USER-AWARE DATACENTER SECURITY POLICIES

摘要

A control and monitoring node receives information from a user tracking system indicating a current association between a user identifier of an authenticated user and a device identifier of a client device associated with the authenticated user. The control and monitoring node accesses a user-specific security policy that is associated with the user identifier and that indicates at least a network destination and a user-specific security-related action associated with the network destination. The control and monitoring node generates an active security policy based at least on the user-specific security policy and the information indicating the current association between the user identifier and the device identifier, and provides the active security policy to a network node, such as a firewall or application server.