For increasing management equipment (such as PC machine) function, such as
Fruit operator chooses the function, then can show facility information input interface, and it is defeated to can receive operator by the interface
Device version number, device model, device configuration information for entering etc., these information belong to increase the corresponding business reality of management equipment
Volume data.
The management-control method for the organizational domains that disclosure embodiment provides, in the log-on message for listening to operator in organizational domains
When, corresponding interface is directly switched to according to the management type of operator and carries out business processing, it is easy to operate, and this mode
Under, a set of Network Management System can be only disposed in entire organizational domains, the operator of each tissue can lead in organizational domains
It crosses the Network Management System to be logged in, without being logged in respectively by the autonomous system that respectively place is organized again, both save
The Network Management System of hardware and software disposes resource, and may be implemented to be managed collectively and distribute.Meanwhile by the way that operator is divided
For institutional framework class and service authority class, it can be realized from management layer and distinguish management, conducive to managing and maintaining.In addition, passing through
Business corresponding with the organization id of operator interface is shown to service authority type of operator, makes operator in each tissue only
Can to oneself business within the organization handle, ensure that mutually indepedent between tissue, management effect be effectively promoted
Rate and reliability.
In disclosure embodiment, institutional framework type of operator the institutional framework of each tissue can be managed and
Maintenance.If the management type of operator is institutional framework class, organization and administration interface is shown to the operator.
In one embodiment, organization and administration interface may include institutional framework configuration feature area, institutional framework class behaviour
Work person can carry out institutional framework configuration in institutional framework configuration feature area, wherein institutional framework configuration feature Qu Zhongke with
Including newly-built institutional framework functional areas, modification institutional framework functional areas and deletion institutional framework functional areas etc., wherein deleting tissue
Structure function area be under normal conditions disabled status (such as delete institutional framework functional areas button be grey, other functional areas
Button be grey except color, belong to available mode);Institutional framework type of operator can choose some functional areas by
Button, and then institutional framework is operated in the corresponding interface of the button, by taking newly-built institutional framework functional areas as an example, if behaviour
The new buttons of newly-built institutional framework functional areas are chosen as member, then enter the interface of newly-built institutional framework, can wrap in the interface
Graphical tool column and formula bar etc. are included, operator can complete the building of institutional framework at the interface, can choose after the completion new
The save button of institutional framework functional areas is built, then the institutional framework, which is established, completes.
In another embodiment, organization and administration interface may include operator message configuration function corresponding with organization id
It can area.Such as: it include: the operator message configuration feature area of each tissue in the organizational domains in organization and administration interface, if currently
Organizational domains are certain group, which divides into the corresponding tissue of each product line, then may include each in organization and administration interface
Product line corresponds to the operator message configuration feature area of tissue.Institutional framework type of operator can be in operator message configuration feature
Area configures the operator message of the service authority type of operator of each tissue, every configuration for completing an operator message, network
The corresponding relationship between the operator message and the organization id organized where it is then established automatically and saved to management system.Wherein,
Operator message may include the user name of operator.
Certainly, in the specific implementation, organization and administration interface can also simultaneously include institutional framework configuration feature area and with group
Knit ID corresponding operator message configuration feature area.
In organization and administration interface, if receiving the first operational order corresponding with institutional framework configuration feature area, root
Institutional framework configuration is carried out according to the first operational order.For example, the first operational order can be the tissue of the tissue two in setting Fig. 1
The institutional framework of structure or entire organizational domains.If receiving the second operation corresponding with operator message configuration feature area to refer to
It enables, operator message configuration is carried out according to the second operational order.For example, the second operational order can be as the tissue two in Fig. 1
The operator message of configuration service permission type of operator.
If the management type of operator is service authority class, operator's sheet can be generated according to the log-on message of operator
The token information of secondary login, the token information are to characterize the Token information of current operator's access credentials.Wherein, token information
It may include the user name and organization id of operator.It for example, include the user name of operator in log-on message, according to operator's
Corresponding relationship between user name and the operator message prestored and organization id, determines the organization id of the operator, and generation includes
The user name of operator and the token information of organization id.
