ENTERPRISE MANAGEMENT FOR SECURE NETWORK COMMUNICATIONS OVER IPSEC
First Claim
1. A method of managing a secure enterprise comprising a plurality of communicatively interconnected endpoints, the method comprising:
- initiating a management service at a server within the secure enterprise, the management service including a web interface providing administrative access to configuration settings associated with the secure enterprise, the management service initializing a secure communications protocol and managing access to a credential store, the credential store including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights;
initiating an object management service at the server, the object management service defining an interface to a configuration database, the configuration database storing;
configuration settings included in one or more configuration profiles for the enterprise network; and
one or more interface definitions useable by the web interface to provide administrative access to the configuration settings;
accessing, via the object management service, the configuration database to obtain data defining a configuration of the enterprise according to a configuration profile; and
applying one or more configuration settings to the secure enterprise based on the data defining the configuration of the secure enterprise.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for managing a secure enterprise are disclosed. One method includes initiating a management service at a server within the secure enterprise, the management service including a web interface providing administrative access to configuration settings associated with the secure enterprise, the management service initializing a secure communications protocol and managing access to a credential store, the credential store including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights. The method includes initiating an object management service at the server defining an interface to a configuration database, and accessing the configuration database to obtain data defining a configuration of the enterprise according to a configuration profile. The method includes applying configuration settings to the secure enterprise based on the data defining the configuration of the secure enterprise.
-
Citations
20 Claims
-
1. A method of managing a secure enterprise comprising a plurality of communicatively interconnected endpoints, the method comprising:
-
initiating a management service at a server within the secure enterprise, the management service including a web interface providing administrative access to configuration settings associated with the secure enterprise, the management service initializing a secure communications protocol and managing access to a credential store, the credential store including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights; initiating an object management service at the server, the object management service defining an interface to a configuration database, the configuration database storing; configuration settings included in one or more configuration profiles for the enterprise network; and one or more interface definitions useable by the web interface to provide administrative access to the configuration settings; accessing, via the object management service, the configuration database to obtain data defining a configuration of the enterprise according to a configuration profile; and applying one or more configuration settings to the secure enterprise based on the data defining the configuration of the secure enterprise. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An enterprise management system executable on a computing system included within a secure enterprise including a network comprising a plurality of communicatively interconnected secured endpoints, the enterprise management system comprising:
-
a configuration database storing configuration settings included in one or more configuration profiles of an enterprise network and one or more interface definitions; a management service executable by the computing system to provide access to a web interface, the web interface providing administrative access to configuration settings associated with the secure enterprise according to the one or more configuration profiles; an object management service communicatively connected to the management service and executable by the computing system, the object management service defining an interface to the configuration database; and a credential store managed by the management service and including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A secured enterprise comprising a network including a plurality of servers and a plurality of secured endpoints, the secured enterprise comprising:
-
an enterprise management server hosting; a management service providing access to a web interface to administrative users and managing access to a credential store, the credential store including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights; and an object management service defining an interface to a configuration database hosted on the enterprise management server; a user interface server communicatively connected to the enterprise management server, the user interface server providing the web interface hosting a plurality of portlets; and an authorization server accessible to each of the secured endpoints, the authorization server providing credentials to authenticated secured endpoints associated with one or more of the communities of interest defined using the management service. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification