JP2009245284A - Access control system, access control server, and operator terminal - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an access control system, an access control server, and an operator terminal, which allow an operator to work only in a previously permitted operation area so that a wrong process cannot be performed. <P>SOLUTION: When a permitted operation in a status of "operation waiting" is selected, an operator terminal 10 transmits an operation screen demand to an access control server 20. The access control server 20 transmits an operation screen including a start button and a start program to the operator terminal 10. The operator terminal 10 displays the operation screen. When the start button in the operation screen is selected, the operator terminal 10 runs the start program and runs an operation control program. The operation control program performs a log obtaining start process, and asks the access control server 20 for a connection password. The operator terminal 10 accesses an information process target server 40 by using the connection password obtained from the access control server 20. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to an access management system for managing access to an information processing target server, an access management server used for the system, and a worker terminal.

Today, from the viewpoint of strengthening internal controls, a mechanism for managing and verifying business contents within a company is being built. For this purpose, for example, workflow management is performed or log recording for recording an operation history (log) is performed (see, for example, Patent Document 1). In the technique described in Document 1, an input of a user's e-mail address serving as a user identifier and a work password is received and recorded together with information related to the progress of execution of work in workflow processing. For this reason, it is possible to verify afterwards whether or not the e-mail address presented by the user and the user's access authority are incomplete.
Japanese Patent Laying-Open No. 2003-271562 (FIGS. 5 to 7)

  Here, when the worker knows the password for accessing the work target server, the worker can freely access using the password. Therefore, in order to prevent a process unintended by the administrator from being performed by the worker, it is necessary to clarify the range of the work in advance and to perform the work only within that range.

  The present invention has been made in view of the above-mentioned problems, and an object thereof is to make it possible to work only within a pre-approved work range so as to prevent unauthorized processing, an access management server, and It is to provide a worker terminal.

  In order to solve the above-mentioned problems, the invention according to claim 1 is a worker terminal that performs an operation on an information processing target server, and password data storage means that records a password used to access the information processing target server. And an access management server provided with a management control means for communicating with the worker terminal, and a system for performing access management from the worker terminal to the information processing target server, wherein the management control means comprises: Receiving an application request including a server identifier for identifying an information processing target server to be operated from the worker terminal and recording an application request acquisition means, and obtaining an approval for the application request, Access permission means for transmitting to the worker terminal, the worker terminal is activated by the activation means, and the access Gets the password for accessing the management server to the information processing servers, and summarized in that with an access means for accessing said information processing target server using this password.

  According to a second aspect of the present invention, in the access management system according to the first aspect, the worker terminal includes log data storage means for recording an operation log for the information processing target server, and the worker terminal The gist of the present invention is that it further includes log recording means that is started by the starting means and starts log acquisition processing for recording an operation log in the information processing target server in the log data storage means.

According to a third aspect of the present invention, in the access management system according to the second aspect, the access management server is connected to an administrator terminal used by an administrator who manages an operator who performs an operation on the information processing target server. When the worker terminal detects the end of the information processing work on the information processing target server, the report that transmits the work report information including the operation log recorded in the log data storage means to the access management server The management control means further includes a confirmation requesting means for transmitting the work report information acquired from the worker terminal to the manager terminal.

  According to a fourth aspect of the present invention, there is provided log data storage means for recording a log for the information processing target server, connected to a worker terminal that performs an operation on the information processing target server, and for accessing the information processing target server. An access management server comprising password data storage means for recording a password to be used and management control means for communicating with the worker terminal, wherein the management control means sends an information processing target server from the worker terminal. An application request acquisition unit that receives and records an application request including a server identifier to be identified, and an access unit that causes the worker terminal to access the information processing target server when the approval for the application request is acquired. An access permission means for transmitting an activation means to the worker terminal, and the access means of the worker terminal. On request, and summarized in that a password for accessing the information processing target server and a password providing means for transmitting to said operator terminal.

  The invention according to claim 5 comprises password data storage means for recording a password used for accessing the information processing target server and management control means, and is connected to an access management server used for managing access to the information processing target server. An operator terminal comprising log data storage means for recording an operation log for the information processing target server and terminal control means for communicating with the access management server, wherein the terminal control means performs information processing. An application request transmitting unit that transmits an application request including a server identifier that identifies an information processing target server to the access management server, and an activation unit that acquires an activation unit from the access management server in response to approval for the application request. The acquisition unit and the start unit start the information processing unit from the access management server. An access means for acquiring a password for accessing the target server and accessing the information processing target server using this password; and an operation log started by the starting means, and an operation log in the information processing target server is stored in the log data storage means And a log recording means for starting a log acquisition process to be recorded.

(Function)
According to the present invention, the management control means receives and records an application request including a server identifier for specifying an information processing target server from an operator terminal. The management control means transmits the activation means to the worker terminal when obtaining approval for the application request. The worker terminal is activated by the activation unit, acquires a password for accessing the information processing target server from the access management server, and accesses the information processing target server using this password. For this reason, unless the application request is approved, the worker terminal cannot access the information processing target server, and can work only within the work range approved in advance. Further, since the worker does not know the password, the worker cannot freely access the information processing target server, and the possibility that unauthorized processing is performed can be reduced.

  According to the present invention, the worker terminal is activated by the activation unit, and starts log acquisition processing for recording the operation log in the information processing target server in the log data storage unit. For this reason, a log can be automatically acquired from the start of access, and an operator's work can be grasped from the start of access.

According to the present invention, when the worker terminal detects the end of information processing work on the information processing target server, the worker terminal transmits work report information including an operation log recorded in the log data storage unit to the access management server. . The management control means of the access management server transmits the work report information acquired from the worker terminal to the manager terminal. For this reason, the administrator is based on the work report information,
It is possible to check the validity of the work contents of the information processing of the worker who has finished the work.

  According to the present invention, the management control means receives and records an application request including a server identifier for specifying an information processing target server from an operator terminal. When the management control unit obtains approval for the application request, the management control unit transmits an activation unit that activates an access unit that causes the worker terminal to access the information processing target server, to the worker terminal. In response to a request from the access means of the worker terminal, the management control means transmits a password for accessing the information processing target server to the worker terminal. For this reason, unless the application request is approved, the worker terminal cannot access the information processing target server, and can work only within the work range approved in advance. Further, since the worker does not know the password, the worker cannot freely access the information processing target server, and the possibility that unauthorized processing is performed can be reduced.

  According to the present invention, the terminal control means transmits an application request including a server identifier for specifying an information processing target server for information processing to the access management server. The terminal control means acquires the activation means from the access management server in response to the approval for the application request. The terminal control means is activated by the activation means, acquires a password for accessing the information processing target server from the access management server, and accesses the information processing target server using this password. The terminal control unit is activated by the activation unit, and starts log acquisition processing for recording the operation log in the information processing target server in the log data storage unit. For this reason, unless the request is approved, the worker terminal cannot access the information processing target server, and can work only within the work range approved in advance. Further, since the worker does not know the password, the worker cannot freely access the information processing target server, and the possibility that unauthorized processing is performed can be reduced. Furthermore, since the log acquisition process is started by the activation means, the worker terminal can automatically acquire the log from the start of access, and can grasp the worker's work from the start of access.

  According to the present invention, since the user does not know the password necessary for accessing the information processing target server, it is possible to reduce the possibility of unauthorized processing. Furthermore, according to the present invention, it is possible to perform work by accessing the information processing target server only within a work range approved in advance.

  Hereinafter, an embodiment embodying the present invention will be described with reference to FIGS. In this embodiment, the access management server 20 that manages work on an information processing target server such as a production system will be described. In the present embodiment, the manager of the department to which the worker belongs is the manager.

As shown in FIG. 1, the access management server 20 is connected to the worker terminal 10, the administrator terminal 30, and the information processing target server 40 via a network.
The worker terminal 10 is used by a worker to access the information processing target server 40 and perform work. The worker terminal 10 includes a display, a keyboard, and a pointing device.

On the other hand, the administrator terminal 30 is used by the administrator to approve or confirm the work. The administrator terminal 30 includes a display, a keyboard, and a pointing device.
The access management server 20 includes a management control unit 21 as a management control unit, an employee data storage unit 22, an organization data storage unit 23, a connection password data storage unit 24 as a password data storage unit, an application content data storage unit 25, and a work report. A book data storage unit 26 is provided. The management control unit 21 includes a CPU, a RAM, a ROM, and the like (not shown), and will be described later (processing including an application request acquisition stage, an access permission stage, a password provision stage, a confirmation request stage, and the like).
To do. The management control unit 21 stores format data of various screens (work list screen, work screen, approval screen, report screen, etc.). Then, by executing the access management program, the management control unit 21 causes the management screen processing unit 210 as the access permission unit, the application processing unit 211 as the application request acquisition unit, the approval processing unit 212, and the access as the password providing unit. It functions as auxiliary means 213 and completion processing means 214 as confirmation request means.

  The management screen processing means 210 generates a work list screen in response to access from each terminal (10, 30) and transmits it to the terminal (10, 30). In this case, after transmitting the work list screen, the management screen processing unit 210 sends data to the application processing unit 211, the approval processing unit 212, or the completion processing unit 214 according to the instruction data from each terminal (10, 30). take over.

  The application processing unit 211 executes processing related to an application for performing work. Specifically, the application processing unit 211 transmits work screen data in response to a request from the worker terminal 10 and records the application content.

  The approval processing unit 212 executes an approval request process for the work application and an approval determination recording process. Specifically, the approval processing unit 212 transmits an approval request to the administrator terminal 30 and acquires approval determination result data corresponding to the approval request.

  The access assistant unit 213 stores a work management program and transmits the work management program in response to a request from the worker terminal 10. The access assisting unit 213 provides a password necessary for access in response to a request from the worker terminal 10.

  The completion processing unit 214 executes processing for prompting the administrator to confirm the completed work. Specifically, the completion processing unit 214 transmits work report data to the manager terminal 30 and acquires a confirmation completion notification.

  As shown in FIG. 2A, employee data 220 relating to employees who are workers or managers is recorded in the employee data storage unit 22. The employee data 220 is recorded when data on a new employee is registered. The employee data 220 includes an employee identifier, a name, a department identifier, a password, a possible work category, a user identifier, and an email address.

Data relating to an identifier (employee identifier) for identifying an employee is recorded in the employee identifier data area.
In the name data area, data on the name of the employee is recorded.

In the department identifier data area, data relating to an identifier (department identifier) for identifying the department to which the employee belongs is recorded.
In the password data area, data relating to a password used for authenticating the employee is recorded.

  In the possible work category data area, a category flag for specifying the type that the employee can work is recorded. As this classification data, for example, a “program changeable flag” indicating that the program can be changed, and “business data input” indicating that the information processing target server 40 can input or change business data used for processing. “Changeable flag” or the like is used.

In the user identifier data area, data relating to an identifier (user identifier) for identifying the employee when the information processing target server 40 is accessed is recorded.
In the mail address data area, data relating to the mail address of the employee is recorded.

  In the organization data storage unit 23, data related to the department is recorded as shown in FIG. The organization data 230 is recorded when data related to a new department is registered. This organization data 230 includes data relating to the department identifier, name, and organization head.

Data relating to an identifier (department identifier) for identifying a department is recorded in the department identifier data area.
In the name data area, data relating to the name of this department is recorded.

  In the organization length data area, an identifier (employee identifier) for specifying the organization head of this department is recorded. By associating the organization data 230 with the employee data 220, the manager of the worker can be specified.

  In the connection password data storage unit 24, connection password data 240 for connecting to the information processing target server 40 is recorded as shown in FIG. The connection password data 240 is recorded when a password for accessing the information processing target server 40 is set. The connection password data 240 includes a server identifier, a user identifier, and a password.

Data relating to an identifier (server identifier) for specifying the information processing target server 40 is recorded in the server identifier data area.
In the user identifier data area, data related to the user identifier of the employee who accesses the information processing target server 40 is recorded.

In the connection password data area, data related to a password for accessing the information processing target server 40 is recorded.
As shown in FIG. 2D, application content data 250 for performing work (for example, program change or data editing) on the information processing target server 40 is recorded in the application content data storage unit 25. The application content data 250 is recorded when an application request from the worker terminal 10 is received. The application content data 250 includes data relating to an application identifier, a worker identifier, a server identifier, a work classification, a scheduled work time, a work content, an administrator identifier, and a status.

In the application identifier data area, data relating to an identifier (application identifier) for specifying an application for performing work is recorded.
In the worker identifier data area, data relating to an identifier (employee identifier) for identifying the worker involved in this application is recorded.

In the server identifier data area, data relating to an identifier (server identifier) for specifying the information processing target server 40 to be worked on for this application is recorded.
In the work category data area, data related to the category identifier for specifying the type of work related to the application is recorded.