The organization id of extraction operation person from token information, and the corresponding business interface of the organization id is switched to for the behaviour
Work person carries out business processing, wherein the business interface is matched with the institutional framework of the organization id, it is contemplated that different tissues is corresponding
Institutional framework may be different, in present embodiment, business interface is matched namely business circle with the institutional framework of the organization id
Each business item in face can be correspondingly arranged with the institutional framework of the organization id, if such as institutional framework be line organization (i.e.
The superior and the subordinate) type, then the business item classification that each rank configures can be arranged at business interface, be certain with current organization
For school, institutional framework includes principal-> each Grade Group group leader-> place grade teaching and administrative staff, then on the business interface
It may include principal and handle item area, each Grade Group group leader handles item area and common teaching and administrative staff handles item area.This side
Formula is able to ascend the readability and operability at business interface.Meanwhile by showing the corresponding business of the organization id to operator
Interface, thus make different tissues operator can only to oneself business within the organization handle, ensure that between tissue
It is mutually indepedent.
Specifically, the above-mentioned corresponding business interface of the organization id that switches to is so that the operator carries out the step of business processing
Suddenly, it may comprise steps of:
(1) the corresponding business interface of the organization id is shown;
As described above, the business interface is matched with the institutional framework of organization id, the business item that specific business interface includes
It is related with the organization id, the setting position of business item can flexible setting according to actual needs, the corresponding industry in business interface
Pragmatic volume data, which can according to need, to be shown in the business interface, can also be read by setting query function from centrally stored area
It takes, disclosure embodiment is to this without limiting.
(2) if there is business processing operation at above-mentioned business interface, in corresponding group of organization data of the organization id of aforesaid operations person
Business processing operation is carried out in domain;Business processing operation includes at least following one: increasing Business Entity data, modification business
Solid data deletes Business Entity data and searches Business Entity data;
(3) if the operation of above-mentioned business processing is increases Business Entity data, increasing organization id for the Business Entity data is
The attribute of the organization id of aforesaid operations person, the increased Business Entity data are centrally stored to the corresponding tissue of the organization id
In data field;If above-mentioned business processing operation is modification Business Entity data or deletes Business Entity data, above-mentioned tissue is maintained
ID is constant.
If increase Business Entity data specially increase Business Entity (such as increase new business item, increase newly
Equipment increases new operator), organization id can be obtained from the token information of current operator, the organization id that will acquire
It is set as " organization id " attribute of the Business Entity, and is stored in the corresponding tissue data field of the organization id;In business processing
When increasing Business Entity data in operating process, increase the organization id that organization id is the operator for the Business Entity data
Attribute, can be centrally stored in the corresponding tissue data field of the organization id by increased Business Entity data.And it modifies, delete
When removing and search Business Entity data, and carry out in the corresponding tissue data field of the organization id.This Business Entity data
Centrally stored mode can save the Business Entity data of different tissues in organizational domains in above-mentioned server, Huo Zhebao
Be stored in the accessible storage equipment of above-mentioned server, this centrally stored mode, compared with the prior art in by each group
The Business Entity Dynamic data exchange knitted is stored in the storage dispersion of the dispersion in the equipment in the tissue, this concentration of present embodiment
Business Entity data can be stored and be safeguarded together by storage mode, be conducive to data summarization and processing.
It pair, can also be according to the corresponding organization id partitioned storage of Business Entity data, i.e., under above-mentioned centrally stored mode
Server or storage equipment carry out subregion according to organization id, and the corresponding Business Entity data of same organization id are stored in the organization id
In corresponding same subregion, each organization id can be made to correspond to tissue data field so mutually indepedent, convenient for searching and maintenance.
In addition, the centrally stored mode of above-mentioned Business Entity data can in business operation treatment process real-time perfoming,
It can also be deposited according to the period asynchronous storage of setting, or requirement selection of the business according to belonging to Business Entity data to time delay
Store up the time.Under this mode, the corresponding Business Entity data of some business can be with real-time storage, and the corresponding business of some business is real
Volume data can be stored with the period, in the case where guaranteeing that business is normally carried out, alleviate the data storage pressure of server.
