TECHNIQUES FOR VIRTUAL PRIVATE NETWORK (VPN) ACCESS
First Claim
Patent Images
1. A machine-implemented method, comprising:
- authenticating a principal for access to a remote site;
downloading a control module to process within a device associated with the principal for facilitating establishment of a virtual private network (VPN) session between the principal and resources of the remote site;
dynamically and in real-time receiving an indication from the control module as to whether the principal is to be associated with a thin client installation for the VPN session or whether the principal is to be associated with a clientless access for the VPN session.
3 Assignments
0 Petitions
Accused Products
Abstract
Techniques for virtual private network (VPN) access are provided. A dynamic determination, in response to privileges, is made as to whether a principal and a device of a principal are to receive a thin client virtual private network (VPN) installation for a thin client VPN session between the principal and a remote site or whether a clientless VPN session is appropriate. Dynamic switching between the clientless VPN session and thin client VPN session is permissible when the principal supplies the appropriate credentials for such a switch.
76 Citations
24 Claims
-
1. A machine-implemented method, comprising:
-
authenticating a principal for access to a remote site; downloading a control module to process within a device associated with the principal for facilitating establishment of a virtual private network (VPN) session between the principal and resources of the remote site; dynamically and in real-time receiving an indication from the control module as to whether the principal is to be associated with a thin client installation for the VPN session or whether the principal is to be associated with a clientless access for the VPN session. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A machine-implemented method, comprising:
-
dynamically checking a device associated with a principal for a thin client virtual private network (VPN) installation; dynamically downloading modules from a remote site to establish a thin client VPN session between the principal and the device when the thin client installation is present; dynamically searching for additional credentials of the principal when the thin client installation is missing from the device and when successful credentials are found downloading the thin client installation and the modules from the remote site to establish the thin client VPN session; and permitting a clientless VPN session to be established between the principal and the remote site when the thin client VPN session fails to be established. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A machine-implemented method, comprising:
-
authenticating a principal for access to resources of a remote site via a first set of credentials supplied by the principal via a World-Wide Web (WWW) browser over an Internet connection between a device of the principal and a server device of the remote site; dynamically downloading over the Internet to the WWW browser a control module from the remote site and executing the control module on the device of the principal; checking, by the control module, whether a thin client virtual private network (VPN) installation is already installed on the device of the principal and configured for use on that device; dynamically downloading, by the control module, VPN components from the remote site to dynamically establish a thin client VPN session between the principal and the remote site when the thin client VPN installation is installed and is configured for use on the device; dynamically downloading, by the control module, the VPN components, dynamically configuring the thin client VPN installation for use, and dynamically establishing the thin client VPN session when the thin client installation is present but not configured and when detected privileges for the principal indicate the thin client VPN session is permissible; and dynamically downloading, by the control module, the thin client VPN installation and the VPN components, dynamically configuring the thin client VPN installation for use, and dynamically establishing the thin client VPN session when the thin client VPN installation is not present and when detected privileges for the principal indicate that the thin client VPN session is permissible. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A machine-implemented system, comprising:
-
a control module implemented in a machine-accessible and readable medium and to process on a client machine of a principal; and a virtual private network (VPN) establishment service implemented in a machine-accessible and readable medium and to process on a server machine, wherein the client machine and the server machine are remote from one another over a wide-area network (WAN) connection; wherein the control module is dynamically installed to the client machine via the VPN establishment service when the principal authenticates to the server machine successfully, and wherein the control module dynamically and in real-time determines in response to privileges of the principal whether a thin client VPN installation on the client machine is to be used and dynamically establishes a thin client VPN session between the principal and a remote site associated with the server or whether a clientless VPN session is to be established, and wherein modules for establishing the thin client VPN session are provided via dynamically download from the VPN establishment service to the control module. - View Dependent Claims (22, 23, 24)
-
Specification