  In the scheduled work time data area, data related to the scheduled work time related to this application is recorded. In the present embodiment, the scheduled work time includes the date on which the work is performed, and the work start time and work end time on that day.

In the work content data area, data relating to the work content (processing details, purpose, etc.) related to this application is recorded.
In the administrator identifier data area, data relating to an identifier (employee identifier) for identifying an administrator who has made an approval decision for this application is recorded.

  In the status data area, data relating to the status in the workflow of the work related to this application is recorded. When the application content recording process included in the application request is executed, “waiting for approval” is recorded as the status. When the approval determination result recording process including the permission approval flag indicating that the approval is approved is executed, “waiting for work” is recorded as the status. When the approval judgment result recording process including the return flag indicating that it was returned without permission is executed, “waiting for return check” is recorded as the status. When the recording process of the work report data included in the work report request is executed, “waiting for check” is recorded as the status. When the requested scheduled work time has elapsed, or when the confirmation completion recording process is executed, “completed” is recorded as the status.

  In the work report data storage unit 26, work report data 260 as work report information is recorded as shown in FIG. The work report data 260 is recorded when acquired from the worker terminal 10. The work report data 260 includes application identifiers, session identifiers, and data regarding log contents.

In the application identifier data area, data relating to an identifier for identifying each work is recorded. In this embodiment, an application identifier is used as this identifier.
In the session identifier data area, data related to an identifier (session identifier) for specifying a session with the information processing target server 40 is recorded.

  In the log content data area, data relating to the processing record (log) in this work is recorded. In the present embodiment, the log content of the operation log for the information processing target server 40 is recorded in the log content data area. Specifically, the log content includes the type of key selected by the operator and the time at that time, the screen content displayed at that time, and the time when this screen was displayed.

(Internal configuration of worker terminal 10)
Next, the internal configuration of the worker terminal 10 will be described with reference to FIG.
As shown in FIG. 1, the worker terminal 10 includes a terminal control unit 11 as a terminal control unit and an operation log data storage unit 12 as a log data storage unit. The terminal control unit 11 includes a CPU, a RAM, a ROM, and the like (not shown), stores various programs such as a browser, a work management program, and a server editor, and performs processing (application request transmission stage, activation means acquisition stage, access) described later. Stage, log recording stage, report request stage, etc.). The terminal control unit 11 functions as the management screen display unit 111 by executing a browser program. The terminal control unit 11 functions as an access unit 112, an operation log recording unit 113, and a work report unit 114 by executing a work management program. The terminal control unit 11 functions as work screen display means 115 by executing the server editor program.

  The management screen display unit 111 displays a work list screen, a work screen, and the like on the display. The work screen is a screen used to perform work application, work start, and work report. The management screen display unit 111 acquires an instruction from the operator via these screens, and executes data transmission / reception with the access management server 20 based on the instruction. The management screen display unit 111 also functions as an application request transmission unit and an activation unit acquisition unit, and stores an activation program described later.

The access unit 112 executes processing for accessing the information processing target server 40 based on an instruction from the user. In this case, the access unit 112 acquires a connection password from the access management server 20 and accesses the information processing target server 40 using this connection password. Furthermore, the access unit 112 activates a server editor necessary for performing work on the accessed information processing target server 40.

  The operation log recording unit 113 functions as a log recording unit and records a log of operations performed by the operator. Specifically, the operation log recording unit 113 assigns and records a session identifier for managing a session with the accessed information processing target server 40. Further, the operation log recording unit 113 generates operation log data 120 described later and records it in the operation log data storage unit 12.

The work report unit 114 functions as a report request unit. When a report button to be described later is selected, the work report unit 114 acquires the log acquired in the session connection with the information processing target server 40 from the operation log data storage unit 12 and Report data 260 is generated and transmitted to the access management server 20.
The work screen display unit 115 displays and deletes a work window and displays a screen for performing work on the information processing target server 40 on the work window.

  On the other hand, as shown in FIG. 4, operation log data 120 related to process recording (log) is recorded in the operation log data storage unit 12. The operation log data 120 is generated and recorded when a screen for accepting an operation is displayed or when an instruction or data from the keyboard is detected for the information processing target server 40. The operation log data 120 includes data related to the session identifier, time, and encrypted operation log.

In the session identifier data area, data relating to an identifier (session identifier) for identifying a session that has worked on the information processing target server 40 is recorded.
In the time data area, data relating to the time when the screen is displayed (display time) or the time when the key is selected (execution time) in this work is recorded.

  In the encryption operation log data area, data obtained by encrypting the displayed screen content or data obtained by encrypting data relating to the selected key type is recorded. The display time is associated with the data with the encrypted screen content, and the execution time is associated with the data with the encrypted key type.

  The process which manages the operation | work which a worker performs using the worker terminal 10 with respect to the information processing object server 40 using the access management server 20 mentioned above is demonstrated. In addition, when using the operator terminal 10 or the administrator terminal 30, a login process is performed at the time of each starting. In this log-in process, the worker terminal 10 or the administrator terminal 30 acquires employee identifier data of the employee who uses it, and holds this employee identifier data in the memory until logging out.

(Work application processing)
First, the work application process for applying for work will be described with reference to FIG. In the present embodiment, the worker makes an application for the work he / she plans to perform.

  The worker terminal 10 executes an access process for the access management server 20 (step S1-1). Here, the worker activates the browser and instructs the connection destination of the access management server 20. Specifically, the worker terminal 10 accesses the access management server 20 in accordance with the worker's instruction. In this case, the worker terminal 10 transmits the employee identifier used in the login process to the access management server 20.

  The management control unit 21 of the access management server 20 executes work application screen data transmission processing (step S1-2). Here, first, the management screen processing means 210 of the management control unit 21 transmits the work list screen of the worker to the worker terminal 10. Specifically, the management screen processing unit 210 extracts application content data 250 including the received employee identifier as a worker identifier from the application content data storage unit 25. Further, the management screen processing means 210 extracts the application content data 250 in which a status other than “completed” is recorded in the star data area from the application content data 250. Then, the management screen processing unit 210 generates work list screen data including the application identifier and status of the extracted application content data 250 and transmits the work list screen data to the worker terminal 10.

The worker terminal 10 displays the work list screen on the display based on the work list screen data. This work list screen includes an application button together with the work list of the worker.
Here, the worker selects an application button on the work content list screen in order to make a new application. In this case, the worker terminal 10 transmits a work application screen request to the access management server 20. The management control unit 21 of the access management server 20 transmits work application screen data to the worker terminal 10 using the format data of the work screen data.