It is real to modify Business Entity data, the operation of deletion Business Entity data and lookup Business Entity data and increase business
Volume data is similar, to search Business Entity data instance, organization id can be obtained from the token information of current operator, then look into
The corresponding tissue data field of the organization id got is looked for, then according to the specific lookup information filtering group for searching Business Entity data
Data in organization data domain, such as be filtered based on the business object type for searching Business Entity data, the data that will filter out
It shows in business interface, which can be shown with tabular form, can also the exhibition in such a way that column diagram, sector diagram etc. visualize
Show, the disclosure is to this without limiting.
Based on tissue data field structural schematic diagram shown in Fig. 2, specific business processing operation can be in corresponding tissue
Data field carries out.Based on this, above-mentioned response operator in business interface business processing operation the step of, may include:
Monitor above-mentioned business interface;
If receiving the business processing operation of operator, carried out in the corresponding tissue data field of organization id of operator
Business processing operation;
In modification Business Entity data and deletion Business Entity data procedures in business processing operation, organization id is maintained
It is constant.
By carrying out business processing operation in the corresponding tissue data field of the organization id in operator, it is ensured that between tissue
The mutual independence of business.Meanwhile modifying Business Entity data and deleting in Business Entity data procedures, maintain organization id not
Become, it is ensured that the reliability and ease for maintenance of data.
It should be noted that the service authority type of operator in above-mentioned tissue can be corresponding with different operating rights, behaviour
The operating right of work person can automatically generate.For example, institutional framework type of operator is when carrying out institutional framework configuration, if the tissue
Including multiple and different departments, each department is corresponding with management function, can configure the department according to the management function of the department
Operating right.Institutional framework type of operator is configured by some service authority type of operator to some department of its belonged to tissue
When middle, which is provided with the corresponding operating right of the department automatically.
In an alternative embodiment, the Intranet of the server where Network Management System and some tissues may be straight
It is logical in succession, and with Intranets of other tissues may be it is indirect be connected to, for example, leading between server and the Intranet of tissue
It crosses firewall or gateway equipment is isolated.
Based on this, it is above-mentioned will be in the corresponding tissue data field of the increased Business Entity data organization id
The step of, may include:
If the corresponding Intranet of organization id and server are directly-connected network, it can be handled and be grasped by directly-connected network capturing service
Increased Business Entity data in work;
If the corresponding Intranet of organization id and the server are indirectly connected network, by corresponding interior in organization id in advance
The agent acquisition device disposed in net, increased Business Entity data in capturing service processing operation.Then it searches on the server
The corresponding tissue data field of organization id stores collected Business Entity data to the corresponding tissue data field of organization id.
Above-mentioned Business Entity data are which operator operates generation, then will include the behaviour in the Business Entity data
The organization id of work person, therefore server can find corresponding tissue data field based on the organization id, complete at the storage of data
Reason.
Certainly, during disposing the agent acquisition device or agent acquisition device be arranged organization id, or by its
Organization id is written in the configuration file of the agent acquisition device.
By this data acquisition modes, the data in indirectly connected network can be stored to the corresponding tissue number of organization id
According in domain, achieving the purpose that data are centrally stored, the processing such as summarize, safeguard convenient for follow-up data.
It is specifically described so that organizational domains are electric system as an example below.It is assumed that the electric system includes life
The corresponding office tissue of the corresponding organization of production in producing region and Office Area, the corresponding Network Management System of organizational domains can be deployed in
On the server of organization of production, then the corresponding Intranet of organization of production and the server are directly-connected network.If handling official business the interior of tissue
Net is provided with firewall or gateway equipment etc., then the Intranet of tissue of handling official business and the server are indirectly connected network, then can be
The Intranet of office tissue disposes a set of agent acquisition device, for making the Intranet and the server directly-connected network of office tissue.On
It states agent acquisition device and can be and utilize HTTP (Hyper Text Transfer Protocol, hypertext transfer protocol) tunnel skill
What art generated penetrates tool.
With the management-control method of above-mentioned organizational domains correspondingly, embodiment further provides a kind of control of organizational domains for the disclosure
Device is applied to server.As shown in figure 5, the device includes following module:
Management type determining module 51, for monitoring the unified login interface of operator in organizational domains;It is stepped on if listened to
Information is recorded, the management type of operator is determined according to log-on message;Management type includes institutional framework class and service authority class;
Module 52 is managed at interface, if the management type for operator is institutional framework class, switches to organization and administration circle
Management service information is arranged for operator in face, wherein management service information includes institutional framework configuration corresponding with organization id
Information and/or operator message corresponding with organization id;If the management type of operator is service authority class, operator is obtained
Organization id, switch to the corresponding business interface of organization id for operator carry out business processing, wherein business interface and tissue
The institutional framework of ID matches.
Wherein, control module 52 in interface can be also used for: token letter of this login of operator is generated according to log-on message
Breath;Wherein, token information includes the user name and organization id of operator;The organization id of extraction operation person from token information.
Interface control module 52 can be also used for: show organization and administration interface;Wherein, organization and administration interface includes knot of tissue
Structure configuration feature area and/or operator message configuration feature area corresponding with organization id;It is configured if received with institutional framework
Corresponding first operational order in functional areas carries out institutional framework configuration according to the first operational order;If received and operator
Corresponding second operational order in information configuration functional areas carries out operator message configuration according to the second operational order.
Interface control module 52 can be also used for: show the corresponding business interface of organization id;If the business interface has
Business processing operation, carries out business processing operation in the corresponding tissue data field of organization id of the operator;If the industry
Processing operation of being engaged in is to increase Business Entity data, increases the organization id that organization id is the operator for the Business Entity data
Attribute, will be in the corresponding tissue data field of the increased Business Entity data organization id;If the industry
Processing operation of being engaged in is modification Business Entity data or deletes Business Entity data, maintains the organization id constant.
Interface control module 52 can be also used for: if the corresponding Intranet of organization id and server are directly-connected network, pass through
Increased Business Entity data in directly-connected network capturing service processing operation;If the corresponding Intranet of organization id is non-with server
Directly-connected network is increased in capturing service processing operation by the agent acquisition device disposed in the corresponding Intranet of organization id in advance
Business Entity data;The corresponding tissue data field of organization id is searched on the server;Increased Business Entity in collecting
Data store tissue data field corresponding to organization id.
The control device for the organizational domains that disclosure embodiment provides, can make the operator of each tissue in organizational domains equal
It being logged in by unified login interface, each operator no longer needs to log in by the autonomous system that respectively place is organized, because
This may be implemented only to dispose set of system in organizational domains, without for the independent deployment system of each tissue in organizational domains, both
The deployment resource of hardware and software is saved, and may be implemented to be managed collectively and distribute.Meanwhile by the way that operator is divided into tissue
Structure class and service authority class can be realized from management layer and distinguish management, conducive to managing and maintaining.In addition, by business
Permission type of operator shows business corresponding with the organization id of operator interface, makes the operator in each tissue only can be right
Oneself business within the organization handled, ensure that mutually indepedent between tissue, the efficiency of management be effectively promoted and can
By property.
Embodiment further provides a kind of servers corresponding with above method embodiment for the disclosure.Fig. 6 is the clothes
The structural schematic diagram of business device, as shown in fig. 6, the server includes processor 61 and memory 62;Wherein, memory 62 is for depositing
One or more computer instruction is stored up, one or more computer instruction is executed by processor, to realize the pipe of above-mentioned organizational domains
Prosecutor method.
Server shown in fig. 6 further includes bus 63 and network interface 64, processor 61, network interface 64 and memory 62
It is connected by bus 63.
Wherein, memory 62 may include high-speed random access memory (RAM, Random Access Memory),
It may further include non-labile memory (non-volatile memory), for example, at least a magnetic disk storage.Bus 63
It can be isa bus, pci bus or eisa bus etc..The bus can be divided into address bus, data/address bus, control bus
Deng.Only to be indicated with a four-headed arrow in Fig. 6 convenient for indicating, it is not intended that an only bus or a type of total
Line.
Network interface 64 allows operator to pass through other network equipments for connecting at least one other network equipment
Network Management System on login service device.
Processor 61 may be a kind of IC chip, the processing capacity with signal.During realization, above-mentioned side
Each step of method can be completed by the integrated logic circuit of the hardware in processor 61 or the instruction of software form.Above-mentioned
Processor 61 can be general processor, including central processing unit (Central Processing Unit, abbreviation CPU), network
Processor (Network Processor, abbreviation NP) etc.;It can also be digital signal processor (Digital Signal
Processor, abbreviation DSP), specific integrated circuit (Application Specific Integrated Circuit, referred to as
ASIC), field programmable gate array (Field-Programmable Gate Array, abbreviation FPGA) or other are programmable
Logical device, discrete gate or transistor logic, discrete hardware components.It may be implemented or execute disclosure embodiment
In disclosed each method, step and logic diagram.General processor can be microprocessor or the processor is also possible to
Any conventional processor etc..The step of method in conjunction with disclosed in disclosure embodiment, can be embodied directly in hardware decoding
Processor executes completion, or in decoding processor hardware and software module combination execute completion.Software module can position
In random access memory, flash memory, read-only memory, programmable read only memory or electrically erasable programmable memory, register
In the storage medium of equal this fields maturation.The storage medium is located at memory 62, and processor 61 reads the information in memory 62,
The step of completing the method for aforementioned embodiments in conjunction with its hardware.
For the disclosure embodiment further provides a kind of machine readable storage medium, machine readable storage medium storage is organic
Device executable instruction, for the machine-executable instruction when being called and being executed by processor, machine-executable instruction promotes processor
Realize the management-control method of above-mentioned organizational domains, specific implementation can be found in method implementation, and details are not described herein.
The technology of the control device and server of organizational domains provided by disclosure embodiment, realization principle and generation
Effect is identical with preceding method embodiment, and to briefly describe, device embodiments part does not refer to place, can refer to aforementioned side
Corresponding contents in method embodiment.
Finally, it should be noted that embodiment described above, the only specific embodiment of the disclosure, to illustrate this public affairs
The technical solution opened, rather than its limitations, the protection scope of the disclosure are not limited thereto, although referring to aforementioned embodiments pair
The disclosure is described in detail, those skilled in the art should understand that: any technology for being familiar with the art
Personnel can still modify to technical solution documented by aforementioned embodiments in the technical scope that the disclosure discloses
Or variation or equivalent replacement of some of the technical features can be readily occurred in;And these modifications, variation or replacement,
The spirit and scope for disclosure embodiment technical solution that it does not separate the essence of the corresponding technical solution, should all cover in this public affairs
Within the protection scope opened.
Claims (12)
1. a kind of management-control method of organizational domains, which is characterized in that the method is applied to server, comprising:
Monitor the unified login interface of operator in the organizational domains;
If listening to log-on message, the management type of operator is determined according to the log-on message;The management type includes
Institutional framework class and service authority class;
If the management type of the operator is institutional framework class, organization and administration interface is switched to so that the operator is arranged
Management service information, wherein the management service information include institutional framework configuration information corresponding with organization id and/or with group
Knit the corresponding operator message of ID;
If the management type of the operator is service authority class, the organization id of the operator is obtained, switches to described group
The corresponding business interface ID is knitted so that the operator carries out business processing, wherein the business interface and the organization id
Institutional framework matching.
2. the method according to claim 1, wherein the step of obtaining the organization id of the operator, comprising:
The token information of this login of the operator is generated according to the log-on message;Wherein, the token information includes institute
State the user name and organization id of operator;
The organization id of the operator is extracted from the token information.
3. the method according to claim 1, wherein the organization and administration interface that switches to is for the operator
The step of management service information is set, comprising:
Show organization and administration interface;Wherein, the organization and administration interface includes institutional framework configuration feature area and/or and organization id
Corresponding operator message configuration feature area;
If receiving the first operational order corresponding with institutional framework configuration feature area, according to first operational order
Carry out institutional framework configuration;
If receiving the second operational order corresponding with operator message configuration feature area, referred to according to second operation
It enables and carries out operator message configuration.
4. the method according to claim 1, wherein switching to the corresponding business interface of the organization id for institute
State the step of operator carries out business processing, comprising:
Show the corresponding business interface of the organization id;
If there is business processing operation at the business interface, carried out in the corresponding tissue data field of organization id of the operator
Business processing operation;If the business processing operation increases tissue to increase Business Entity data for the Business Entity data
ID is the attribute of the organization id of the operator, and the increased Business Entity data organization id is corresponding
Tissue data field in;
If the business processing operation is modification Business Entity data or deletes Business Entity data, the organization id is maintained not
Become.
