System for controlling users access to a distributive network in accordance with constraints present in common access distributive network interface separate from a server
First Claim
1. A method for controlling access to a distributive network by users and user groups utilizing personal computers (PCs) on a local area network (LAN) comprising:
- utilizing a server for centralized, common access by the PCs on the LAN;
establishing a database for the server to identify users and user group assignments for the LAN, the database including users and user groups native to normal LAN operation, each user group comprising one or more users;
establishing a common access distributive network interface separate from the server and communicatively coupling the LAN to the distributive network without directly connecting through the server;
programming user and user group control parameters into the database at the server, including constraints for access by users and user groups to the distributive network;
transferring the constraints to the distributive network interface; and
controlling access to the distributive network for a particular user at the distributive network interface without routing the particular user'"'"'s access through the server and in accordance with the constraints present in the distributive network interface for the particular user or the group to which the particular user is assigned.
12 Assignments
0 Petitions
Accused Products
Abstract
A method of managing access to a distributive network provides both time and site access restraints for users or groups of users on a LAN or WAN adapted for accessing the network through a common network access interface system. The method utilizes the LAN server to develop and monitor the constraints, minimizing the utilization of the access interface system. The management parameters for each group or individual having access to the distributive network via the LAN or WAN is entered into the interface box by the administrator as a compact reference, a series of pointers to the larger database of users and groups stored in the existing LAN server directory services. The existing database of users and groups and their relationships exist already in the LAN servers as a normal consequence of LAN operation and a simple, graphical user interface in the preferred embodiment of the invention permits familiar selection of objects of that database and assignment of access constraints.
-
Citations
29 Claims
-
1. A method for controlling access to a distributive network by users and user groups utilizing personal computers (PCs) on a local area network (LAN) comprising:
-
utilizing a server for centralized, common access by the PCs on the LAN; establishing a database for the server to identify users and user group assignments for the LAN, the database including users and user groups native to normal LAN operation, each user group comprising one or more users; establishing a common access distributive network interface separate from the server and communicatively coupling the LAN to the distributive network without directly connecting through the server; programming user and user group control parameters into the database at the server, including constraints for access by users and user groups to the distributive network; transferring the constraints to the distributive network interface; and controlling access to the distributive network for a particular user at the distributive network interface without routing the particular user'"'"'s access through the server and in accordance with the constraints present in the distributive network interface for the particular user or the group to which the particular user is assigned. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A storage medium having therein a plurality of programming instructions which, when executed by a processor, implement a service for controlling access of users on a local area network (LAN) to a distributive network, the service including a function for:
-
accessing a database of a server for centralized, common access by personal computers (PCs) on the LAN to identify users and user group assignments native to the normal LAN operation, each user group comprising one or more users; assigning user and user group control parameters into the database at the server, including constraints for access by users and user groups to the distributive network; transferring the constraints to a distributed network interface which is separate from the server, the distributed network interface providing a communicative coupling of the LAN to the distributive network without directly connecting through the server; and controlling access to the distributive network for a particular user at the distributive network interface without routing the particular user'"'"'s access through the server and in accordance with the constraints present in the distributive network interface for the particular user or the group to which the particular user is assigned. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. An apparatus comprising:
-
a storage medium having stored therein a plurality of programming instructions; and an execution unit, coupled to the storage medium, to execute the programming instructions to, access a database of a server for centralized, common access by personal computers (PCs) on a local area network (LAN) to identify users and user group assignments native to the normal LAN operation, each user group comprising one or more users, assign user and user group control parameters into the database at the server, including constraints for access by users and user groups to a distributive network, transfer the constraints to a distributed network interface which is separate from the server, the distributed network interface providing a communicative coupling of the LAN to the distributive network without directly connecting through the server, control access to the distributive network for a particular user at the distributive network interface without routing the particular user'"'"'s access through the server and in accordance with the constraints present in the distributive network interface for the particular user or the group to which the particular user is assigned. - View Dependent Claims (26, 27, 28, 29)
-
Specification