  The terminal control unit 11 of the worker terminal 10 executes a work application screen display process (step S1-3). Specifically, the management screen display unit 111 of the terminal control unit 11 displays a work application screen on the display based on the work application screen data. This work application screen includes an input field for inputting a work target, work classification, work scheduled time, and work content, an application button, and an emergency button. Note that the emergency button is a button that is selected when it is necessary to work urgently even when the manager is absent, such as during a nighttime failure.

  Here, the worker inputs in each input field of the work application screen and selects an application button. In this case, the worker terminal 10 executes an application request process (step S1-4). Specifically, the worker terminal 10 acquires the work target, work classification, work scheduled time, and work content input in each input field of the work application screen, and transmits an application request including these to the access management server 20. To do.

  The management control unit 21 of the access management server 20 that has acquired the application request executes an application content recording process (step S1-5). Here, the management control unit 21 checks whether or not the work category included in the application request is registered as a possible work category for this worker. Specifically, the application processing unit 211 of the management control unit 21 compares the possible work classification of the employee data 220 including the employee identifier of the worker with the work classification included in the application request.

  Then, when registered as a possible work category of the worker, the application processing unit 211 of the management control unit 21 assigns a unique application identifier to the application request. Then, the application processing unit 211 generates application content data 250 including the application identifier and records it in the application content data storage unit 25. In this case, the application processing means 211 applies for the worker's employee identifier, the work target (server identifier) included in the application request, the work classification, the scheduled work time and work content, and the status of “waiting for approval”. The content data 250 is included and recorded. In addition, when it is not registered as a possible work category of the worker, the application processing unit 211 transmits a message rejecting the application to the worker terminal 10.

Then, the management control unit 21 notifies the administrator that the application has been submitted. Specifically, the application processing unit 211 of the management control unit 21 extracts employee data 220 including the employee identifier recorded in the application content data 250 from the employee data storage unit 22. The application processing unit 211 extracts the organization data 230 including the department identifier of the extracted employee data 220 as the department identifier from the organization data storage unit 23. The application processing unit 211 extracts employee data 220 including the employee identifier of the organization manager of the extracted organization data 230 from the employee data storage unit 22. Then, the application processing unit 211 transmits an e-mail including that the work application has been made to the e-mail address of the employee data 220. Further, the application processing unit 211 records the employee identifier of the extracted employee data 220 in the manager identifier of the application content data 250.

  Thereafter, the management control unit 21 of the access management server 20 executes an approval request process (step S1-6). This approval request process is executed when the access management server 20 is accessed from the administrator terminal 30. In this case, the management screen processing unit 210 of the management control unit 21 receives the employee identifier used in the login process from the administrator terminal 30.

  Then, the management screen processing unit 210 of the management control unit 21 transmits the administrator's work list screen to the administrator terminal 30. Specifically, the management control unit 21 extracts, from the application content data storage unit 25, application content data 250 that includes the administrator's employee identifier as a worker identifier, as in the case of generating a worker's work list screen. To do. Further, the management screen processing means 210 extracts application content data 250 in which a status other than “completed” is recorded in the status data area from the application content data 250.

  Further, the management screen processing unit 210 searches the application content data storage unit 25 for the application content data 250 in which the employee identifier is recorded as the administrator identifier. When the application content data 250 can be extracted, the management screen processing unit 210 includes the application content data 250 in which the status of “waiting for approval” or “waiting for check” is recorded in the status data area of the application content data 250. To extract.

Then, the management screen processing means 210 generates work list screen data including the application identifier and status of the extracted application content data 250 and transmits it to the administrator terminal 30.
The administrator terminal 30 displays the work list screen on the display based on the work list screen data. In this approval process, the administrator selects an application content that is “waiting for approval” on the displayed work list screen.

  In this case, the administrator terminal 30 executes an approval process (step S1-7). Specifically, the administrator terminal 30 transmits an approval screen request including the application identifier of the selected application content to the access management server 20.

  In this case, the management control unit 21 of the access management server 20 includes the application content (application identifier, worker identifier, server identifier, work classification, scheduled work time, and work content) of the application content data 250 including the received application identifier. Approval screen data is generated and transmitted to the administrator terminal 30. The administrator terminal 30 acquires the approval screen data from the access management server 20 and displays the approval screen on the display. This approval screen includes a permission approval button and a return button.

  The administrator confirms the application content included in this approval screen. The administrator selects the return button when the application content is incomplete. In addition, the administrator selects a permission / approval button when performing permission / approval on the application content. When the approval approval button or the return button is selected, the administrator terminal 30 transmits the approval determination result data to the access management server 20 together with the application identifier of the application content on the approval screen. The approval determination result data includes an approval approval flag when the approval approval button is selected, and includes a return flag when the return button is selected.

The management control unit 21 of the access management server 20 executes an approval judgment result recording process (step S1-8). Specifically, the approval processing unit 212 of the management control unit 21 extracts the received application content data 250 of the application identifier from the application content data storage unit 25. Then, if the approval determination result data includes the permission approval flag, the approval processing unit 212 updates the status area of the application content data 250 to a status of “waiting for work”. If the approval determination result data includes a return flag, the approval processing unit 212 updates the status area of the application content data 250 to a status of “waiting for return check”.

(Work start processing)
Next, a process at the start of work for an operator to perform an approved work will be described with reference to FIG.

  The worker terminal 10 executes an access process for the access management server 20 (step S2-1). In this case, as in step S1-1, the worker terminal 10 accesses the access management server 20 in accordance with the worker's instruction.

  The management control unit 21 of the access management server 20 executes work screen data transmission processing (step S2-2). Here, first, the management screen processing means 210 of the management control unit 21 generates work list screen data and transmits it to the worker terminal 10 as in step S1-2.

  The worker terminal 10 displays the work list screen on the display based on the work list screen data. In this work list screen, application identifiers of application contents having a status of “waiting for work” and “waiting for return check” are displayed so as to be selectable. In this work list screen, the application identifier of the application content with the status of “waiting for approval” is displayed as unselectable. Here, the worker selects the application content displayed with the status of “waiting for work” on the work list screen. In this case, the worker terminal 10 transmits a work screen request including the application identifier of the selected application content to the access management server 20.

