×

Dynamic remediation of a client computer seeking access to a network with a quarantine enforcement policy

  • US 7,827,545 B2
  • Filed: 12/15/2005
  • Issued: 11/02/2010
  • Est. Priority Date: 12/15/2005
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method of operating a computer system according to a quarantine enforcement policy, the computer system having a client, a first server and a second server, the method comprising:

  • determining, by the client, at least two statuses selected from a group including a status of antivirus software executing on the client, a status of antispyware software executing on the client, a status of firewall software executing on the client, and a status of patches of operating system software on the client,aggregating, by the client computer, the determined at least two statuses,sending from the client to the first server a request for access to a managed network, the request for access comprising status information including information about the aggregated at least two statuses concerning the client;

    receiving at the client a communication from the first server, the communication including information for displaying to a user, the information including information regarding the quarantine enforcement policy and a first link capable of being activated by the user to cause instructions for downloading to be displayed to the user, the information regarding the quarantine enforcement policy including information regarding one or more aspects of the quarantine enforcement policy with which at least one of the at least two statuses is not in compliance, wherein, when the quarantine enforcement policy allows a quarantined client restricted access to the managed network, receiving at the client the communication from the first server notifies the client that the client is granted restricted access to the managed network for a period of time;

    displaying, by the client to the user, the information included in the communication from the first server; and

    using an address of the second server included in the communication from the first server, in response to the user activating the first link, to download computer-executable instructions or data to qualify the client for access to the managed network in accordance with the quarantine enforcement policy, wherein when the client is granted restricted access and the client does not qualify for access to the managed network in accordance with the quarantine enforcement policy by the end of the period of time, the restricted access is revoked.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×