Patents Assigned to Oktas
-
Patent number: 9852286Abstract: An identity management system detects the occurrence of a trigger event, such as a time period expiration, or an action on the identity management system. The identity management system accordingly generates a new password for an account of a user on a third-party service and causes the account of the user on the third-party service to use the new password. The identity management system may also a mobile device management system to configure a client of the user with the new password.Type: GrantFiled: May 27, 2015Date of Patent: December 26, 2017Assignee: Okta, Inc.Inventors: Hector Aguilar-Macias, Reman P. Child, Xin Gu, Jonathan R. Todd, Thomas M. Belote
-
Patent number: 9548976Abstract: After an initial user sign-on with an identity provider, and in response to an intention of the user to use a third-party application executing on a client device of the user and requiring user sign-on, the identity provider provides a client script to the third-party application. The client script facilitates user and application authentication and invokes a trusted broker application that interacts with the identity provider to enable the user to use the third-party application. The use of the trusted broker application provided by the identity provider frees the authors of third-party applications from the need to modify their applications to explicitly sign in with the identify provider.Type: GrantFiled: May 4, 2015Date of Patent: January 17, 2017Assignee: Okta, Inc.Inventors: Thomas M. Belote, Hassen Karaa, Christine Wang, Vinoth Jayaraman
-
Patent number: 9191364Abstract: An on-premise software application (“OPA”) is communicated with according to an action received from outside a firewall. The action concerns user account information maintained by the OPA. The OPA is installed on a device located inside the firewall. The action is received from a management server located outside the firewall. The action includes a portion that adheres to a standardized format. An OPA interface request is generated based on the action. The OPA interface request includes the standardized portion. The OPA interface request is sent to an agent/OPA interface.Type: GrantFiled: December 4, 2013Date of Patent: November 17, 2015Assignee: Okta, Inc.Inventors: Christopher Barbara, RaghuRam Pamidimarri
-
Patent number: 9146733Abstract: Updating integration metadata in a system includes determining at a services management platform that a service provider software code has changed in a manner that affects a canonical feature provided by the service management platform with respect to a service of the service provider to end users, wherein the canonical feature is provided at least in part by interacting with the service provider on the behalf of a user; and implementing at the services management platform, with respect to at least a subset of users, an accommodation that enables the canonical feature to be provided subsequent to the service provider software code having been changed.Type: GrantFiled: October 3, 2014Date of Patent: September 29, 2015Assignee: Okta, Inc.Inventors: Todd McKinnon, Matthew Mihic
-
Patent number: 9055031Abstract: A check in communication is received from an agent running inside a firewall via a permitted firewall communication channel. The check in communication is received via the permitted firewall communication channel without modifying a firewall configuration. The check in communication is responding to with an instruction to be performed by the agent running inside the firewall, where the response is via the permitted firewall communication channel.Type: GrantFiled: April 30, 2014Date of Patent: June 9, 2015Assignee: Okta, Inc.Inventors: Todd McKinnon, Kristoffer J. Grandy
-
Patent number: 9009858Abstract: A method for operating a distributed data management and control enclave comprises providing a policy that identifies a set of data to be managed and controlled. The policy further identifies devices upon which the data may be transferred and the conditions under which that data may be transferred to the identified devices. A first data management and control system to be used on a first device is then defined in the policy. A second management and control system to be used on a second device is then defined in the policy. The second data management and control system can be distinct from the first data management and control system. The specified data management and control system is then instantiated on a device. The specified data management and control system is then used to manage and control data on the device in accordance with the policy.Type: GrantFiled: March 14, 2013Date of Patent: April 14, 2015Assignee: Okta, Inc.Inventors: Kevin Eugene Sapp, II, Victor Ronin
-
Patent number: 8965991Abstract: A request is received for a service provider to perform an action associated with a canonical feature. Metadata associated with the service provider is used to interact with the service provider in a way that causes the service provider to perform the action.Type: GrantFiled: February 5, 2014Date of Patent: February 24, 2015Assignee: Okta, Inc.Inventors: Todd McKinnon, Matthew Mihic
-
Patent number: 8881129Abstract: Updating integration metadata in a multi-tenant system includes determining at a multi-tenant services management platform that a service provider software code has changed in a manner that affects a canonical feature provided by the multi-tenant service management platform with respect to a service of the service provider to end users associated with one or more tenants of the multi-tenant services management platform, wherein the canonical feature is provided at least in part by interacting with the service provider on the behalf of a user; and implementing at the multi-tenant services management platform, with respect to at least a subset of said one or more tenants, an accommodation that enables the canonical feature to be provided subsequent to the service provider software code having been changed.Type: GrantFiled: May 24, 2011Date of Patent: November 4, 2014Assignee: Okta, Inc.Inventors: Todd McKinnon, Matthew Mihic
