Methods and systems for imaging device credential management and authentication
First Claim
Patent Images
1. A method for providing single-credential access to multiple, distinct, restricted services wherein a unique credential is required for each service, said method comprising:
- a) storing a plurality of user service credentials for a plurality of restricted services at a single sign-on server (SSOS), wherein said user service credentials are unique for each of said plurality of restricted services and wherein at least one of said restricted services is an imaging device (IDev) function that produces hard-copy output;
b) associating a group of said user service credentials that are related to a specific user with a specific user sign-on credential;
c) receiving said specific user sign-on credential;
c) authenticating said specific user sign-on credential;
d) associating a single sign-on (SSO) token with said group of user service credentials and sending said single sign-on (SSO) token to said specific user, wherein said single sign-on (SSO) token provides access to one or more of said plurality of restricted services after being forwarded to said one or more of said plurality of restricted services;
e) receiving said SSO token from one or more restricted services and sending, in exchange for said SSO token, one or more of said user service credentials that correspond to said restricted services to said one or more restricted services, for authentication of the user service credentials at said restricted services.
2 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the present invention comprise systems, methods and devices for eliminating multiple submission of user credential data in a system with multiple distinct restricted sub-systems wherein a unique credential is required for each sub-system.
350 Citations
19 Claims
-
1. A method for providing single-credential access to multiple, distinct, restricted services wherein a unique credential is required for each service, said method comprising:
-
a) storing a plurality of user service credentials for a plurality of restricted services at a single sign-on server (SSOS), wherein said user service credentials are unique for each of said plurality of restricted services and wherein at least one of said restricted services is an imaging device (IDev) function that produces hard-copy output; b) associating a group of said user service credentials that are related to a specific user with a specific user sign-on credential; c) receiving said specific user sign-on credential; c) authenticating said specific user sign-on credential; d) associating a single sign-on (SSO) token with said group of user service credentials and sending said single sign-on (SSO) token to said specific user, wherein said single sign-on (SSO) token provides access to one or more of said plurality of restricted services after being forwarded to said one or more of said plurality of restricted services; e) receiving said SSO token from one or more restricted services and sending, in exchange for said SSO token, one or more of said user service credentials that correspond to said restricted services to said one or more restricted services, for authentication of the user service credentials at said restricted services. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for providing single-credential access to multiple, distinct, restricted imaging device services wherein a unique credential is required for each service, said method comprising:
-
storing a plurality of user service credentials for a plurality of restricted services at a single sign-on server (SSOS), wherein said user service credentials are unique for each of said plurality of restricted services; associating a group of said user service credentials related to a specific user with a specific user sign-on credential; sending sign-on menu prompt content to an imaging device (IDev) device management application programming interface (API); receiving said specific user sign-on credential from said IDev device management API; authenticating said specific user sign-on credential; associating a single sign-on (SSO) token with said group of user service credentials for said specific user, configuring said SSO token to be exchangeable by one of said restricted services for a corresponding user service credential for said one of said restricted services and sending said single sign-on (SSO) token to said specific user; receiving said SSO token from said one of said restricted services, to which said SSO token has been sent by said specific user; matching said SSO token with said corresponding user service credentials to which said SSO token has been associated, wherein said corresponding user service credentials provide access to said one of said the restricted services; and sending, in exchange for said SSO token, said corresponding user service credentials to said one of said restricted services for authentication of said user service credentials at said one or more restricted services. - View Dependent Claims (9, 10, 11, 12)
-
-
13. An apparatus for providing single-credential access to multiple, distinct, restricted services wherein a unique credential is required for each service, said apparatus comprising:
-
storage for storing a plurality of user service credentials for a plurality of restricted services at a single sign-on server (SSOS), wherein said user service credentials are unique for each of said plurality of restricted services; a data structure that associates said user service credentials that are related to a specific user with a specific user sign-on credential; a sender for sending sign-on menu prompt content to an imaging device (IDev) device management application programming interface (API); a receiver for receiving said specific user sign-on credential from said IDev device management API; an authenticator for authenticating said specific user sign-on credential; a single sign-on (SSO) token generator for generating an SSO token and for sending the SSO token to a specific user corresponding to said specific user sign-on credential; a relational system for receiving said SSO token from one of said plurality of specific restricted services, matching said (SSO) token to said plurality of user service credentials, and sending a specific one of said user service credentials, in exchange for said SSO token, to said one of said plurality of restricted services corresponding to said specific one of said user service credentials, for authentication of said user service credentials at said specific restricted service. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification