×

SINGLE SIGN-ON FOR MANAGED MOBILE DEVICES

  • US 20160366121A1
  • Filed: 06/15/2015
  • Published: 12/15/2016
  • Est. Priority Date: 06/15/2015
  • Status: Active Grant
First Claim
Patent Images

1. A non-transitory computer-readable medium embodying a program executable in a client device, the program, when executed by the client device, being configured to cause the client device to at least:

  • send an access request to a service provider;

    receive a redirection from the service provider to an identity provider;

    send an identity assertion request to the identity provider based at least in part on the redirection;

    receive a response from the identity provider, the response requesting authentication by a management credential, the management credential corresponding to a secure certificate or a Kerberos profile;

    obtain the management credential from a device management application;

    send data associated with the management credential to the identity provider;

    receive an identity assertion from the identity provider based at least in part on the data associated with the management credential; and

    authenticate with the service provider by way of the identity assertion.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×