PHYSICAL ACCESS MANAGEMENT USING A DOMAIN CONTROLLER
First Claim
Patent Images
9. An access control system associated with an access-controlled area of a distributed site of an electric power delivery system, the system comprising:
- a credential input interface configured to receive authentication credentials from a user;
a communications interface communicatively coupled to an access control device associated with the access-controlled area and a domain controller associated with the access control system, the domain controller managing a directory service comprising a plurality of user entries, each user entry of the plurality of user entries comprising physical access attribute information;
a processor communicatively coupled to the credential input interface and the communications interface;
a computer-readable storage medium communicatively coupled to the processor, the computer-readable storage medium storing instructions that, when executed by the processor, cause the processor to;
generate, based on the received authentication credentials, a physical access authentication request;
transmit, via the communications interface, the physical access authentication request and the authentication credentials to the domain controller;
receive, from the domain controller, an authentication response, the authentication response being generated by the domain controller based on a comparison of the authentication credentials with the physical access attribute information included in the directory service;
generate, based on the authentication response, an access control signal configured to implement an access control action by the access control device allowing the user physical access to the access-controlled area; and
transmit, via the communications interface, the access control signal to the access control device.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods are disclosed for managing physical access to an access-controlled area using a domain controller. In certain embodiments, physical access attribute and/or credential information may be managed as part of a user entry in a directory service managed by the domain controller. Using this information, the domain controller and/or a communicatively coupled access control system may perform physical access control determinations based on physical access control requests received from a user wishing to gain physical access to an access-controlled area.
7 Citations
20 Claims
-
9. An access control system associated with an access-controlled area of a distributed site of an electric power delivery system, the system comprising:
-
a credential input interface configured to receive authentication credentials from a user; a communications interface communicatively coupled to an access control device associated with the access-controlled area and a domain controller associated with the access control system, the domain controller managing a directory service comprising a plurality of user entries, each user entry of the plurality of user entries comprising physical access attribute information; a processor communicatively coupled to the credential input interface and the communications interface; a computer-readable storage medium communicatively coupled to the processor, the computer-readable storage medium storing instructions that, when executed by the processor, cause the processor to; generate, based on the received authentication credentials, a physical access authentication request; transmit, via the communications interface, the physical access authentication request and the authentication credentials to the domain controller; receive, from the domain controller, an authentication response, the authentication response being generated by the domain controller based on a comparison of the authentication credentials with the physical access attribute information included in the directory service; generate, based on the authentication response, an access control signal configured to implement an access control action by the access control device allowing the user physical access to the access-controlled area; and transmit, via the communications interface, the access control signal to the access control device. - View Dependent Claims (10, 11, 12, 20)
-
-
13. A method performed by a domain controller for managing physical access to an access-controlled area of a distributed site of an electric power delivery system, the method comprising:
-
receiving a physical access authentication request and authentication credentials provided by a user from a communicatively coupled access control system associated with the access-controlled area; identifying, based on the physical access authentication request, physical access attribute information associated with a user entry included in a directory service managed by the domain controller; determining, based on the physical access attribute information, whether the authentication credentials are associated with an individual having current access rights to the access-controlled area; generating, based on the determination, an authentication response indicating whether the authentication credentials are associated with an individual having current access rights to the access-controlled area; and transmitting the authentication response to the access control system. - View Dependent Claims (1, 2, 3, 4, 5, 6, 7, 8, 14, 15, 17, 18, 19)
-
-
17-1. The method of claim 13, wherein determining whether the authentication credentials are associated with an individual having current access rights to the access-controlled area comprises:
-
comparing the authentication credentials with the physical access attribute information; and determining that the received authentication credentials match the physical access attribute information.
-
Specification