  The management control unit 21 of the access management server 20 generates work screen data including application contents including the received application identifier, and transmits the work screen data to the worker terminal 10. If the application content is approved and approved (when the status of “waiting for work” is recorded in the status data area of the application content data 250 of the application identifier), the management screen processing of the management control unit 21 The means 210 includes an activation button for accessing the work object in the work screen data. When the activation button is included, the management control unit 21 includes an activation program as activation means in the work screen data. The activation program is a program that searches for a work management program and activates it when it is detected that the activation button has been selected, and downloads it when there is no work management program. Further, the management control unit 21 includes the application identifier and server identifier of the application content data 250 and information indicating the connection destination of the information processing target server 40 specified by the server identifier in the work screen data. When a status other than “waiting for work” is recorded in the status data area of the application content data 250, the management screen processing unit 210 does not include a start button in the work screen data.

  The terminal control unit 11 of the worker terminal 10 executes a start button display process (step S2-3). Specifically, the management screen display unit 111 of the terminal control unit 11 displays the work screen on the display based on the received work screen data. This work screen includes items (work object, work category, and work content) entered on the work application screen. Further, the work screen displayed at this time includes an activation button.

Then, the worker selects a start button on the work screen in order to perform the work. In this case, the terminal control unit 11 of the worker terminal 10 searches the memory of the worker terminal 10 for the work management program in order to start the work management program.

  Here, when the work management program is not recorded in the memory of the worker terminal 10 (in the case of “YES” in step S2-4), the terminal control unit 11 of the worker terminal 10 stores the work management program. Download processing is executed (step S2-5). Specifically, the terminal control unit 11 of the worker terminal 10 makes a download request to the access management server 20. The management control unit 21 of the access management server 20 transmits a work management program (step S2-6). The terminal control unit 11 of the worker terminal 10 acquires the work management program from the access management server 20 and records it in the memory.

  On the other hand, when the work management program is recorded (in the case of “NO” in step S2-4) or when the work management program is downloaded (step S2-5), the terminal control unit 11 of the worker terminal 10 is Then, the work management program is started (step S2-7).

  Thereby, the access means 112 of the terminal control part 11 produces | generates the connection server list screen which displayed the information processing target server 40 of the server identifier contained in this work screen as a list, and displays it on a display. Then, the operator selects the information processing target server 40 to be connected from this connection server list screen.

  In this case, the terminal control unit 11 of the worker terminal 10 executes a log acquisition start process (step S2-8). Specifically, the operation log recording unit 113 of the terminal control unit 11 identifies the connection target information processing target server 40 from the connection server list screen, assigns a session identifier, and applies the session identifier and the application identifier of the work screen. Are stored in the memory in association with each other. Then, the operation log recording unit 113 starts a log acquisition process described later using this session identifier.

  Subsequently, the access unit 112 of the terminal control unit 11 executes a connection password request process (step S2-9). Specifically, the access unit 112 transmits a connection password request to the access management server. This connection password request includes the server identifier of the selected information processing target server 40 and data related to the application identifier included in the work screen.

  The management control unit 21 of the access management server 20 that has received the connection password request executes a work time confirmation process (step S2-10). Specifically, the access assisting unit 213 of the management control unit 21 extracts the application content data 250 including the received application identifier from the application content data storage unit 25. Then, the access assistant unit 213 compares the scheduled work time of the application content data 250 with the current date and time. Here, when the current date and time are not included in the scheduled work time, the access assisting means 213 transmits a message to the worker terminal 10 indicating that the connection cannot be made because it is different from the scheduled work time.

  On the other hand, when the current date and time is within the scheduled work time, the management control unit 21 of the access management server 20 executes a connection password transmission process (step S2-11). Here, first, the management control unit 21 specifies a user identifier. Specifically, the access assisting unit 213 of the management control unit 21 acquires employee data 220 including an employee identifier as a worker identifier of the application content data 250 from the employee data storage unit 22, and the user of the employee data 220 Specify an identifier. Next, the management control unit 21 extracts the connection password data 240 including the server identifier included in the connection password request and the specified user identifier from the connection password data storage unit 24. Then, the access assistant unit 213 transmits the identified user identifier and the extracted password of the connection password data 240 to the worker terminal 10.

  The terminal control unit 11 of the worker terminal 10 that has acquired the password executes an access process to the information processing target server 40 using the received user identifier and password (step S2-12). Specifically, the terminal control unit 11 of the worker terminal 10 accesses the information processing target server 40 and transmits a user identifier and a password to the information processing target server 40. In this case, the information processing target server 40 executes an authentication process using the user identifier and the password. When the authentication process is completed, the information processing target server 40 transmits data to the worker terminal 10.

  The terminal control unit 11 of the worker terminal 10 displays a work screen (step S2-13). Here, the access means 112 of the terminal control unit 11 activates a server editor to display data acquired from the information processing target server 40. And the work screen display means 115 of the terminal control part 11 produces | generates the screen which browses the acquired data, and displays the work window which displays the content of this screen. In this case, the operation log recording unit 113 of the terminal control unit 11 temporarily stores the work window and the session identifier in association with each other. Since the operation log recording unit 113 has started log acquisition processing, the operation log recording unit 113 of the terminal control unit 11 acquires the displayed screen data and associates the display time and the session identifier at this time. The operation log data 120 is recorded in the operation log data storage unit 12.

  Hereinafter, the operator performs data by inputting data and instructions using the keyboard while browsing the screen displayed in the work window. In addition, when an operator further displays a work window and executes a work, the worker further selects an information processing target server 40 to be connected to display data on the work window from the connection server list screen. In this case, the worker terminal 10 repeatedly executes the processes after step S2-8.

(Log acquisition processing during work)
Next, log acquisition processing performed by the worker terminal 10 will be described. This log acquisition process is repeatedly executed every time data is exchanged with the information processing target server 40 during the work on the information processing target server 40.

  Every time new screen data is acquired from the information processing target server 40, the terminal control unit 11 of the worker terminal 10 records a display process for displaying a new screen on the work window based on the new screen data and a log of this screen. Screen log acquisition processing to be executed.

  Specifically, when the work screen display unit 115 of the terminal control unit 11 acquires new screen data from the information processing target server 40, the work screen display unit 115 displays a new screen on the work window based on the new screen data. And the operation log recording means 113 of the terminal control part 11 acquires the screen content of the displayed screen, and the time at that time (display time). The operation log recording unit 113 encrypts the acquired screen content. The operation log recording unit 113 generates operation log data 120 including the encrypted screen content, the acquired display time, and the session identifier associated with the work window, and records the operation log data 120 in the operation log data storage unit 12. To do.

