| 发明名称 |
METHOD FOR CLOUD-BASED ACCESS CONTROL POLICY MANAGEMENT |
| 摘要 |
A Web-based management server includes an ACP manager to manage access control rules (ACRs) and access control policies (ACPs). The ACRs and ACPs are configured by an administrator via a Web interface of the management server. The ACP manager is to transmit over the Internet the ACPs and the ACRs to network access devices (NADs) to allow the NADs to apply the ACPs to their respective network client devices (NCDs) based on the ACRs, where the NADs are managed by the management server over the Internet. Each of the NADs operates as one of a router, a network switch, and an access point. The ACP manager is to periodically update the ACRs and ACPs stored in the NADs, including receiving an update from one NAD and broadcasting the update to a remainder of the NADs. |
| 申请公布号 |
US2015319193(A1) |
申请公布日期 |
2015.11.05 |
| 申请号 |
US201514798264 |
申请日期 |
2015.07.13 |
| 申请人 |
Cisco Technology, Inc. |
发明人 |
Chambers Benjamin A.;Frey Clifford A.;Musaloiu-Elefteri Raluca |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A system comprising:
a server comprising:
an interface to allow an administrator to configure access control policies (ACPs) of network client devices (NCDs),a database to store the ACPs received from the Web interface; and a plurality of network access devices (NADs), communicatively coupled to the server over a network, wherein each NAD of the plurality of NADs is to periodically communicate with the server to exchange updates of the ACPs between the each NAD and the server, wherein the each NAD is to enforce the ACPs against associated NCDs, and wherein when an NCD of the plurality of NCDs connects to an NAD of the plurality of NADs and requests to enter a LAN associated with the NAD, the NAD authenticates the NCD and applies a respective ACP of the ACPs to the NCD. |
| 地址 |
San Jose CA US |
