&#xfeff;<html>
  <head>
    <META http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="html_style_eog.css"/>
<script type="text/javascript">
          function printpage()
          {
          window.print()
          }
        </script>
<script type="text/javascript" src="https://components.uspto.gov/js/ais/40-patentsgazette.js"></script></head>
  <body bgcolor='#FFFFFF' onload='javascript: if ((navigator.appName.indexOf("Netscape")!=-1) && parent.leftFrame!=null) parent.leftFrame.location.reload();'>
    <basefont face="Times New Roman, Times New Roman, Times New Roman " size="2">
      <div style="margin-left: +10pt">
        <table width="90%" border="0" rules="none" align="center">
          <tr align="center">
            <td width="20%" colspan="1" rowspan="2" align="left" valign="top"><a href="https://ppubs.uspto.gov/pubwebapp/external.html?q=12218906.pn.&amp;db=USPAT" target="popup"><input type="button" class="button" value="   Full Text   "></a></td>
            <td class="table_data"><b>US 12,218,906 B1</b></td>
            <td width="20%" colspan="1" rowspan="2" align="right" valign="top">
              <form><input type="button" value="Print this page" onclick="printpage()"></form>
            </td>
          </tr>
          <tr align="center">
            <td colspan="1" class="table_data" style="text-transform: uppercase"><b>Centralized technology access control</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b> Yuhu Zhong,  Shanghai (CN);  Jun Wu,  Shanghai (CN);  Yihua Tian,  Shanghai (CN); and  Wei Jan,  Shanghai (CN)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Assigned to  Morgan Stanley Services Group Inc.,  New York, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed by  Morgan Stanley Services Group Inc.,  New York, NY (US)</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Filed on Nov.  2, 2022, as Appl. No. 18/051,964.</b></td>
          </tr>
          <tr align="center">
            <td colspan="3" class="table_data"><b>Int. Cl. </b><i><b>H04L 61/4523</b></i> (2022.01); <i><b>H04L 9/40</b></i> (2022.01); <i><b>H04L 101/30</b></i> (2022.01); <i><b>H04L 101/60</b></i> (2022.01)</td>
          </tr>
        </table>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="75%">
            <col width="15%">
          </colgroup>
          <tr align="left">
            <td class="table_data" align="left"><b>CPC </b><i><b>H04L 61/4523</b></i> (2022.05)&#xa0;[<i><b>H04L 63/104</b></i> (2013.01); <i>H04L 2101/30</i> (2022.05); <i>H04L 2101/60</i> (2022.05)]</td>
            <td class="table_data" align="right"><b>19 Claims</b></td>
          </tr>
        </table>
        <center><img src="US12218906-20250204-D00000.gif" alt="OG exemplary drawing"></center>
        <table width="90%" border="0" rules="none" align="center">
          <colgroup>
            <col width="90%">
          </colgroup>
          <tr>
            <td class="table_data" align="center">&#xa0;</td>
          </tr>
          <tr>
            <td valign="top" class="para_text">
              <div class="claim_text_root">1. A method for automated entitlement creation and control for IT applications of an enterprise IT Infrastructure System for an enterprise, the method comprising:<div class="claim_text">storing, in a configuration management database (CMDB) for the enterprise IT infrastructure system, meta data for IT resources of the enterprise, wherein the meta data comprise, for each IT resource, data of registered IT assets of the enterprise associated with each IT resource, wherein the meta data stored in the CMDB comprise new IT resource meta data for an unmanaged, new IT resource for the IT Infrastructure System;</div>
                <div class="claim_text">automatically discovering, by an access control system of the enterprise IT Infrastructure System, the unmanaged, new IT resource for the IT Infrastructure System, based on automatically discovering the new IT resource meta data for the unmanaged, new IT resource in the CMDB database, wherein the new IT resource meta data are associated with the unmanaged, new IT resource;</div>
                <div class="claim_text">in response to discovery of the unmanaged, new IT resource, generating, by the access control system, based on the new IT resource meta data, in a lightweight directory access protocol (LDAP) server of the enterprise IT infrastructure system, an entitlement for one or more groups of enterprise users, wherein, for each of the one or more groups, a value for each of one or more parameters of the entitlement is included in an LDAP group name, wherein the value for each of the one or more parameters is based on the new IT resource meta data and the value for each of the one or more parameters is arranged in the LDAP group name based on a pre-defined LDAP group naming convention; and</div>
                <div class="claim_text">mapping, by the access control system, the entitlement for each of the one or more groups to one or more target IT assets of the enterprise IT infrastructure system that are already registered with the enterprise IT infrastructure system, wherein the mapping for each of the one or more groups is based on the LDAP group name for each of the one or more groups.</div>
              </div>
            </td>
          </tr>
        </table>
      </div>
    
  </body>
</html>