-
Patent number: 8839408Abstract: A check in communication is received from an agent running inside a firewall via a permitted firewall communication channel. The check in communication is received via the permitted firewall communication channel without modifying a firewall configuration. The check in communication is responding to with an instruction to be performed by the agent running inside the firewall, where the response is via the permitted firewall communication channel.Type: GrantFiled: November 10, 2010Date of Patent: September 16, 2014Assignee: Okta, Inc.Inventors: Todd McKinnon, Kristoffer J. Grandy
-
Publication number: 20140096227Abstract: An on-premise software application (“OPA”) is communicated with according to an action received from outside a firewall. The action concerns user account information maintained by the OPA. The OPA is installed on a device located inside the firewall. The action is received from a management server located outside the firewall. The action includes a portion that adheres to a standardized format. An OPA interface request is generated based on the action. The OPA interface request includes the standardized portion. The OPA interface request is sent to an agent/OPA interface.Type: ApplicationFiled: December 4, 2013Publication date: April 3, 2014Applicant: Okta, IncInventors: Christopher Barbara, RaghuRam Pamidimarri
-
Patent number: 8661084Abstract: A request is received for a service provider to perform an action associated with a canonical feature. Metadata associated with the service provider is used to interact with the service provider in a way that causes the service provider to perform the action.Type: GrantFiled: August 27, 2010Date of Patent: February 25, 2014Assignee: Okta, Inc.Inventors: Todd McKinnon, Matthew Mihic
-
Patent number: 5603687Abstract: An endoscope for stereo-optically viewing an object comprises a tubular insertion portion characterized by a pair of adjacent asymmetric optical systems including a primary imaging channel and a secondary imaging channel. Associated with each channel is a solid state electronic imaging means positioned to receive the images relayed by primary and secondary image-relaying means. The optical portion of the primary channel comprises a relatively large objective lens system and a primary image-relaying means designed to provide sharply focussed first images. The optical portion of the secondary channel comprises a relatively small diameter objective lens system and a secondary image-relaying means designed to relay enough light and image information to provide an acceptable stereoscopic capability.Type: GrantFiled: June 7, 1995Date of Patent: February 18, 1997Assignee: Oktas General PartnershipInventors: Koichiro Hori, John R. Lyon
-
Patent number: 5582576Abstract: An endoscope having an objective lens, a zoom lens, a solid state imaging device for picking up the image formed by said objective lens and transferred by said zoom lens, and control means for moving the zoom lens and the imaging device so as to assure that for each position occupied by the zoom lens the imaging device is positioned so that the its image-receiving surface is in the focal plane of the zoom lens. The endoscope also comprises first and second motion-transmitting means for moving said zoom lens and said imaging device respectively along the optical axis of said objective lens, whereby the axial spacing between said zoom lens and said objective lens and also the axial spacing between said imaging device and said objective lens may be changed, and manually operable switch means for controlling movement of the zoom lens and the imaging device by said first and second motion transmitting means.Type: GrantFiled: October 7, 1994Date of Patent: December 10, 1996Assignee: Oktas General PartnershipInventors: Koichiro Hori, Herbert A. Thaler, Scott E. Hunt, Philip R. Lichtman
-
Patent number: 5538497Abstract: An endoscope includes a first tube having a proximal end and distal end, a second tube having a proximal end and distal end, and a control rod movably coupled to the first tube and secured to the second tube for allowing the second tube to be rotated out of lengthwise alignment with and axially movable with respect to the first tube. The first tube includes concentrically disposed optical fibers with ends terminating at the distal end of the first tube. The second tube includes separate concentrically disposed optical fibers with ends terminating at both the proximal and distal ends of the second tube. When the first and second tubes are longitudinally aligned, at least some of the optical fibers in the second tube are substantially aligned with those in the first tube such that light is coupled therebetween. Both of the first and second tubes are capable of receiving imaging means.Type: GrantFiled: August 5, 1994Date of Patent: July 23, 1996Assignee: OktasInventor: Koichiro Hori
-
Patent number: 5349941Abstract: An endoscope includes a handle body having first and second ends and having a channel region therein with the channel being exposed on at least one side of the handle body. A cover is disposed on the handle body with a portion of the cover disposed in over exposed region of the channel. An end piece is disposed over the first end of the handle body and a first tube having a channel provided therein is coupled to the second end of the handle body. The endoscope further includes a sheath disposed over the first tube and removably coupled to a first one of the tube and the second end of the handle body.Type: GrantFiled: March 26, 1993Date of Patent: September 27, 1994Assignee: OktasInventor: Koichiro Hori