  On the other hand, each time the terminal control unit 11 of the worker terminal 10 detects a new instruction from the keyboard or pointing device to the information processing target server 40, a key input log acquisition process for recording the detected key is performed. Do.

Specifically, when a new instruction is input, the work screen display unit 115 of the worker terminal 10 transmits instruction processing data corresponding to the selected key to the access management server 20. In this case, the operation log recording unit 113 of the terminal control unit 11 acquires the type of the key selected via the keyboard and the time (execution time) at that time. The operation log recording unit 113 encrypts the acquired key type. The operation log recording unit 113 includes the type of the encrypted key,
Operation log data 120 including the acquired execution time and a session identifier associated with the work window is generated and recorded in the operation log data storage unit 12.

(Work end processing)
Next, processing performed when the work is completed will be described with reference to FIG.
When the work is completed, the worker performs an operation of closing the work window. In this case, the worker terminal 10 disconnects access to the information processing target server 40 (step S3-1). Furthermore, the worker terminal 10 deletes the work window that has been used for the information processing target server 40 from the display.

  When the work window is deleted, the work reporting unit 114 of the worker terminal 10 confirms whether the work of the worker is finished. Here, when working using a plurality of work windows, if at least one work window displayed by the work screen display means 115 is displayed on the display, The connection is not terminated.

  Here, the work reporting unit 114 determines whether or not no work window is displayed. When the terminal control unit 11 of the worker terminal 10 detects that the worker's work is finished by detecting that the work window is not displayed at all, the terminal control unit 11 executes the process of displaying the log attachment button. (Step S3-2). Specifically, the work report unit 114 of the terminal control unit 11 outputs a log attachment button on the work screen displayed on the display.

  When the log attachment button is selected, the terminal control unit 11 of the worker terminal 10 executes a work report generation process (step S3-3). Specifically, when the log attachment button is selected, the work report unit 114 of the terminal control unit 11 extracts the session identifier associated with the application identifier of the displayed work screen from the memory. The work report unit 114 extracts the operation log data 120 including the acquired session identifier from the operation log data storage unit 12 and decrypts it. Next, the work reporting unit 114 arranges the decrypted operation log data 120 in time series for each session identifier, and generates log content data. Then, the work report unit 114 assigns a session identifier and an application identifier to the generated log content data, generates work report data 260, and temporarily stores it.

  And the terminal control part 11 of the worker terminal 10 performs the display process of a report button (step S3-4). Specifically, when the work report unit 114 of the terminal control unit 11 generates the work report data 260, a report button is displayed on the work screen.

  When the report button is selected, the terminal control unit 11 of the worker terminal 10 executes a work report request process (step S3-5). Specifically, the management screen display unit 111 of the terminal control unit 11 transmits a work report request including the work report data 260 to the access management server 20.

  The management control unit 21 of the access management server 20 that has acquired the report request executes a work report data recording process (step S3-6). Specifically, the completion processing unit 214 of the management control unit 21 records the work report data 260 included in the report request in the work report data storage unit 26. Further, the completion processing unit 214 extracts the application content data 250 including the application identifier of the work report data 260 from the application content data storage unit 25. The completion processing unit 214 records a status indicating “waiting for check” in the status data area of the application content data 250.

  Then, the management control unit 21 notifies the administrator that the work has been completed. Specifically, the completion processing unit 214 of the management control unit 21 extracts employee data 220 including the administrator identifier of the application content data 250 from the employee data storage unit 22. Then, the completion processing unit 214 transmits an email including the completion of work to the email address of the employee data 220.

  Next, the management control unit 21 of the access management server executes a report confirmation request process (step S3-7). This report confirmation process is executed when the access management server 20 is accessed from the administrator terminal 30.

  Here, when there is an access from the administrator terminal 30, the management screen processing unit 210 of the management control unit 21 generates an administrator work list screen and transmits it to the administrator terminal 30 as described above. The administrator terminal 30 displays the work list screen on the display based on the work list screen data. This work list screen includes a display indicating “waiting for check” in association with the application identifier.

  The administrator terminal 30 executes a work content check process (step S3-8). Specifically, the administrator selects an application content that is “waiting for check” on the displayed work list screen. In this case, the administrator terminal 30 transmits a report screen request including the application identifier of the selected application content to the access management server 20.

  The management control unit 21 of the access management server 20 extracts the work report data 260 including the received application identifier from the work report data storage unit 26 and generates report screen data including the work report data 260. To the administrator terminal 30. The administrator terminal 30 displays a report screen on the display based on the report screen data. This report screen includes a confirmation completion button.

  The administrator checks the log contents of the work report data 260 included in this report screen. Then, when the administrator confirms that there is no problem in the log contents, the administrator selects a confirmation completion button on the report screen.

  In this case, the administrator terminal 30 executes a confirmation completion notification process (step S3-9). When the confirmation completion button is selected, the administrator terminal 30 specifies the application identifier of the work report data 260 included in the report screen. The administrator terminal 30 transmits a confirmation completion notification including this application identifier to the management control unit 21 of the access management server 20.

  The management control unit 21 of the access management server 20 executes a confirmation completion recording process (step S3-10). Specifically, the completion processing unit 214 of the management control unit 21 extracts the application content data 250 including the received application identifier from the application content data storage unit 25. The completion processing means 214 records a status indicating “completed” in the status data area of the application content data 250.

(Emergency access management processing)
Next, an emergency access management process that requires urgent work such as a nighttime failure will be described.

  In this case, according to the operator's instruction, the worker terminal 10 accesses the access management server 20 (step S1-1), and executes a work application screen display process (step S1-3).

  Then, the worker inputs in the input fields for the work target, work category, and work content on the work screen, and selects the emergency button. When the emergency button is selected, the worker terminal 10 transmits an emergency notification request to the access management server 20. The management control unit 21 of the access management server 20 executes the emergency application content recording process in the same manner as in step S1-5, and notifies the administrator that the emergency application has been submitted. Further, the management control unit 21 of the access management server 20 transmits the assigned application identifier, the connection destination of the information processing target server 40, the activation button, and the activation program to the worker terminal 10.

The worker terminal 10 that has transmitted the emergency notification request executes a start button display process. Specifically, the terminal control unit 11 of the worker terminal 10 displays an activation button on the work application screen.
Then, the worker selects a start button on the work screen in order to perform the work. In this case, when the work management program is not recorded, the terminal control unit 11 of the worker terminal 10 executes the work management program download process similarly to step S2-5, and similarly to step S2-7. Start the work management program. In this case, the access unit 112 of the terminal control unit 11 generates and displays a connection server list screen that displays a list of the information processing target servers 40 of the server identifier input on the work application screen.

