公开(公告)号：US11675746B2

公开(公告)日：2023-06-13

申请号：US17364453

申请日：2021-06-30

Applicant: Nutanix, Inc.

Inventor： Hemantha Kumar Thummala ,  Krishna Shibu Pillai ,  Manish Gupta ,  Shyamsunder Prayagchand Rathi

IPC: G06F16/182 ,  H04L9/40 ,  G06F9/455

CPC classification number: G06F16/182 ,  G06F9/45558 ,  H04L63/08 ,  G06F2009/45579 ,  G06F2009/45583

Abstract: Examples described herein include virtualized environments including a virtualized file server. Examples of secure domain join processes are described which may facilitate joining a virtualized file server or portions thereof to a domain. In some examples, the secure domain join process itself, and/or an associated file server virtual machine, may have insufficient credentials to write objects into an active directory. The active directory credentials need not be shared with the file server virtual machine. Rather, in some examples, the secure domain join process may provide a user system with a list of actions to be performed using active directory credentials.

公开(公告)号：US20250086295A1

公开(公告)日：2025-03-13

申请号：US18959418

申请日：2024-11-25

Applicant: Nutanix, Inc.

Inventor： Hemantha Kumar Thummala ,  Manoj Premanand Naik ,  Saji Kumar Vijaya Kumari Rajendran Nair ,  Srikrishan Malik

IPC: G06F21/60 ,  G06F16/188 ,  G06F21/62

Abstract: Examples described herein are generally directed towards file server access controls, and more specifically towards a mechanism to create consistent access control lists for local users across different file servers in a distributed file server environment. In operation, a local user system SID (e.g., external SID) may be generated for a first user of a first file server. A global ID based on attributes associated with the user of the first file server may also be generated. The global ID for the user may be stored in metadata associated with an access control list (ACL) for a file accessible through the first file server. Data, including the file may be migrated to a second file server. Based on receiving an access request at the second file server associated with the user based on the external ID, the external ID for the user may be translated into the global ID, and used to determine access to the file.

公开(公告)号：US12153690B2

公开(公告)日：2024-11-26

申请号：US17648735

申请日：2022-01-24

Applicant: NUTANIX, INC.

Inventor： Hemantha Kumar Thummala ,  Manoj Premanand Naik ,  Saji Kumar Vijaya Kumari Rajendran Nair ,  Srikrishan Malik

IPC: G06F21/60 ,  G06F16/188 ,  G06F21/62

Abstract: Examples described herein are generally directed towards file server access controls, and more specifically towards a mechanism to create consistent access control lists for local users across different file servers in a distributed file server environment. In operation, a local user system SID (e.g., external SID) may be generated for a first user of a first file server. A global ID based on attributes associated with the user of the first file server may also be generated. The global ID for the user may be stored in metadata associated with an access control list (ACL) for a file accessible through the first file server. Data, including the file may be migrated to a second file server. Based on receiving an access request at the second file server associated with the user based on the external ID, the external ID for the user may be translated into the global ID, and used to determine access to the file.

公开(公告)号：US20230237170A1

公开(公告)日：2023-07-27

申请号：US17648735

申请日：2022-01-24

Applicant: NUTANIX, INC.

Inventor： Hemantha Kumar Thummala ,  Manoj Premanand Naik ,  Saji Kumar Vijaya Kumari Rajendran Nair ,  Srikrishan Malik

IPC: G06F21/60 ,  G06F21/62 ,  G06F16/188

CPC classification number: G06F21/604 ,  G06F21/6218 ,  G06F21/602 ,  G06F16/188 ,  G06F2221/2141

Abstract: Examples described herein are generally directed towards file server access controls, and more specifically towards a mechanism to create consistent access control lists for local users across different file servers in a distributed file server environment. In operation, a local user system SID (e.g., external SID) may be generated for a first user of a first file server. A global ID based on attributes associated with the user of the first file server may also be generated. The global ID for the user may be stored in metadata associated with an access control list (ACL) for a file accessible through the first file server. Data, including the file may be migrated to a second file server. Based on receiving an access request at the second file server associated with the user based on the external ID, the external ID for the user may be translated into the global ID, and used to determine access to the file.

公开(公告)号：US20210397587A1

公开(公告)日：2021-12-23

申请号：US17364453

申请日：2021-06-30

Applicant: Nutanix, Inc.

Inventor： Hemantha Kumar Thummala ,  Krishna Shibu Pillai ,  Manish Gupta ,  Shyamsunder Prayagchand Rathi

IPC: G06F16/182 ,  H04L29/06 ,  G06F9/455

Abstract: Examples described herein include virtualized environments including a virtualized file server. Examples of secure domain join processes are described which may facilitate joining a virtualized file server or portions thereof to a domain. In some examples, the secure domain join process itself, and/or an associated file server virtual machine, may have insufficient credentials to write objects into an active directory. The active directory credentials need not be shared with the file server virtual machine. Rather, in some examples, the secure domain join process may provide a user system with a list of actions to be performed using active directory credentials.

公开(公告)号：US11086826B2

公开(公告)日：2021-08-10

申请号：US15966943

申请日：2018-04-30

Applicant: Nutanix, Inc.

Inventor： Hemantha Kumar Thummala ,  Krishna Shibu Pillai ,  Manish Gupta ,  Shyamsunder Prayagchand Rathi

IPC: G06F21/00 ,  G06F16/182 ,  H04L29/06 ,  G06F9/455

Abstract: Examples described herein include virtualized environments including a virtualized file server. Examples of secure domain join processes are described which may facilitate joining a virtualized file server or portions thereof to a domain. In some examples, the secure domain join process itself, and/or an associated file server virtual machine, may have insufficient credentials to write objects into an active directory. The active directory credentials need not be shared with the file server virtual machine. Rather, in some examples, the secure domain join process may provide a user system with a list of actions to be performed using active directory credentials.

公开(公告)号：US20190332683A1

公开(公告)日：2019-10-31

申请号：US15966943

申请日：2018-04-30

Applicant: Nutanix, Inc.

Inventor： Hemantha Kumar Thummala ,  Krishna Shibu Pillai ,  Manish Gupta ,  Shyamsunder Prayagchand Rathi

IPC: G06F17/30 ,  G06F9/455 ,  H04L29/06

Abstract: Examples described herein include virtualized environments including a virtualized file server. Examples of secure domain join processes are described which may facilitate joining a virtualized file server or portions thereof to a domain. In some examples, the secure domain join process itself, and/or an associated file server virtual machine, may have insufficient credentials to write objects into an active directory. The active directory credentials need not be shared with the file server virtual machine. Rather, in some examples, the secure domain join process may provide a user system with a list of actions to be performed using active directory credentials.