5. according to the method described in claim 4, it is characterized in that, the increased Business Entity data are centrally stored to institute
State the step in the corresponding tissue data field of organization id, comprising:
If the corresponding Intranet of organization id and the server are directly-connected network, the industry is acquired by the directly-connected network
Increased Business Entity data in processing operation of being engaged in;
If the corresponding Intranet of organization id and the server are indirectly connected network, by corresponding in the organization id in advance
Intranet in the agent acquisition device disposed, acquire increased Business Entity data in the business processing operation;
The corresponding tissue data field of the organization id is searched on the server;
The collected Business Entity data are stored into tissue data field corresponding to the organization id.
6. a kind of control device of organizational domains, which is characterized in that described device is applied to server, comprising:
Management type determining module, for monitoring the unified login interface of operator in the organizational domains;If listening to login
Information determines the management type of operator according to the log-on message;The management type includes institutional framework class and operational authority
Limit class;
Module is managed at interface, if the management type for the operator is institutional framework class, switches to organization and administration interface
So that management service information is arranged in the operator, wherein the management service information includes knot of tissue corresponding with organization id
Structure configuration information and/or operator message corresponding with organization id;If the management type of the operator is service authority class,
The organization id for obtaining the operator switches to the corresponding business interface of the organization id so that the operator carries out at business
Reason, wherein the business interface is matched with the institutional framework of the organization id.
7. device according to claim 6, which is characterized in that the interface control module is also used to:
The token information of this login of the operator is generated according to the log-on message;Wherein, the token information includes institute
State the user name and organization id of operator;
The organization id of the operator is extracted from the token information.
8. device according to claim 6, which is characterized in that the interface control module is also used to:
Show organization and administration interface;Wherein, the organization and administration interface includes institutional framework configuration feature area and/or and organization id
Corresponding operator message configuration feature area;
If receiving the first operational order corresponding with institutional framework configuration feature area, according to first operational order
Carry out institutional framework configuration;
If receiving the second operational order corresponding with operator message configuration feature area, referred to according to second operation
It enables and carries out operator message configuration.
9. device according to claim 6, which is characterized in that the interface control module is also used to:
Show the corresponding business interface of the organization id;
If there is business processing operation at the business interface, carried out in the corresponding tissue data field of organization id of the operator
Business processing operation;
If the business processing operation is increases Business Entity data, increasing organization id for the Business Entity data is the behaviour
The organization id attribute of work person, by the corresponding tissue data field of the increased Business Entity data organization id
It is interior;
If the business processing operation is modification Business Entity data or deletes Business Entity data, the organization id is maintained not
Become.
10. device according to claim 9, which is characterized in that the interface control module is also used to:
If the corresponding Intranet of organization id and the server are directly-connected network, the industry is acquired by the directly-connected network
Increased Business Entity data in processing operation of being engaged in;
If the corresponding Intranet of organization id and the server are indirectly connected network, by corresponding in the organization id in advance
Intranet in the agent acquisition device disposed, acquire increased Business Entity data in the business processing operation;
The corresponding tissue data field of the organization id is searched on the server;
The collected Business Entity data are stored into tissue data field corresponding to the organization id.
11. a kind of server, which is characterized in that including processor and memory, the memory is stored with can be by the place
The machine-executable instruction that device executes is managed, the processor executes the machine-executable instruction to realize in claim 1 to 5
Described in any item methods.
