Method and system using shared configuration information to manage network access for network users
First Claim
1. A method using shared configuration information to manage network access for externally generated communications, comprising:
- providing an association information store that maintains association information for a first end user of a private network;
providing a data storage system that maintains configuration information for a first endpoint associated with the first end user;
receiving an externally generated communication at an access point to the private network, the communication addressed for delivery to a second endpoint associated with a second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user;
using a computing device to obtain the association information and determine an association between the first end user and the second end user; and
using the computing device to obtain the configuration information for the first endpoint associated with the first end user and configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user.
2 Assignments
0 Petitions
Accused Products
Abstract
In accordance with a particular embodiment of the present invention, a method using shared configuration information to manage network access for externally generated communications includes maintaining association information for a first end user of a private network and maintaining configuration information for a first endpoint associated with the first end user. When an externally generated communication that is addressed for delivery to a second endpoint associated with a second end user is received at an access point to the private network, the association information is used to determine an association between the first end user and the second end user. The configuration information for the first end user is used to configure the access point to allow the communication to be delivered to the second endpoint.
-
Citations
28 Claims
-
1. A method using shared configuration information to manage network access for externally generated communications, comprising:
-
providing an association information store that maintains association information for a first end user of a private network; providing a data storage system that maintains configuration information for a first endpoint associated with the first end user; receiving an externally generated communication at an access point to the private network, the communication addressed for delivery to a second endpoint associated with a second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; using a computing device to obtain the association information and determine an association between the first end user and the second end user; and using the computing device to obtain the configuration information for the first endpoint associated with the first end user and configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 22, 23)
-
-
10. A method using shared configuration information to manage network access for externally generated communications, comprising:
-
providing an association information store that maintains association information for a first end user and a second end user of a private network; providing a configuration information server that maintains configuration information for each of a first endpoint associated with the first end user and a second endpoint associated with the second end user; receiving an externally generated communication at an access point to the private network, the communication addressed for delivery to the second endpoint associated with the second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; using a computing device to obtain the association information and determine an association between the first end user and the second end user, the first end user identified in the association information as untrustworthy; and if the association information identifies the first end user as untrustworthy, use the computing device to; configure the access point to disallow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint; and if the association information identifies the first end user as trustworthy, use the computing device to; determine that the first endpoint associated with the first end user is configured to accept the externally generated communication from the third endpoint associated with the third end user; and configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user.
-
-
11. A system using shared configuration information to manage network access for externally generated communications, comprising:
-
an association information store in communication with a private network, the association information store operable to maintain association information for a first end user of the private network; a configuration server in communication with the private network, the configuration server operable to maintain configuration information for a first endpoint associated with the first end user; and an access point in communication with the private network, the access point operable to; receive an externally generated communication, the communication addressed for delivery to a second endpoint associated with a second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; use the association information to determine an association between the first end user and the second end user; and use the configuration information for the first end point associated with the first end user to authorize the communication from the third endpoint associated with the third end user to enter the private network for delivery to the second endpoint associated with the second end user based on the association between the first end user and the second end user. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 24, 25)
-
-
20. A system using shared configuration information to manage network access for externally generated communications, comprising:
-
means for maintaining association information for a first end user of a private network; means for maintaining configuration information for a first endpoint associated with the first end user; means for receiving an externally generated communication at an access point to the private network, the communication addressed for delivery to a second endpoint associated with a second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; means for using the association information to determine an association between the first end user and the second end user; and means for using the configuration information for the first endpoint associated with the first end user to configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user.
-
-
21. A non-transitory computer readable medium comprising code operable to:
- A non-transitory computer-readable medium encoded with software for using shared configuration information to manage network access for externally generated communications, the software executed by a computer to perform operations comprising;
maintain association information for each of a first end user and a second end user of a private network; maintain configuration information for each of a first endpoint associated with the first end user and a second endpoint associated with the second end user; receive an externally generated communication at an access point to the private network, the communication addressed for delivery to the second endpoint associated with the second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; use the association information to determine an association between the first end user and the second end user; and if the association information identifies the first end user as untrustworthy; use the configuration information for the first end user to configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint; and if the association information identifies the first end user as trustworthy; determine that the first endpoint associated with the first end user configured to accept the externally generated communication from the third endpoint associated with the third end user; and configure the access point to allow the communication from de source other than the first endpoint to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user.
- A non-transitory computer-readable medium encoded with software for using shared configuration information to manage network access for externally generated communications, the software executed by a computer to perform operations comprising;
-
26. A non-transitory computer-readable medium encoded with software for using shared configuration information to manage network access for externally generated communications, the software executed by a computer to perform operations comprising:
-
maintain association information for a first end user of a private network; maintain configuration information for a first endpoint associated with the first end user; receive an externally generated communication at an access point to the private network, the communication addressed for delivery to a second endpoint associated with a second end user of the private network, the externally generated communication received from a third endpoint associated with a third end user; obtain the association information and determine an association between the first end user and the second end user; and obtain the configuration information for the first endpoint associated with the first end user and configure the access point to allow the communication from the third endpoint associated with the third end user to be delivered to the second endpoint associated with the second end user based on the association between the first end user and the second end user. - View Dependent Claims (27, 28)
-
Specification