  Thereafter, when the worker selects the information processing target server 40 to be connected from the connection server list screen, the terminal control unit 11 of the worker terminal 10 executes a log acquisition start process in the same manner as in step S2-8. In this case, the operation log recording unit 113 stores the session identifier and the received application identifier in the memory in association with each other. Then, the worker terminal 10 and the access management server 20 execute processing similar to the processing after step S2-9 described above.

According to this embodiment, the following effects can be obtained.
-In this embodiment, the management control part 21 of the access management server 20 which acquired the application request performs the application content recording process (step S1-5), executes the approval request process (step S1-6), An approval judgment result recording process is executed (step S1-8). In this case, when the approval determination flag is included in the approval determination result data, the status area of the application content data 250 is changed to the “waiting for work” status. Thereafter, when an application identifier having a status of “waiting for work” is selected on the work list screen, the management control unit 21 of the access management server 20 performs a work including a start button and a start program for accessing the work target. Screen data is generated and transmitted to the worker terminal 10. The worker terminal 10 displays this work screen. When the activation button displayed on the work screen is selected, the terminal control unit 11 of the worker terminal 10 activates the work management program (step S2-7) and executes a connection password request process (step S2-7). S2-9). The management control unit 21 of the access management server 20 that has received the connection password request executes a connection password transmission process (step S2-11). The terminal control unit 11 of the worker terminal 10 that has acquired the password executes an access process to the information processing target server 40 using this password (step S2-12). For this reason, unless the application request is approved, the worker terminal 10 cannot access the information processing target server 40. When performing the approved work, the worker terminal 10 automatically obtains a password from the access management server 20 and accesses the information processing target server 40 using this password. Therefore, since the worker does not know the password, the worker cannot freely access the information processing target server, and the possibility that unauthorized processing is performed can be reduced. In addition, since the worker terminal 10 cannot access the information processing target server 40 only when there is an approval, the worker terminal 10 can work only within the work range approved in advance. Further, in this case, even if the worker does not know the password, the information processing target server 40 can be accessed as long as it is within the approved work range.

In this embodiment, when the terminal control unit 11 of the worker terminal 10 starts the work management program (Step S2-7), it executes a log acquisition start process (Step S2-8). For this reason, since a log is automatically acquired from the start of access, the operator's work can be grasped from the start of access.

  In the present embodiment, when the terminal control unit 11 of the worker terminal 10 detects that the worker's work has been completed, the terminal control unit 11 performs a log attachment button display process (step S3-2). When this log attachment button is selected, the terminal control unit 11 acquires operation log data 120 including a session identifier, generates log content data, and executes a work report generation process (step S3- 3). When the work report data 260 is generated, the terminal control unit 11 displays a report button on the work screen. And when this report button is selected, the terminal control part 11 performs a work report request process (step S3-5). The management control unit 21 of the access management server 20 that has acquired the report request executes a work report data recording process (step S3-6). Therefore, the worker terminal 10 does not create the work report data 260 unless the end of the work is detected, and does not display an instruction to transmit the work report data 260 unless the work report data 260 is created. Therefore, since the log from the access to the information processing target server 40 to the end of the work can be acquired, the work performed by the worker can be confirmed without omission.

  In the present embodiment, the worker terminal 10 includes an operation log data storage unit 12 in which operation log data 120 is recorded. Every time new screen data is acquired from the information processing target server 40, the terminal control unit 11 of the worker terminal 10 records a display process for displaying a new screen on the work window based on the new screen data and a log of this screen. Screen log acquisition processing to be executed. Each time the terminal control unit 11 of the worker terminal 10 detects a new instruction from the keyboard or pointing device to the information processing target server 40, the terminal control unit 11 performs a key input log acquisition process for recording the detected key. For this reason, since the operation log to the information processing target server 40 is recorded in the operation log data storage unit 12 of the worker terminal 10, the information processing target server 40 can be used without introducing a log function to the information processing target server 40. 40 operation logs can be acquired.

  In the present embodiment, the terminal control unit 11 generates operation log data 120 including the encrypted screen content, the acquired display time, and the session identifier associated with this work window, and the operation log data Record in the storage unit 12. Further, the terminal control unit 11 generates operation log data 120 including the encrypted key type and the acquired execution time and the session identifier associated with the work window, and the operation log data storage unit 12 To record. Since the operation log data 120 stores an encrypted operation log, it is possible to make it difficult to falsify the log.

  In the present embodiment, when the activation button is selected and the work management program is not recorded in the memory of the worker terminal 10 (in the case of “YES” in step S2-4), the worker terminal The terminal control unit 11 in FIG. 10 executes a work management program download process (step S2-5). For this reason, when it becomes necessary, the worker terminal 10 automatically acquires the task management program, so that it is not necessary to store the task management program in the worker terminal 10 in advance.

  -In this embodiment, the terminal control part 11 of the worker terminal 10 performs a work report request process (step S3-5). The management control unit 21 of the access management server 20 that has acquired the report request executes a work report data recording process (step S3-6), and executes a report confirmation request process (step S3-7). Then, the manager terminal 30 executes a work content check process (step S3-8). For this reason, the administrator can check the validity of the work content of the information processing of the worker who has finished the work, based on the work report information.

In the present embodiment, when the emergency button is selected, the terminal control unit 11 of the worker terminal 10 executes the emergency application content recording process and notifies the administrator that the emergency application has been submitted. . When the activation button on the work screen is selected, the terminal control unit 11 of the worker terminal 10 activates the work management program in the same manner as in step S2-7, and the log acquisition start process as in step S2-8. Is executed, and the same processing as the processing after step S2-9 described above is executed. For this reason, in an urgent case, processing can be executed without waiting for approval, so that it is possible to flexibly cope with the situation. Even in this case, the work performed by the operator can be recorded as a log without omission.

