Method and apparatus for selection of authentication servers based on the authentication mechanisms in supplicant attempts to access network resources
First Claim
Patent Images
1. A method for processing a supplicant'"'"'s attempt to access a network resource, the method comprising the computer-implemented steps of:
- detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a Virtual Private Network (VPN) tunnel type used in establishing a VPN, wherein the VPN utilizes authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified VPN tunnel type, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type.
1 Assignment
0 Petitions
Accused Products
Abstract
A computer-implemented method is provided for processing access requests in an AAA network. The method includes receiving an access request from a network device, identifying, based upon the access request, an authentication mechanism for facilitating AAA services for the network device and selecting, based on the identified authentication mechanism, a particular server from a plurality of servers that is compatible with the identified authentication mechanism.
38 Citations
100 Claims
-
1. A method for processing a supplicant'"'"'s attempt to access a network resource, the method comprising the computer-implemented steps of:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a Virtual Private Network (VPN) tunnel type used in establishing a VPN, wherein the VPN utilizes authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified VPN tunnel type, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for processing a supplicant'"'"'s attempt to access a network resource, the method comprising the computer-implemented steps of:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a VPN tunnel type used in establishing a VPN, wherein the VPN utilizes AAA services with respect to the supplicant;
generating association data that specifies relationships between VPN tunnel types and servers;
examining the association data to determine one or more servers that are compatible with the identified VPN tunnel type;
selecting, based on both the identified VPN tunnel type and the association data, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type; and
based on the supplicant'"'"'s attempt causing an access request to be issued to the particular server.
-
-
13. A method for processing a supplicant'"'"'s attempt to access a network resource, the method comprising the computer-implemented steps of:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified authentication mechanism, a particular server from a plurality of servers that is compatible with the identified authentication mechanism. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A method for processing a supplicant'"'"'s attempt to access a network resource, the method comprising the computer-implemented steps of:
-
detecting the supplicant'"'"'s attempt to access a network resource, identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant;
generating association data that specifies relationships between authentication mechanisms and servers;
examining the association data to determine one or more servers that are compatible with the identified authentication mechanism;
selecting, based on both the identified authentication mechanism and the association data, a particular server from a plurality of servers that is compatible with the identified authentication mechanism; and
based on the supplicant'"'"'s attempt, causing an access request to be issued to the particular server.
-
-
26. A machine-readable medium carrying one or more instructions for processing a supplicant'"'"'s attempt to access a network resource which, when executed by one or more processors, causes:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a Virtual Private Network (VPN) tunnel type used in establishing a VPN, wherein the VPN utilizes authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified VPN tunnel type, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A machine-readable medium carrying one or more instructions for processing access requests in a network which, when executed by one more processors, causes:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a VPN tunnel type used in establishing a VPN, wherein the VPN utilizes AAA services with respect to the supplicant;
generating association data that specifies relationships between VPN tunnel types and servers;
examining the association data to determine one or more servers that are compatible with the identified VPN tunnel type;
selecting, based on both the identified VPN tunnel type and the association data, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type; and
based on the supplicant'"'"'s attempt causing an access request to be issued to the particular server.
-
-
38. A machine-readable medium carrying one or more instructions for processing a supplicant'"'"'s attempt to access a network resource which, when executed by one or more processors, causes:
-
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified authentication mechanism, a particular server from a plurality of servers that is compatible with the identified authentication mechanism. - View Dependent Claims (39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
-
-
50. A machine-readable medium carrying one or more instructions for a supplicant'"'"'s attempt to access a network resource which, when executed by one more processors, causes:
-
detecting the supplicant'"'"'s attempt to access a network resource, identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant;
generating association data that specifies relationships between authentication mechanisms and servers;
examining the association data to determine one or more servers that are compatible with the identified authentication mechanism;
selecting, based on both the identified authentication mechanism and the association data, a particular server from a plurality of servers that is compatible with the identified authentication mechanism; and
based on the supplicant'"'"'s attempt, causing an access request to be issued to the particular server.
