Persistent enrollment of a computing device based on a temporary user
First Claim
1. A method for enrolling a computing device with a management server prior to a user initially logging into the computing device, comprising:
- during initial boot, executing firmware to generate an enroller, the enroller creating a temporary user account in a WINDOWS operating system, the temporary user account enabling interaction with the operating system;
blocking the operating system from allowing user login;
requesting enrollment with a management server based on the temporary user account, wherein enrollment causes the computing device to enforce management policies defined at the management server;
unblocking the operating system after the enrollment is complete; and
deleting the temporary user account.
4 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods are included for causing a computing device to implement a management policy prior to a user logging into an operating system on initial boot. As part of initial boot, the computing device contacts a management server for enrollment. Installation of the operating system is paused while the management server synchronizes the software and policies on the computing device. To do this prior to login, the management server can create a temporary user account to associate with the computing device and apply a default management policy. After the installation is complete, an installed management agent can gather user inputs made during login. The management agent can send these inputs to the management server for use in creating an actual user account to associate with the computing device.
-
Citations
20 Claims
-
1. A method for enrolling a computing device with a management server prior to a user initially logging into the computing device, comprising:
-
during initial boot, executing firmware to generate an enroller, the enroller creating a temporary user account in a WINDOWS operating system, the temporary user account enabling interaction with the operating system; blocking the operating system from allowing user login; requesting enrollment with a management server based on the temporary user account, wherein enrollment causes the computing device to enforce management policies defined at the management server; unblocking the operating system after the enrollment is complete; and deleting the temporary user account. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computing device that enrolls with a management server during initial boot based on a temporary user account, comprising:
-
a non-transitory, computer-readable medium containing instructions; a processor that executes the instructions to perform stages comprising; during initial boot, executing firmware to generate an enroller, the enroller creating the temporary user account in a WINDOWS operating system, the temporary user account enabling interaction with the operating system; blocking the operating system from allowing user login; requesting enrollment with a management server based on the temporary user account, wherein enrollment causes the computing device to enforce management policies defined at the management server; unblocking the operating system after the enrollment is complete; and deleting the temporary user account. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory, computer-readable medium containing instructions for enrollment on initial boot based on a temporary user account, the instructions causing a processor to perform stages comprising:
-
during initial boot, executing firmware to generate an enroller, the enroller creating the temporary user account in a WINDOWS operating system, the temporary user account enabling interaction with the operating system; blocking the operating system from allowing user login; requesting enrollment with a management server based on the temporary user account, wherein enrollment causes the computing device to enforce management policies defined at the management server; unblocking the operating system after the enrollment is complete; and deleting the temporary user account. - View Dependent Claims (17, 18, 19, 20)
-
Specification