There is provided a computer implemented method of managing access for user account, comprising: accessing a graph mapping a plurality of nodes denoting real users to a plurality of user accounts and a plurality of resources hosted by a plurality of service computing environments external to a target computing environment accessed by the user accounts, and defining different permissions for user accounts for accessing the different resources, receiving a query for identifying user accounts for a target user, executing the query on the graph, and providing details regarding user accounts of the target users from the execution of the query on the graph, the details including at least one of: identifiers of the user accounts, resources accessible to the user accounts, access privileges for accessing the resources.
Full Text
What is claimed is: