	US 11,962,511 B2
	Organization level identity management
Conor Patrick Cahill, Waterford, VA (US); Jasmeet Chhabra, Bellevue, WA (US); and Daniel Stephen Popick, Seattle, WA (US)
Assigned to Amazon Technologies, Inc., Reno, NV (US)
Filed by Amazon Technologies, Inc., Reno, NV (US)
Filed on Jul. 21, 2022, as Appl. No. 17/870,609.
Application 17/870,609 is a continuation of application No. 16/866,961, filed on May 5, 2020, granted, now 11,411,881.
Application 16/866,961 is a continuation of application No. 15/836,565, filed on Dec. 8, 2017, granted, now 10,715,458, issued on Jul. 14, 2020.
Prior Publication US 2022/0400084 A1, Dec. 15, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 47/70 (2022.01); G06F 21/31 (2013.01); G06F 21/45 (2013.01); G06Q 10/00 (2023.01); H04L 9/40 (2022.01); H04L 67/02 (2022.01); H04L 67/146 (2022.01)

CPC H04L 47/70 (2013.01) [G06F 21/31 (2013.01); G06F 21/45 (2013.01); G06Q 10/00 (2013.01); H04L 63/102 (2013.01); H04L 67/02 (2013.01); H04L 67/146 (2013.01)]

20 Claims

1. A computer-implemented method, comprising:

determining that a user does not have access to a resource;

identifying an organization account without access to or without an ability to directly access the resource, wherein the user has a user identity with the organization account and wherein the organization account is attachable to different resource accounts;

identifying one resource account of the different resource accounts that has authorization to access the resource;

determining that the one resource account is attached as a sub-account of the organization account in an organizational hierarchy; and

granting access to the resource, wherein the access is enabled for the organization account by a call from within the one resource account.