Cached credentials for offline domain join and login without local access to the domain controller
First Claim
1. A method for performing an offline domain join of a client without being locally connected, the method comprising:
- receiving a request for a virtual disk from a user'"'"'s computing device to a server over a remote network connection;
capturing a pre-domain-join snapshot of a virtual machine based on the virtual disk;
starting the virtual machine on a local network of the server;
performing a domain join of the virtual machine with an active directory server on the local network;
receiving a username and password of the user over the remote network connection;
causing a login to be performed into the virtual machine using the received username and password, wherein logging into the virtual machine produces an encrypted cached credential on the virtual machine;
capturing a post-domain-join snapshot of the virtual machine and producing a delta based on differences between the pre-domain-join snapshot and the post-domain-join snapshot; and
transmitting the delta to the user'"'"'s computing device, wherein the delta can be applied to add the cached credential on the user'"'"'s computing device.
4 Assignments
0 Petitions
Accused Products
Abstract
Techniques are described for performing an offline domain join and login on behalf of a computing device in order to enable the device to access corporate resources without local access to the domain controller. A slave service is described that can start a virtual machine on a local network of the enterprise, perform an offline domain join of the virtual machine, perform a first login to the virtual machine using credentials of a remote user and then capture the changes made on the virtual machine and deliver those changes to the remote user'"'"'s device. These changes can then be applied on the user'"'"'s device to add the credentials and configuration changes necessary for the user to access the private enterprise resources remotely.
-
Citations
20 Claims
-
1. A method for performing an offline domain join of a client without being locally connected, the method comprising:
-
receiving a request for a virtual disk from a user'"'"'s computing device to a server over a remote network connection; capturing a pre-domain-join snapshot of a virtual machine based on the virtual disk; starting the virtual machine on a local network of the server; performing a domain join of the virtual machine with an active directory server on the local network; receiving a username and password of the user over the remote network connection; causing a login to be performed into the virtual machine using the received username and password, wherein logging into the virtual machine produces an encrypted cached credential on the virtual machine; capturing a post-domain-join snapshot of the virtual machine and producing a delta based on differences between the pre-domain-join snapshot and the post-domain-join snapshot; and transmitting the delta to the user'"'"'s computing device, wherein the delta can be applied to add the cached credential on the user'"'"'s computing device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computing device, comprising:
-
one or more processors; and memory storing instructions that when executed by the one or more processors, cause the computing device to; receive a request for a virtual disk from a user'"'"'s computing device to a server over a remote network connection; capture a pre-domain-join snapshot of a virtual machine based on the virtual disk; start the virtual machine on a local network of the server; perform a domain join of the virtual machine with an active directory server on the local network; receive a username and password of the user over the remote network connection; cause a login to be performed into the virtual machine using the received username and password, wherein logging into the virtual machine produces an encrypted cached credential on the virtual machine; capture a post-domain-join snapshot of the virtual machine and produce a delta based on differences between the pre-domain-join snapshot and the post-domain-join snapshot; and transmit the delta to the user'"'"'s computing device, wherein the delta can be applied to add the cached credential on the user'"'"'s computing device. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer readable storage medium comprising one or more sequences of instructions, the instructions when executed by one or more processors causing the one or more processors to execute the operations of:
-
receiving a request for a virtual disk from a user'"'"'s computing device to a server over a remote network connection; capturing a pre-domain-join snapshot of a virtual machine based on the virtual disk; starting the virtual machine on a local network of the server; performing a domain join of the virtual machine with an active directory server on the local network; receiving a username and password of the user over the remote network connection; causing a login to be performed into the virtual machine using the received username and password, wherein logging into the virtual machine produces an encrypted cached credential on the virtual machine; capturing a post-domain-join snapshot of the virtual machine and producing a delta based on differences between the pre-domain-join snapshot and the post-domain-join snapshot; and transmitting the delta to the user'"'"'s computing device, wherein the delta can be applied to add the cached credential on the user'"'"'s computing device. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification