In a cloud computing environment,there are a lot of cross-domain access control problems.At the same time,in the multi-domain cloud computing environment,how to achieve the consistency management of user identity information and achieve cross-domain identity fusion has become an important research content in the field of cloud security.Aiming at the problem of user identity consistency supply management in cloud computing multi-domain environment,a method of cloud user identity consistency supply management based on identity service management IDaaS is presented.Firstly,the SCIM protocol and OAuth identity authorization protocol are analyzed.By combining the two protocols,identity information synchronization between enterprise domain and IDaaS is realized.Identity transformation rules are created to synchronize identity information between third-party tenants and IDaaS,so as to achieve consistent provision of user identity information.At the same time,LDAP protocol is used to realize the con-sistent synchronization of multiple IDaaS user identity information in a cross-domain environment.
维普
万方数据