-
-
51. An apparatus comprising:
-
a memory storing one or more instructions which, when executed by one or more processors, causes;
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a Virtual Private Network (VPN) tunnel type used in establishing a VPN, wherein the VPN utilizes authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified VPN tunnel type, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type. - View Dependent Claims (52, 53, 54, 55, 56, 57, 58, 59, 60, 61)
-
-
62. An apparatus comprising:
-
a memory storing one or more instructions which, when executed by one or more processors, causes;
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, a VPN tunnel type used in establishing a VPN, wherein the VPN utilizes AAA services with respect to the supplicant;
generating association data that specifies relationships between VPN tunnel types and servers;
examining the association data to determine one or more servers that are compatible with the identified VPN tunnel type;
selecting, based on both the identified VPN tunnel type and the association data, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type; and
based on the supplicant'"'"'s attempt causing an access request to be issued to the particular server.
-
-
63. An apparatus comprising:
-
a memory storing one or more instructions which, when executed by one or more processors, causes;
detecting the supplicant'"'"'s attempt to access a network resource;
identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant; and
selecting, based on the identified authentication mechanism, a particular server from a plurality of servers that is compatible with the identified authentication mechanism. - View Dependent Claims (64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74)
-
-
75. An apparatus comprising:
-
a memory storing one or more instructions which, when executed by one or more processors, causes;
detecting the supplicant'"'"'s attempt to access a network resource, identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant;
generating association data that specifies relationships between authentication mechanisms and servers;
examining the association data to determine one or more servers that are compatible with the identified authentication mechanism;
selecting, based on both the identified authentication mechanism and the association data, a particular server from a plurality of servers that is compatible with the identified authentication mechanism; and
based on the supplicant'"'"'s attempt, causing an access request to be issued to the particular server.
-
-
76. An apparatus comprising
means for detecting the supplicant'"'"'s attempt to access a network resource; -
means for identifying, based upon the supplicant'"'"'s attempt, a Virtual Private Network (VPN) tunnel type used in establishing a VPN, wherein the VPN utilizes authentication, authorization or accounting (AAA) services with respect to the supplicant; and
means for selecting, based on the identified VPN tunnel type, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type. - View Dependent Claims (77, 78, 79, 80, 81, 82, 83, 84, 85, 86)
-
-
87. An apparatus, comprising:
-
means for detecting the supplicant'"'"'s attempt to access a network resource;
means for identifying, based upon the supplicant'"'"'s attempt, a VPN tunnel type used in establishing a VPN, wherein the VPN utilizes AAA services with respect to the supplicant;
means for generating association data that specifies relationships between VPN tunnel types and servers;
means for examining the association data to determine one or more servers that are compatible with the identified VPN tunnel type;
means for selecting, based on both the identified VPN tunnel type and the association data, a particular server from a plurality of servers that is compatible with the identified VPN tunnel type; and
based on the supplicant'"'"'s attempt, means for causing an access request to be issued to the particular server.
-
-
88. An apparatus comprising
means for detecting the supplicant'"'"'s attempt to access a network resource; -
means for identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant; and
means for selecting, based on the identified authentication mechanism, a particular server from a plurality of servers that is compatible with the identified authentication mechanism. - View Dependent Claims (89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99)
-
-
100. An apparatus, comprising:
-
means for detecting the supplicant'"'"'s attempt to access a network resource, means for identifying, based upon the supplicant'"'"'s attempt, an authentication mechanism for facilitating authentication, authorization or accounting (AAA) services with respect to the supplicant;
means for generating association data that specifies relationships between authentication mechanisms and servers;
means for examining the association data to determine one or more servers that are compatible with the identified authentication mechanism;
means for selecting, based on both the identified authentication mechanism and the association data, a particular server from a plurality of servers that is compatible with the identified authentication mechanism; and
based on the supplicant'"'"'s attempt, means for causing an access request to be issued to the particular server.
-
Specification