| CPC G06F 21/6218 (2013.01) [G06F 21/45 (2013.01)] | 17 Claims |
|
1. A computer system, comprising:
an interface circuit configured to communicate with an electronic device associated with a tenant in a multi-tenant system, and with a second computer system associated with a managed service provider (MSP) of a shared network in the multi-tenant system, wherein the MSP is different from the tenant, and wherein the computer system is configured to:
receive, associated with the electronic device, an access request to access the shared network;
identify the second computer system, which provides authentication and authorization to the shared network for users associated with the tenant;
provide, addressed to the second computer system, an authorization request for the electronic device;
receive, associated with the second computer system, an authorization response, wherein the authorization response approves access by the electronic device to the shared network;
determine a mapping to a partner domain administrator of the electronic device based at least in part on a lightweight directory access protocol (LDAP) group or a vendor specific attribute (VSA) specified in the authorization response; and
provide, addressed to the electronic device, an access response, wherein the access response comprises information specifying access privileges of the electronic device in the shared network and the partner domain administrator.
|