US 12,326,928 B2
Implementing multi-party authorizations within an identity and access management regime
Ashwini Rajendran, Sunnyvale, CA (US); William O'Donnell, Wisconsin Rapids, WI (US); Heli Utpal Modi, San Jose, CA (US); Malay Prajapati, Dublin, CA (US); and Ketan Shah, Sunnyvale, CA (US)
Assigned to Nutanix, Inc., San Jose, CA (US)
Filed by Nutanix, Inc., San Jose, CA (US)
Filed on Jul. 29, 2022, as Appl. No. 17/816,352.
Prior Publication US 2024/0037212 A1, Feb. 1, 2024
Int. Cl. G06F 21/44 (2013.01); G06F 21/60 (2013.01)
CPC G06F 21/445 (2013.01) [G06F 21/604 (2013.01)] 24 Claims
OG exemplary drawing
 
1. A non-transitory computer readable medium having stored thereon a sequence of instructions which, when stored in memory and executed by a processor cause the processor to perform acts comprising:
receiving a request to perform an operation over a computing node of a computing cluster;
determining that the operation is subject to both a role-based access control (RBAC) as well as a multi-party authorization (MPA) consensus protocol at least by accessing permission data, the permission data having RBAC access control records and MPA extensions, and an MPA extension comprising at least a designation of any MPA workflows for implementing any MPA consensus protocols for a corresponding item; and
allowing or denying the request to perform the operation by:
accessing a role-based access control (RBAC) record corresponding to the operation; and
invoking the multi-party authorization (MPA) consensus protocol.