Electrical computers and digital processing systems: multicomput – Multicomputer synchronizing
Reexamination Certificate
1998-10-19
2001-07-31
Maung, Zarni (Department: 2155)
Electrical computers and digital processing systems: multicomput
Multicomputer synchronizing
C707S793000
Reexamination Certificate
active
06269405
ABSTRACT:
BACKGROUND OF THE INVENTION
1. Technical Field
The present invention relates generally to computer networks and more particularly to the establishment and synchronization of user accounts within a server network which consists of a central server and a set of managed servers running native and non-native operating systems for the establishment and synchronization of user accounts within a heterogeneous server network.
2. Description of the Related Art
The client-server model of computing is a well-known environment. In the model, the user of a computer utilizes a “client” system. The client system runs any of a number of computer operating systems to manage the basic functions that users execute (such as accessing files, executing programs, system administration and the like) as well as to serve as the base against which programs are written. Well-known client operating systems include Microsoft Windows 3.1, Windows for Workgroups, Windows 95, Windows 98, IBM® OS/2® Warp, Apple Macintosh, DOS, many variations of UNIX, and Microsoft Windows NT. The client system serves as the users workstation, and it may execute programs as well as store some user data.
The server system can also run any of a number of computer operating systems. Well-known server operating systems include Novell Netware, IBM OS/2 Warp Server, IBM AS/400®, Microsoft Windows NT, and many variations of OSF UNIX. The server system is accessed by the client system for specific functions. The functions include, but are not limited to, storage and retrieval of data, storage and execution of applications, and storage of and access to user information.
Server networks are increasingly becoming heterogeneous due to differing problems that can be solved by different servers. User management in these environments requires the creation of different user accounts on the different types of servers. These user accounts eventually have different passwords and possibly different user I.D.'s. A mechanism is needed to allow a single user account definition to be used as the basis for any additional user accounts that exist in the network. The mechanism needs to go beyond current technology options and allow the accounts on all servers to be continuously updated.
A common term used to refer to a network of related servers is a domain. Within the server domain is a central server acting as the primary domain controller and a plurality of “managed” servers sometimes called secondary servers. Industry standards have been developed (for critical and common functions) to aid in the access from different types of client systems to different types of server systems. The use of these standards on the client and server afford users the opportunity to carry out functions in a consistent manner on a variety of common client and server operating systems. One of the activities that has been standardized is the “authentication” of users. Authentication refers to the process in which a user is validated as being able to complete a log-on and/or access a system. Standard protocols have been defined within the X/Open Server Message Block (SMB) specification and the Open Systems Foundation (OSF) Distributed Computing Environment (DCE) specification.
While many products and operating systems have been developed that utilize the standard protocols, not all products have used the standards. When this occurs, either additional work must be done by the other operating system to implement the unique commands used by a vendor, or access to the other new system and/or product is not allowed if the unique commands are not made available to other vendors. When the commands andlor protocol are not made available, that aspect of the system and/or product is sometimes characterized as being “closed”. In regard to user management and authentication, the Microsoft Windows NT operating system is an example of a closed server system that is used in many enterprise computer networks.
Protocols have also been developed to allow servers to communicate between systems. These protocols have not been standardized to the extent that client to server protocols have been. As a result, homogeneous server networks (all servers running a common operating system or subsystem) have developed solutions for functions like user account management across systems. Solutions for user account management across heterogeneous server networks (servers running different operating systems or subsystems), were previously unknown.
The present invention addresses the problem where creation or update of user accounts at a central server (primary domain controller) provides for establishment and synchronization at managed servers (secondary domain servers) of the user account information based on the central server information. The present invention enables the network to consist of servers that are executing with the same operating system or subsystem as the central server and servers that are executing with a different operating system or subsystem as the central server. Updates to the user account can include password changes, initial resource access or other user account attributes. The updates are synchronized automatically without system administrator or user intervention.
SUMMARY OF THE INVENTION
It is a general object of this invention to provide user account establishment on a central server.
It is a more specific object to provide establishment and synchronization from a central server to a plurality of managed servers in a heterogeneous environment within the server domain.
Still another object is to uncouple the proprietary linkage between servers in a known “closed” architecture to enable users to obtain and access account information in heterogeneous server networks.
A still further object of this invention is to allow an IBM OS/2 server to establish and synchronize user accounts with a Windows NT managed server.
These and other objects, features and advantages are provided by a method of establishing and synchronizing a user account in heterogeneous networks which allows a single user account from one type of server to be used as a basis to create a corresponding user account on a different type of server. After establishment of a user account, the server where the initial account was established will ensure that all account updates, such as password changes, are replicated on the other servers in the environment on a real time basis. By doing this as a core function of the server, account changes can be appropriated immediately without the requirement of human interaction at the server.
In a preferred embodiment, the initial establishment of a user account is in an IBM OS/2 Warp Server domain which is then used as a base to create and manage a corresponding user account on a Microsoft Windows NT server. An advantage of this invention is that a heterogeneous server environment made up of servers running multiple diverse operating systems can be continuously kept up-to-date without any human interactions. By doing an account creation update on a continual real time basis, systems are kept synchronized at all times and it is done as a core service versus being done on an ad hoc or scheduled basis.
REFERENCES:
patent: 5418854 (1995-05-01), Kaufman et al.
patent: 5671354 (1997-09-01), Ito et al.
patent: 5694595 (1997-12-01), Jacobs et al.
patent: 5708812 (1998-01-01), Dyke et al.
patent: 5719941 (1998-02-01), Swift et al.
patent: 5768519 (1998-06-01), Swift et al.
patent: 5774551 (1998-06-01), Wu et al.
patent: 5819020 (1998-10-01), Beeler, Jr.
patent: 5832211 (1998-11-01), Blakley, III et al.
patent: 6044465 (2000-03-01), Dutcher et al.
patent: 6065054 (2000-05-01), Dutcher et al.
patent: 6070244 (2000-05-01), Orchier et al.
Author unknown, Syntegration Inc. UserMan for NT, http://www.syntegration.com/userman.html, Syntegration, Inc, Jan. 1998, 2 pages.*
Nancy McLain, NetVision: Using NDS as a Metadirectory to Synchtonize Different Directories, Novell Research, Jun. 1998, 1 page.*
Bob Gordon, Computer Associates Introduces Advanced Cross-Platform Directory Management Solutio
Dutcher David Paul
Sinclair, Jr. William H.
Smith Stanley Alan
International Business Machines - Corporation
LaBaw Jeffrey S.
Maung Zarni
Winder Patrice
Yee Duke W.
LandOfFree
User account establishment and synchronization in... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with User account establishment and synchronization in..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and User account establishment and synchronization in... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2435423