Electrical computers and digital processing systems: multicomput – Computer network managing
Reexamination Certificate
1998-10-19
2001-03-27
Maung, Zarni (Department: 2155)
Electrical computers and digital processing systems: multicomput
Computer network managing
C709S208000
Reexamination Certificate
active
06209032
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field
The present invention relates generally to computer networks and more particularly to the control of synchronization of user accounts within a server network which consists of a central server and a set of managed servers running native and non-native operating systems for the updating of user accounts and groups within a heterogeneous server network.
2. Description of the Related Art
The client-server model of computing is a well-known environment. In the model, the user of a computer utilizes a “client” system. The client system runs any of a number of computer operating systems to manage the basic functions that users execute (such as accessing files, executing programs, system administration and the like) as well as to serve as the base against which programs are written. Well-known client operating systems include Microsoft Windows 3.1, Windows for Workgroups, Windows 95, Windows 98, IBM®OS/2® Warp, Apple Macintosh, DOS, many variations of UNIX, and Microsoft Windows NT. The client system serves as the user's workstation, and it may execute programs as well as store some user data.
The server system can also run any of a number of computer operating systems. Well-known server operating systems include Novell Netware, IBM OS/2 Warp Server, IBM AS/400®, Microsoft Windows NT, and many variations of OSF UNIX. The server system is accessed by the client system for specific functions. The functions include, but are not limited to, storage and retrieval of data, storage and execution of applications, and storage of and access to user information.
Server networks are increasingly becoming heterogeneous due to differing problems that can be solved by different servers. User management in these environments requires the creation of different user accounts and user groups on the different types of servers. These user accounts eventually have different passwords and possibly different user I.D.'s. A mechanism is needed to allow a single user account and user group definition to be used as the base for any additional user accounts and user groups that exist in the network. The mechanism needs to go beyond current technology options and allow the accounts on all servers to be continuously updated.
A common term used to refer to a network of related servers is a domain. Within the server domain is a central server acting as the primary domain controller and a plurality of “managed” servers sometimes called secondary servers. Industry standards have been developed (for critical and common functions) to aid in the access from different types of client systems to different types of server systems. The use of these standards on the client and server afford users the opportunity to carry out functions in a consistent manner on a variety of common client and server operating systems. One of the activities that has been standardized is the “authentication” of users. Authentication refers to the process in which a user is validated as being able to complete a log-on and/or access a system. Standard protocols have been defined within the X/Open Server Message Block (SMB) specification and the Open systems Foundation (OSF) Distributed Computing Environment (DCE) specification.
While many products and operating systems have been developed that utilize the standard protocols, not all products have used the standards. When this occurs, either additional work must be done by the other operating system to implement the unique commands used by a vendor, or access to the other new system and/or product is not allowed if the unique commands are not made available to other vendors. When the commands and/or protocol are not made available, that aspect of the system and/or product is sometimes characterized as being “closed”. In regards to user management and authentication, the Microsoft Windows NT operating system is becoming an example of a closed server system that is used in many enterprise computer networks.
The present invention addresses the problem of updating or synchronization of user accounts on a managed server under the direction of the central server. While a primary domain controller or central server may periodically update or periodically perform a full synchronization of managed user accounts and user groups, there is needed a mechanism to enable a managed server to cause a full synchronization as needed on a real-time basis.
SUMMARY OF THE INVENTION
It is a general object of this invention to provide full synchronization on demand by a managed server.
It is a more specific object to provide full synchronization of user accounts and group accounts from a central server on a real-time basis as needed.
Still another object is to provide graphical or command line updating to force a request to be sent from a managed server to a primary server to trigger synchronization.
These and other objects, features and advantages are provided by a method whereby an administrator with administrative privileges at a managed server can select an option to initiate a full synchronization request to the central server. The managed server system is set to designate that the managed server requires full synchronization. A system update record is received from the central server to return the record from the system entry on the managed sever to force the central server to initiate full synchronization. Central server determines full synchronization must be delivered and sends a signal to the managed server to process full synchronization. A specific instance of the invention is that an administrator of a Microsoft NT server acting as an additional server in an IBM OS/2 Warp Server domain determining that full synchronization of user information is required then taking the necessary actions to request this from an IBM OS/2 Warp Server acting as the primary domain controller.
REFERENCES:
patent: 5499343 (1996-03-01), Pettus
patent: 5603029 (1997-02-01), Aman et al.
patent: 5611048 (1997-03-01), Jacobs et al.
patent: 5613148 (1997-03-01), Bezviner et al.
patent: 5671354 (1997-09-01), Ito et al.
patent: 5675771 (1997-10-01), Curley et al.
patent: 5694595 (1997-12-01), Jacobs et al.
patent: 5708812 (1998-01-01), Dyke et al.
patent: 5710884 (1998-01-01), Dedrick
patent: 5713017 (1998-01-01), Lin et al.
patent: 5719941 (1998-02-01), Swift et al.
patent: 5793952 (1998-08-01), Limsico
patent: 5828903 (1998-11-01), Blakley, III et al.
patent: 5832211 (1998-11-01), Blakley, III et al.
patent: 5862323 (1999-01-01), Blakley, III et al.
patent: 5978813 (1999-11-01), Foltz et al.
patent: WO 95/25311 (1995-09-01), None
Tim Howes et al., The SLAPD and SLURPD Administrator's Guide, University of Michigan, Release 3.3, Apr. 1996, pp. 1-13, 51-58.*
author unknown, The Introduction to Unix Systems Administration, IFSM 498B, Using NIS, Dec. 1995, 2 pages cover, 7 pages specification.*
author unknown, HP-UX/Sun Interoperability Cookbook Version 2.0, Section 8.0 NIS, Hewlett-Packard Co., Oct. 1996, 11 pages.*
Andrea Dell'Amico et al., The Linux NIS(YP)/NIS+/NYS HOWTO, http://www.ntsj.com/HOWTO/NIS-HOWTO, Nov. 1996, 11 pages.*
L. Howard, RFC 2307, An Approach for Using LDAP as a Network Information Service, The Internet Society, Mar. 1998, 15 pages.*
author unknown, AIX Version 4.3 System Management guide: Communications and Networks, Second edition, Chapter 11. Network Information Service, Oct. 1998, 15 pages.*
IBM TDB “Configurable Time Synchronization”, vol. 35, No. 7, Dec. 1992, pp. 304-305.
IBM TDB “Mehtod for Adding Personalities to Distributed Computing Environment Registry”, vol. 39, No. 05, May 1996, pp. 93-97.
Dutcher David Paul
Sinclair, Jr. William H.
Smith Stanley Alan
International Business Machines - Corporation
LaBaw Jeffrey S.
Maung Zarni
Murhoeter Lawrence J
Winder Patrice
LandOfFree
Enabling target servers to control determination of full... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Enabling target servers to control determination of full..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Enabling target servers to control determination of full... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2522461