Moreover, you may change the said embodiment as follows.
In the above embodiment, when the terminal control unit 11 of the worker terminal 10 detects that the worker's work is finished, the work report request process is executed (step S3-5), and the work report is issued. The work report request including the document data 260 is transmitted to the access management server 20. The time when the work report is performed is not limited to this, and the terminal control unit 11 of the worker terminal 10 may appropriately create data related to the work report and transmit it to the access management server 20. For example, the time when the access unit 112 accesses the information processing target server 40 is stored in the memory. Then, every time a predetermined time (for example, 2 hours) elapses from the time, the work report unit 114 stores the operation log data 120 stored in the operation log data storage unit 12 until that time, as in step S3-3. The work progress report data may be acquired and transmitted to the access management server 20. In this case, the work report unit 114 records the time when the work progress report data is transmitted. When the next work progress report data is generated, the work report means 114 acquires the operation log data 120 from this time to the next time and transmits the work progress report data. On the other hand, the access management server 20 that has received the work progress report data records it, and sends an email including the fact that the work intermediate report has been acquired to the work manager. Thereby, the manager can grasp the progress of the work of the worker.

  In the above embodiment, the connection password data storage unit 24 stores the connection password data 240 including the server identifier, the user identifier, and the password. The password used when accessing the information processing target server 40 may be changed every predetermined period. Specifically, connection password data including a server identifier, a user identifier, a usable period, and a password may be stored in the connection password data storage unit 24. Then, the management control unit 21 of the access management server 20 that has received the connection password request compares the received current date and time with the usable period of the connection password data, and only if the connection password is within the usable period, A transmission process is executed (step S2-11). In this case, since the password is changed after the usable period elapses, even if the password is known, the password cannot be used after the usable period elapses and cannot be freely accessed.

  In the embodiment described above, the case where the worker applies for his / her work has been described. For this reason, although demonstrated that an applicant and an operator correspond, an operator is not limited to an applicant. Specifically, an applicant identifier data area is further provided in the application content data 250. The access management server 20 is connected to an applicant terminal used by the applicant. In response to a work application screen request from the applicant terminal, the management control unit 21 of the access management server 20 has input fields for inputting the worker's employee identifier, work target, work category, scheduled work time, and work content. The work application screen data that contains it is sent to the applicant terminal. Then, the management control unit 21 of the access management server 20 that has acquired the application request from the applicant terminal records the employee identifier input on the work application screen in the worker identifier data area of the application content data 250. In this case, the management control unit 21 records the employee identifier acquired at the time of access from the applicant terminal in the applicant identifier of the application content data 250.

When there is an access from the worker terminal 10 to perform the work, the management control unit 21 of the access management server 20 includes the employee identifier acquired from the worker terminal 10 as the worker identifier, and “waiting for work”. The application content data that is in the status of is extracted, and work screen data transmission processing is executed based on this. When a work screen request is received for the application content of the status of “waiting for work”, the management control unit 21 transmits work screen data including a start button and a start program to the worker terminal 10. In this case, even a person other than the worker can apply for the work.

1 is a schematic diagram of a system in an embodiment. It is explanatory drawing explaining the data structure recorded on the data storage part, (a) is employee data, (b) is organization data, (c) is connection password data, (d) shows the structure of application content data. . Explanatory drawing explaining the data structure recorded on the work report data storage part. Explanatory drawing explaining the data structure recorded on the operation log data storage part. The flowchart for demonstrating the process sequence of work application processing. The flowchart for demonstrating the process sequence of a work start process. The flowchart for demonstrating the process sequence of work completion processing.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 10 ... Worker terminal, 11 ... Terminal control part, 12 ... Operation log data storage part, 20 ... Access management server, 21 ... Management control part, 22 ... Employee data storage part, 23 ... Organization data storage part, 24 ... Connection password Data storage unit 25 ... Application content data storage unit 26 ... Work report data storage unit 30 ... Administrator terminal 40 ... Information processing server 111 ... Management screen display unit 112 ... Access unit 113 ... Operation log Recording means 114 ... Work report means 115 ... Work screen display means 120 ... Operation log data 210 ... Management screen processing means 211 ... Application processing means 212 ... Approval processing means 213 ... Access assist means 214 ... Complete Processing means, 220 ... employee data, 230 ... organization data, 240 ... connection password data, 250 ... application content data, 260 ... work report Data.

Claims (5)

An operator terminal that performs operations on the information processing target server;
The information from the worker terminal using a password data storage unit that records a password used to access the information processing target server, and an access management server that includes a management control unit that communicates with the worker terminal. A system for managing access to a processing target server,
The management control means includes
An application request acquisition means for receiving and recording an application request including a server identifier for identifying an information processing target server to be operated from the worker terminal;
When obtaining approval for the application request, it comprises an access permission means for transmitting an activation means to the worker terminal,
The worker terminal includes an access unit that is activated by the activation unit, obtains a password for accessing the information processing target server from the access management server, and uses the password to access the information processing target server. An access management system characterized by that. The worker terminal includes log data storage means for recording an operation log for the information processing target server,
The said operator terminal is further provided with the log recording means which starts the log acquisition process started by the said starting means, and records the operation log in the said information processing object server in the said log data storage means. The access management system according to 1. The access management server is connected to an administrator terminal used by an administrator who manages an operator who performs an operation on the information processing target server,
When the worker terminal detects the end of information processing work to the information processing target server, the report request for transmitting work report information including an operation log recorded in the log data storage unit to the access management server Further comprising means,
The access management system according to claim 2, wherein the management control unit further includes a confirmation request unit that transmits work report information acquired from the worker terminal to the manager terminal. Log data storage means for recording a log for the information processing target server, connected to a worker terminal that performs operations on the information processing target server,
Password data storage means for recording a password used to access the information processing target server;
An access management server comprising management control means for communicating with the worker terminal,
The management control means includes
Application request acquisition means for receiving and recording an application request including a server identifier for identifying an information processing target server from the worker terminal;
When obtaining approval for the application request, an access permission means for transmitting an activation means for activating an access means for allowing the worker terminal to access the information processing target server, to the worker terminal;
An access management server comprising password providing means for transmitting a password for accessing the information processing target server to the worker terminal in response to a request from the access means of the worker terminal. A password data storage unit that records a password used to access the information processing target server and a management control unit, and is connected to an access management server used to manage access to the information processing target server;
Log data storage means for recording an operation log for the information processing target server;
An operator terminal having a terminal control means for communicating with an access management server,
The terminal control means
An application request transmitting means for transmitting an application request including a server identifier for specifying an information processing target server performing information processing to the access management server;
An activation means acquisition means for obtaining an activation means from the access management server in response to approval for the application request;
An access unit that is activated by the activation unit, obtains a password for accessing the information processing target server from the access management server, and uses the password to access the information processing target server;
An operator terminal comprising: a log recording unit that is activated by the activation unit and starts a log acquisition process for recording an operation log in the information processing target server in the log data storage unit.

Images