摘要 |
A method for intercepting, by an agent of a client, communications from the client to be transmitted via a virtual private network connection includes the step of intercepting communications based on identification of an application from which the communication originates. The agent receives information identifying a first application. The agent determines a network communication transmitted by the client originates from the first application and intercepts that communication. The agent transmits the intercepted communication via the virtual private network connection. Another method is described for allowing or denying, by an appliance, access to a resource by an application on a client via a virtual private network connection includes basing the decision to allow or deny access on identification of the application. The appliance associates with the intercepted request an authorization policy based on the identity of the application. The appliance determines, using the authorization policy and the identity of the application, to either allow or deny access by the application to the resource. |
申请人 |
CITRIX SYSTEMS, INC.;MULLICK, AMARNATH;VENKATRAMAN, CHARU;HE, JUNXIAO;NANJUNDASWAMI, SHASHI;HARRIS, JAMES;SONI, AJAY |
发明人 |
MULLICK, AMARNATH;VENKATRAMAN, CHARU;HE, JUNXIAO;NANJUNDASWAMI, SHASHI;HARRIS, JAMES;SONI, AJAY |