Two-factor authentication of a remote administrator
First Claim
1. A system, comprising:
- an information handling system comprising;
a processor and system memory accessible to the processor;
a remote access controller coupled to the processor, wherein the remote access controller includes a virtual card reader; and
a management station communicatively coupled to the information handling system, wherein the management station is remotely located from the information handling system, and wherein the management station comprises a physical card reader configured to read a physical card;
wherein when a connection between the information handling system and the management station is established, the remote access controller is configured to;
provide a virtual card reader client to the management station;
establish a connection between the virtual card reader of the information handling system and the virtual card reader client on the management station;
locate the physical card reader of the management station via the established connection; and
receive, from the virtual card reader client, a card insertion command that emulates insertion of a virtual card into the virtual card reader in response to insertion of the physical card into the physical card reader; and
wherein the virtual card reader is configured to receive information from the physical card via the physical card reader and the established connection between the virtual card reader client and the virtual card reader, in response to receiving the card insertion command.
14 Assignments
0 Petitions
Accused Products
Abstract
An information handling system includes a processor, system memory, and a remote access resource that includes a virtual card reader enabled to establish a communication channel between the remote access resource and a remote card reader to communicate smart card reader access requests and response between them. The system may include an authentication module requiring two factor authentication including userid/password authentication and a physical card authentication. The communication channel enables remote physical card authentication. The resource further supports redirection of system console traffic enabling remote userid/password authentication. The virtual card reader is preferably operable to download a virtual card reader client to a remote management station to which the smart card reader is attached. The remote access resource may be operable to direct console traffic of the system to the remote management station to display a system login screen on the remote management station.
-
Citations
15 Claims
-
1. A system, comprising:
-
an information handling system comprising; a processor and system memory accessible to the processor; a remote access controller coupled to the processor, wherein the remote access controller includes a virtual card reader; and a management station communicatively coupled to the information handling system, wherein the management station is remotely located from the information handling system, and wherein the management station comprises a physical card reader configured to read a physical card; wherein when a connection between the information handling system and the management station is established, the remote access controller is configured to; provide a virtual card reader client to the management station; establish a connection between the virtual card reader of the information handling system and the virtual card reader client on the management station; locate the physical card reader of the management station via the established connection; and receive, from the virtual card reader client, a card insertion command that emulates insertion of a virtual card into the virtual card reader in response to insertion of the physical card into the physical card reader; and wherein the virtual card reader is configured to receive information from the physical card via the physical card reader and the established connection between the virtual card reader client and the virtual card reader, in response to receiving the card insertion command. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer program product comprising computer executable instructions, stored on a computer readable medium, for enabling remote authentication to a server using a remote access controller of the server, the instructions comprising:
-
instructions for establishing a connection between the server and a management station remotely coupled to the server, the management station comprising a physical card reader, the server including a virtual card reader; instructions for providing a virtual card reader client to the management station; instructions for establishing a connection between the virtual card reader of the server and the virtual card reader client on the management station; instructions for locating the physical card reader of the management station via the established connection; instructions for emulating insertion of a virtual card into the virtual card reader upon receiving, from the virtual card reader client, a card insertion command generated in response to insertion of a physical card into the physical card reader; and instructions for receiving information at the virtual card reader from the physical card via the physical card reader and the established connection between the virtual card reader client and the virtual card reader, in response to emulating insertion of the virtual card. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A remote access controller for use in an information handling system comprising:
-
a processing unit; a memory communicatively coupled to the processing unit; and
processing instructions encoded in the memory, the processing instructions when executed by the processing unit being operable to;provide a virtual card reader client to a management station remotely coupled to the information handling system, the management station comprising a physical card reader, the information handling system including a virtual card reader; establish a connection between the virtual card reader of the information handling system and the virtual card reader client on the management station;
locate the physical card reader of the management station via the established connection; andemulate insertion of a virtual card into the virtual card reader upon receiving, from the virtual card reader client, a card insertion command generated in response to insertion of a physical card into the physical card reader; wherein the virtual card reader information handling system is configured to receive information from the physical card reader via the physical card reader and the established connection between the virtual card reader client and the virtual card reader, in response to emulating insertion of the virtual card. - View Dependent Claims (12, 13, 14, 15)
-
Specification