12. a kind of machine readable storage medium, which is characterized in that the machine readable storage medium is stored with the executable finger of machine
It enables, for the machine-executable instruction when being called and being executed by processor, the machine-executable instruction promotes the processor
Realize method described in any one of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910153866.9A CN109840719B (en) | 2019-02-28 | 2019-02-28 | Management and control method and device for organization domain and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910153866.9A CN109840719B (en) | 2019-02-28 | 2019-02-28 | Management and control method and device for organization domain and server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109840719A true CN109840719A (en) | 2019-06-04 |
| CN109840719B CN109840719B (en) | 2022-06-10 |
Family
ID=66885303
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910153866.9A Active CN109840719B (en) | 2019-02-28 | 2019-02-28 | Management and control method and device for organization domain and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109840719B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113362021A (en) * | 2021-05-31 | 2021-09-07 | 珠海大横琴科技发展有限公司 | Organization management method and device, electronic equipment and storage medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101459542A (en) * | 2008-12-29 | 2009-06-17 | 深圳市同洲电子股份有限公司 | Method, apparatus and management system for authority control to administrator |
| CN106203794A (en) * | 2016-06-30 | 2016-12-07 | 成都生辉电子科技有限公司 | A kind of client management system processed based on big data |
| CN106951773A (en) * | 2017-03-15 | 2017-07-14 | 泰康保险集团股份有限公司 | User role distributes method of calibration and system |
| CN106961332A (en) * | 2016-01-11 | 2017-07-18 | 腾讯科技(深圳)有限公司 | A kind of purview certification method and device |
| CN107426169A (en) * | 2017-05-24 | 2017-12-01 | 阿里巴巴集团控股有限公司 | A kind of method for processing business and device based on authority |
| CN108062479A (en) * | 2016-11-08 | 2018-05-22 | 杭州施强教育科技有限公司 | A kind of enterprise management system user right collocation method |
-
2019
- 2019-02-28 CN CN201910153866.9A patent/CN109840719B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101459542A (en) * | 2008-12-29 | 2009-06-17 | 深圳市同洲电子股份有限公司 | Method, apparatus and management system for authority control to administrator |
| CN106961332A (en) * | 2016-01-11 | 2017-07-18 | 腾讯科技(深圳)有限公司 | A kind of purview certification method and device |
| CN106203794A (en) * | 2016-06-30 | 2016-12-07 | 成都生辉电子科技有限公司 | A kind of client management system processed based on big data |
| CN108062479A (en) * | 2016-11-08 | 2018-05-22 | 杭州施强教育科技有限公司 | A kind of enterprise management system user right collocation method |
| CN106951773A (en) * | 2017-03-15 | 2017-07-14 | 泰康保险集团股份有限公司 | User role distributes method of calibration and system |
| CN107426169A (en) * | 2017-05-24 | 2017-12-01 | 阿里巴巴集团控股有限公司 | A kind of method for processing business and device based on authority |
Non-Patent Citations (1)
| Title |
|---|
| 沈桐等: "基于OAuth2.0,OpenID Connect和UMA的用户认证授权系统架构", 《软件》, vol. 38, no. 11, 15 November 2017 (2017-11-15), pages 160 - 167 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113362021A (en) * | 2021-05-31 | 2021-09-07 | 珠海大横琴科技发展有限公司 | Organization management method and device, electronic equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109840719B (en) | 2022-06-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3641225B1 (en) | Policy-driven compliance | |
| US20160359701A1 (en) | Parallel coordinate charts for flow exploration | |
| Hu et al. | Detecting and resolving firewall policy anomalies | |
| CN109902072A (en) | A kind of log processing system | |
| Wang et al. | A graph based approach toward network forensics analysis | |
| Kintzel et al. | Monitoring large ip spaces with clockview | |
| US20160205002A1 (en) | Systems and methods for network data flow aggregation | |
| US9720999B2 (en) | Meta-directory control and evaluation of events | |
| CN107294764A (en) | Intelligent supervision method and intelligent monitoring system | |
| CN107667370A (en) | Abnormal account is detected using event log | |
| US20090288135A1 (en) | Method and apparatus for building and managing policies | |
| CN106575253B (en) | Vision aid for the accident analysis in distributed system | |
| CN107015895A (en) | Data-centered monitoring to the conjunction rule of Distributed Application | |
| CN104700024B (en) | A kind of method and system of Unix classes host subscriber operational order audit | |
| CN107733863A (en) | Daily record adjustment method and device under a kind of distributed hadoop environment | |
| CN106713050A (en) | Network topology display method and device | |
| Thompson et al. | Command line or pretty lines? Comparing textual and visual interfaces for intrusion detection | |
| CN108073720A (en) | Data quality management system and method applied to big data system | |
| CN115186136A (en) | Knowledge graph structure for network attack and defense confrontation | |
| CN109840719A (en) | Management-control method, device and the server of organizational domains | |
| US11627166B2 (en) | Scope discovery and policy generation in an enterprise network | |
| Miloslavskaya | Information security management in SOCs and SICs | |
| CN102930392A (en) | System for running information of transformer substation | |
| JP6933320B2 (en) | Cybersecurity framework box | |
| Ten et al. | Study on advanced visualization tools in network monitoring platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |