Enabling remote access to a service controller having a factory-installed unique default password

US 10,321,313 B2
Filed: 09/09/2016
Issued: 06/11/2019
Est. Priority Date: 09/09/2016
Status: Active Grant

First Claim

Patent Images

1. A remote access method, comprising:

providing, by a service controller of an information handling system, a login user interface wherein the service controller includes a unique random password as a default password;

receiving an original access input from a remote user, wherein the original access input is not indicative of the unique random password; and

responsive to verifying, based on the original access input, access entitlement of the remote user, granting the remote user remote access to the service controller;

wherein the original access input comprises login credentials corresponding to a user account for accessing an asset owner and entitlement (AO&

E) database of a supplier of the information handling system and wherein verifying access entitlement includes;

presenting, for validation, the login credentials to an application programming interface to the AO&

E database; and

subject to validation of the login credentials, receiving, from the application programming interface, an AO&

E response including a remote access information selected from;

the unique random password; and

a proxy password indicative of a service controller resource bound to the information handling system.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A service controller of an information handling system provides a login user interface to a remotely located user. The service controller includes a factory-installed random unique password as its default password. If the service controller is in its original state, the service controller may grant access to the remote user based on original access input that differs from the default password. If the service controller verifies the user'"'"'s access entitlement, remote access may be granted to the remote user and the remote user may modifying the default password. Access may be granted to the remote user based on user input that includes the user'"'"'s credentials for accessing a database of asset, owner, and entitlement information maintained by the system supplier. Access may also be granted based on original access input including or indicative of the service controller license.

33 Citations

View as Search Results

18 Claims

1. A remote access method, comprising:
- providing, by a service controller of an information handling system, a login user interface wherein the service controller includes a unique random password as a default password;
  
  receiving an original access input from a remote user, wherein the original access input is not indicative of the unique random password; and
  
  responsive to verifying, based on the original access input, access entitlement of the remote user, granting the remote user remote access to the service controller;
  
  wherein the original access input comprises login credentials corresponding to a user account for accessing an asset owner and entitlement (AO&
  
  E) database of a supplier of the information handling system and wherein verifying access entitlement includes;
  
  presenting, for validation, the login credentials to an application programming interface to the AO&
  
  E database; and
  
  subject to validation of the login credentials, receiving, from the application programming interface, an AO&
  
  E response including a remote access information selected from;
  
  the unique random password; and
  
  a proxy password indicative of a service controller resource bound to the information handling system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1, wherein, the remote access information comprises a digitally signed password and wherein the method includes validating a digital signature associated with the remote access information.
  - 3. The method of claim 1, wherein:
    - the remote access information comprises the proxy password;
      
      the AO&
      
      E database includes attributes including unique service tags for each information handling system; and
      
      verifying access entitlement includes providing the service tag to the application programming interface.
  - 4. The method of claim 3, wherein the proxy password is determined in accordance with a service controller license installed on the service controller.
  - 5. The method of claim 4, wherein the proxy password includes a license key comprising a digital signature of the service controller license.
  - 6. The method of claim 5, further comprising validating the license key and matching a service controller license identifier bound to the service tag with a license identifier included in the services controller license installed on the service controller.
  - 7. The method of claim 1, wherein:
    - the remote access information provided in the AO&
      
      E response comprises the unique random password;
      
      the AO&
      
      E database includes attributes for a service tag unique to the information handling system and for the unique random password; and
      
      verifying access entitlement includes providing the service tag to the application programming interface.
  - 8. The method of claim 7, further comprising:
    - verifying the unique random password included in the AO&
      
      E response against the unique random password installed in the service controller.
  - 9. The method of claim 1, further comprising:
    - enabling, by a privileged user, a federated logon options of the service controller, wherein the AO&
      
      E database reflects service controller entitlement input, from the privileged user, associating a service controller license key with one or more AO&
      
      E user accounts;
      
      providing a federated logon option as an initial access option to the remote user; and
      
      responsive to detecting remote user selection of the federated logon option, providing the remote user with a login user interface for the AO&
      
      E database;
      
      responsive to receiving and authenticating AO&
      
      E database credentials from the remote user, determining access to the storage controller based upon the one or more AO&
      
      E user accounts.
  - 10. The method of claim 1, wherein the service controller includes a service controller license and wherein the original access input comprises license information indicative of the service controller license.
  - 11. The method of claim 10, wherein the license information includes a license key comprising a digital signature of the service controller license.
  - 12. The method of claim 11, further comprising:
    - validating the license key; and
      
      matching an entitlement identifier associated with the license key with an entitlement identifier of the services controller license installed on the service controller.
  - 13. The method of claim 10, wherein receiving the original access input comprises uploading the license key from a remote user system to the service controller.

14. An information handling system, comprising:
- a host comprising a host processor and host memory; and
  
  a service controller, coupled to the host, the service controller including;
  
  a service controller processor;
  
  a service controller memory including instructions, executable by the service controller processor, that, when executed, cause the system to perform operations comprising;
  
  providing a login user interface wherein the service controller includes a unique random password as a default password and;
  
  receiving an original access input from a remote user, wherein the original access input is not indicative of the unique random password; and
  
  responsive to verifying, based on the original access input, access entitlement of the remote user, granting the remote user remote access to the service controller, wherein;
  
  the original access input comprises login credentials corresponding to a user account for accessing an asset owner and entitlement (AO&
  
  E) database of a supplier of the information handling system and wherein verifying access entitlement includes;
  
  presenting, for validation, the login credentials to an application programming interface to the AO&
  
  E database; and
  
  subject to validation of the login credentials, receiving, from the application programming interface, an AO&
  
  E response including a remote access information selected from;
  
  the unique random password; and
  
  a proxy password indicative of a service controller resource bound to the information handling system.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The information handling system of claim 14, wherein:
    - the remote access information comprises the proxy password;
      
      the AO&
      
      E database includes attributes including unique service tags for each information handling system; and
      
      verifying access entitlement includes providing the service tag to the application programming interface.
  - 16. The information handling system of claim 15, wherein the proxy password includes a license key comprising a digital signature of a service controller license installed on the service controller.
  - 17. The information handling system of claim 14, wherein:
    - the remote access information provided in the AO&
      
      E response comprises the unique random password;
      
      the AO&
      
      E database includes attributes for a service tag unique to the information handling system and for the unique random password;
      
      verifying access entitlement includes providing the service tag to the application programming interface; and
      
      verifying the unique random password included in the AO&
      
      E response against the unique random password installed in the service controller.
  - 18. The information handling system of claim 17, wherein the operations include:
    - enabling, by a privileged user, a federated logon option of the service controller, wherein the AO&
      
      E database reflects service controller entitlement input, from the privileged user, associating a service controller license key with one or more AO&
      
      E user accounts;
      
      providing a federated logon option as an initial access option to the remote user; and
      
      responsive to detecting remote user selection of the federated logon option, providing the remote user with a login user interface for the AO&
      
      E database;
      
      responsive to receiving and authenticating AO&
      
      E database credentials from the remote user, determining access to the storage controller based upon the one or more AO&
      
      E user accounts.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Dell Products LP (Dell Technologies Inc.)
Original Assignee
Dell Products LP (Dell Technologies Inc.)
Inventors
Young, Jason Matthew, Savage, Marshal F.
Primary Examiner(s)
Zaidi, Syed A

Application Number

US15/261,467
Publication Number

US 20180077568A1
Time in Patent Office

1,005 Days
Field of Search

726 7
US Class Current
CPC Class Codes

H04L 63/083   using passwords cryptograph...

H04W 12/068   using credential vaults, e....

H04W 12/069   using certificates or pre-s...

Enabling remote access to a service controller having a factory-installed unique default password

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

33 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Enabling remote access to a service controller having a factory-installed unique default password

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

33 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links