System and method for password authentication for non-LDAP regions
First Claim
1. A method for dial roaming for users having a home non-LDAP (Lightweight Directory Access Protocol) region to allow access comprising:
- dialing into a local dial access provider;
creating an access request;
forwarding the dial access request to a corporate remote authentication dial-in user service (RADIUS) server;
proxying the request to a regional RADIUS server associated with the user'"'"'s home region;
accessing the regional user database to determine if the user is present in the regional database;
authenticating the user; and
providing configuration information to the user to allow access to the network.
10 Assignments
0 Petitions
Accused Products
Abstract
A system and method for allowing roaming of a subscriber and password authentication a non-LDAP region. A user signs onto a network access server which in turn connects to the regional LDAP RADIUS server. Password authentication occurs by hashing a transmitted password and comparing it to a clear text password from an LDAP database that has been hashed in the same manner as the transmitted password. When the subscriber is in a non-LDAP region, The password proceeds trough a proxy server to a regional RADIUS server which connects to a non-LDAP server. The non-LDAP server connects to and SMS database and retrieve the clear text password associated with the non-LDFSAP user, hashes it according the same method as the transmitted hashed password and formats the password for comparison in the regional RADIUS server. If the hashed passwords compare, the access is permitted.
31 Citations
27 Claims
-
1. A method for dial roaming for users having a home non-LDAP (Lightweight Directory Access Protocol) region to allow access comprising:
-
dialing into a local dial access provider;
creating an access request;
forwarding the dial access request to a corporate remote authentication dial-in user service (RADIUS) server;
proxying the request to a regional RADIUS server associated with the user'"'"'s home region;
accessing the regional user database to determine if the user is present in the regional database;
authenticating the user; and
providing configuration information to the user to allow access to the network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system for dial roaming for users having a home non-LDAP region to allow access comprising:
-
a user computer having a home service region for creating a network access request;
a dial up connection over a first network to a network access server (NAS) in a roaming area;
a second network connected to the NAS for receiving the network access request;
a local network service provider connected to the second network;
a third network connected to the network service provider;
a corporate RADIUS server connected to the third network for receiving the access request; and
a regional LDAP server comprising a user database for authenticating the user access request and for allowing access to the regional network. - View Dependent Claims (17, 18, 19, 20, 21, 22)
-
-
23. A system for authenticating users using a standard RADIUS protocol against a non-standard subscriber management system and database comprising:
-
a RADIUS server, having a RADIUS authentication protocol, connected to a first network for receiving an access request from a user;
a subscriber management server, connected to a second network, comprising a user database for authenticating the user access request over the second network; and
a database view created in memory on the subscriber management server for providing user access information in the correct format for the RADIUS authentication protocol. - View Dependent Claims (24, 25, 26, 27)
-
Specification