Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Multi-domain security management method for network management system

The technology of a network management system and management method is applied in the field of SDH/MSTP/PTN transmission network to achieve the effect of reducing maintenance work time and reducing work time

Inactive Publication Date: 2013-05-08
武汉众邦领创技术有限公司
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0012] The technical problem to be solved by the present invention is to provide a multi-domain security management method for a network management system. Through this method, the problem of sub-domain and sub-authority control in the network management system is solved, and different rights of different management domains are flexibly assigned to users.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-domain security management method for network management system
  • Multi-domain security management method for network management system
  • Multi-domain security management method for network management system

Examples

Experimental program
Comparison scheme
Effect test

example

[0037] Example: logical domain = {NE 1, NE 24, ...}

[0038] 4. User: real user.

[0039] 5. User group: A group of users with the same logical security management domain and the same authority.

[0040] Example: Usergroup = {administrators, system operators, ...}

[0041] By default, user groups include administrator user group, operator user group, observer user group, etc., and users can also customize user groups.

[0042] 6. Permission item: a collection of operation permissions, which can be configured according to the granularity of functions.

[0043] Example: NE operation permission item = {create NE, delete NE, modify NE, ...}

[0044] 7. Permission set: a collection of functional permission items assigned to users.

[0045] Example: administrator operation permission set = {network element operation permission item, business operation permission item, ...}

[0046] Among them, the operation item is customized by the system, and the operation item is a collectio...

Embodiment

[0065] In order to provide a network management rights management method, the method solves the domain-specific rights control problem in the network management system, and flexibly assigns different rights of different management domains to users.

[0066]The normal flow process of the present invention is as follows:

[0067] Step 1: Create a logical security domain.

[0068] Step 2: Assign network elements to logical security domains.

[0069] Step 3: Create a collection of operation permissions.

[0070] Step 4: Formulate a permission set for the virtual domain.

[0071] Step 5: Specify the virtual domain and permission set for the user.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a multi-domain security management method for a network management system, which comprises the following steps of: 1) creating one or more logic security management domains; 2) distributing network elements to corresponding logic security management domains; 3) creating a user group and assigning different users to the user groups; 4) creating an operating rights set; 5) specifying the rights set for the logic security management domains and establishing an association relation of the logic security management domains and the operating rights set; and 6) specifying an association relation of the one or more logic security management domains and the operating rights set for the user group, and finally establishing an association relation of the user group, the logic security management domains and the operating rights set. By the method, a problem of control in different domains by different rights in the network management system is solved, and different rights in different management domains are distributed to the users flexibly.

Description

technical field [0001] The present invention relates to SDH (Synchronous Digital Hierarchy) / MSTP (SDH-based Multi-Service Transmission Platform) / PTN (Packet Transport Network) transmission network, focusing on the decentralized management of network management systems, flexibly controlling user rights, and preventing unauthorized access users to access network resources and network management functions. Background technique [0002] In recent years, with the continuous expansion of the transmission network scale, the transmission network of telecom operators has formed a situation where multiple manufacturers and multiple transmissions coexist. The transmission network management centrally manages equipment of various types and manufacturers, monitors alarms and performance in real time, and configures various network connections and services. Because the transmission network management is centralized management, and the scope of management and the functions realized are mo...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/24
Inventor 张珏曹东
Owner 武汉众邦领创技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products