CPC G06F 21/45 (2013.01) [G06F 21/44 (2013.01); H04L 63/0884 (2013.01); H04L 63/102 (2013.01); H04L 63/166 (2013.01); H04L 63/168 (2013.01)] | 16 Claims |
1. A method, comprising:
receiving, for a client computer system, a communication from an application to access a data repository;
authenticating the application, wherein the authenticating further includes:
accessing a remote authentication service, the remote authentication service authenticating the application, the application being associated with a role for the remote authentication service, the remote authentication service utilizing the role to authenticate the application, and the role being associated with a plurality of applications;
in response to the application being authenticated and based on the role of the application, obtaining credentials for the data repository from a data vault separate from the data repository and separate from the client computer system, wherein the credentials correspond to the role of the application;
utilizing the credentials to access the data repository, the application and client computer system being free of the credentials; and
logging queries provided from the application to the data repository such that the queries are associated with the application.
|